Question
In India, it is legally mandatory for which of the following to report on cyber security incidents?
1. Service providers
2. Data Centres
3. Body corporate
Select the correct answer using the code given below:
(a) 1 only
(b) 1 and 2 only
(c) 3 only
(d) 1, 2 and 3
Answer:
D
To suggest corrections, send feedback using feedback button in top menu.
To suggest corrections, use feedback icon on top menu.
Explanation:
In India, it is legally mandatory for service providers, data centers, and body corporates to report on cyber security incidents. These obligations are outlined in the Information Technology (IT) Act, 2000 and its subsequent amendments, specifically the IT (Amendment) Act, 2008.
Under the IT Act, service providers, which include entities providing services such as telecommunications, internet access, and hosting, are required to report cyber security incidents to the Indian Computer Emergency Response Team (CERT-In) or any other agency authorized by the government.
Data centers, which are facilities used for storing, processing, and managing large amounts of data, are also obligated to report cyber security incidents to CERT-In or the authorized agencies.
Body corporates, which refer to any company or organization, are required to implement reasonable security practices and procedures to protect sensitive personal data. In case of any breach of such data, they are obligated to report the incident to the affected individuals and CERT-In.