Legality of Data leaks/cyber attacks

Are private companies in India required to disclose a cyber attack or a Data leak to the Government? Does this apply to government departments as-well?

There’s an alarming amount of ransomware attacks in the US, especially the supply chain software ransomware attacks, and I’m sure it wont be long until we can see this in India too. My concern is should a private entity be a victim to such attack and choose to pay the ransom and not inform the larger public and/or the concerned government agencies can have a large impact on the cyber security of the entire nation too.

What are your thought’s on this?


You’ll probably get a more detailed answer soon but I don’t think much has changed since I asked the same question unfortunately.

1 Like