India’s Computer Emergency Response Team (CERT-in) may soon be exempt from responding to inquiries under the Right to Information Act, the government informed parliament on Friday. The Ministry of Human Resources and Training will consider a proposal from the Ministry of Electronics and Information Technology to include his CERT-in in Schedule 2 of his RTI Act, which deals with exempted organizations such as the Central Bureau of Investigation (CBI) and the Border Protection Agency. bottom. Force (BSF).
Minister of Electronics and Information Technology Rajeev Chandrasekhar, in response to Biju Janata Dal MP Amar Patnaik, said inter-ministerial consultations are underway to consider the proposal, with the participation of the Ministry of Justice and Justice.
This exemption allows CERT-in to deny requests for information, even if it is a matter of policy. This is important in light of the agency’s directive, issued in April 2022, requiring virtual private network (VPN) providers and cryptocurrency companies to hold users’ claims. The directive is being contested in the Delhi High Court, where the government has argued that complete anonymity online is unacceptable. It has pulled the server out of India, claiming it infringes.
Also read: Description | Are Ransomware Attacks Increasing in India?
CERT-in works with public and private organizations in India when cyber incidents such as data breaches and ransomware attacks are reported. It also publishes software vulnerability advisories as guidance for organizations.
When deliberations on exempting CERT-in from the RTI Act were first reported last May, the Delhi-based Internet Freedom Foundation said in a statement: [under the April 2022 Cyber Security Directions]violations lead to a one-year prison sentence, but on the other hand, we don’t want to offer transparency to the public in return.”