India: Data localisation requirement in CERT-In Cybersecurity Directive
Progress
Scope
Timeline of events
Implemented CERT-In's Information Security Practices Directive including data localisation requirement for MSMEs
On 25 September 2022, the Indian Computer Emergency Response Team (CERT-In) "relating to information security practices, procedure, prevention, response and reporting of cyber incidents" enters into force for Micro, Small & Medium Enterprises (MSMEs…
Entry into force with grace period of CERT-In's Information Security Practices Directive including data localisation requirement
On 27 June 2022, the directive by the Indian Computer Emergency Response Team (CERT-In) "relating to information security practices, procedure, prevention, response and reporting of cyber incidents" enters into force. The directive introduces obliga…
Postponed implementation for MSMEs of CERT-In's Information Security Practices Directive including data localisation requirement
On 27 June 2022, the Ministry of Electronics and Information Technology announced that the implementation of the Indian Computer Emergency Response Team (CERT-In) "relating to information security practices, procedure, prevention, response and repor…
Issued CERT-In Information Security Practices Directive including data localisation requirement
On 28 April 2022, the Indian Computer Emergency Response Team (CERT-In) issued a directive introducing cybersecurity obligations. The directive includes obligations regarding the notification and mitigation of data breaches, data storage and user id…