An inadequate collection of statutes currently governs cybersecurity and data protection in India. Authorities have tried to regulate compliance and to enforce penalties for non-compliance under the Information Technology Act 2000 and the Information Technology (Amendment) Act 2008, with little progress. India urgently needs to examine its poorly regulated digital spaces and at the virtual activities of individuals, private organizations and governmental authorities. The agencies performing cybersecurity operations in India, such as the National Technical Research Organization, the National Intelligence Grid, and the National Information Board, require robust policy and legislative and infrastructural support from the Ministry of Electronics and Information Technology, and from the courts, to enable them to do their jobs properly.
