{"id":51515,"date":"2019-08-23T19:00:08","date_gmt":"2019-08-23T13:30:08","guid":{"rendered":"https:\/\/blogadmin.forumias.com\/?p=51515"},"modified":"2019-08-29T12:08:43","modified_gmt":"2019-08-29T06:38:43","slug":"7-pm-data-deprivation-makes-cybercrime-difficult-to-tackle-23rd-august-2019","status":"publish","type":"post","link":"https:\/\/forumias.com\/blog\/7-pm-data-deprivation-makes-cybercrime-difficult-to-tackle-23rd-august-2019\/","title":{"rendered":"7 PM | Data deprivation makes cybercrime difficult to tackle | 23rd August, 2019"},"content":{"rendered":"\n<p><strong>Context:<\/strong> cyber\ncrimes and data localisation in India<\/p>\n\n\n\n<ul class=\"wp-block-list\"><li>Requirements for local storage and\nprocessing of data are commonly referred to as \u2018data localization\u2019 or \u2018data\nresidency\u2019 requirements. Data localization can broadly be defined as &#8216;any legal\nlimitation on data moving globally and compelling it to remain locally. <\/li><li>Localization policies can take a variety\nof forms. This could include a specific requirement to locally store copies of\ndata, local content production requirements, or imposing conditions on cross\nborder data transfers that in effect act as a localization mandate<\/li><\/ul>\n\n\n\n<p><strong>Need\nfor data localization in India:<\/strong><\/p>\n\n\n\n<ul class=\"wp-block-list\"><li><strong>Borderless\nInternet:<\/strong>\nThe borderless nature of the Internet raises several jurisdictional issues on\ndata protection. A single act of processing of personal data could very easily\noccur across multiple jurisdictions (outside the state territory) where the\nstate may not have the authority to exercise its jurisdiction. <\/li><li>To address this, not only should the\nregulation apply to entities (both public and private) within India that\nprocess personal data of Indian citizens and residents but it should also be\napplicable to all kinds of processing carried out on the personal data of\nIndian citizens and residents.<\/li><li>Even though such processing may not be\nentirely based in India or may be carried out by non-Indian entities that do\nnot have a presence in India.<\/li><li><strong>Cross-border\ntransfer of data:<\/strong> Cross-border\ndata transfer is unavoidable in today\u2019s global and digital age. Data seamlessly\nand freely flows across borders. This exchange of data leads to exchange of\ninformation and ideas which stimulate innovation and drive growth.<\/li><li>However, it is not always easy for\ncountries to exert control over data that leaves its territorial boundaries.\nSafeguarding a person\u2019s personal data transferred to an international geography\nremains a challenge.<\/li><li><strong>Localization\nof data:<\/strong>\nUnder data localization, entities are required to store and process personal\ndata on servers physically present within their national boundaries. <\/li><li>Although this approach helps address\nconcerns over data privacy, security, surveillance and law enforcement to an\nextent, it increases the burden on businesses by way of increased cost of\ncompliance and may also impact the building blocks of economy which rely on\ndata exchange.<\/li><li><strong>Impact\non MSMEs:<\/strong>\nIn the new age economy, a number of small enterprises are capturing and\nprocessing large volumes of data. Further, certain categories of private\nprocessing, such as processing carried out by not-for-profit organizations or\ncharitable institutes, may have to be dealt with categorically.<\/li><li><strong>Online\nfrauds:<\/strong>\nIn recent times, there have been many instances\nof the hard-earned money of Indians being taken out of bank accounts and\ncharges loaded onto credit cards through online frauds.<\/li><li><strong>Start-up ecosystem:<\/strong>\nAnother emerging casualty of such cybercrimes is the emerging \u201cstartup&#8221;\necosystem. We are beginning to see multiple cases where customers of genuine\nstartups, unicorns and Indian businesses have been subjected to online fraud<\/li><\/ul>\n\n\n\n<p><strong>Impact of data localization: <\/strong><\/p>\n\n\n\n<ul class=\"wp-block-list\"><li>Physically locating all data within the\nterritory of a state leads to a significant increase in the capacity of law enforcement\nagencies to access that information, and consequently surveillance of domestic\nresidents.<\/li><li>Localization becomes problematic in this\ncontext not just because the data will now be under the physical access of the\nstate, but also due to the technical measures likely to be implemented to\nensure that the data stays within a country\u2019s boundaries. <\/li><li><strong>Checks and balances:<\/strong> There\nis the fact that citizens in countries with poor checks and balances often do\nnot have any real or effective mechanisms to challenge state surveillance\nmechanisms. <\/li><li>Additionally, domestic executive\nagencies will generally pose a greater threat to an individual than foreign\nagencies, due to the relative ease of applying coercive action within a state\u2019s\nboundaries<\/li><li><strong>Fundamental rights:<\/strong> Localization\ncould affect expression rights in a number of ways given that the Internet is\nbuilt on the principle of easy transfer of information across borders.\nLocalization may also permit greater censorship of domestic dissident or\npolitical voices and affect the extent to which Indian content is accessible\nabroad.<\/li><li><strong>Government\nperspective:<\/strong> With the growing usage of encryption techniques, localization\nin itself may not be a sufficient tool to achieve the desired level of access.\nAs an example, consider the Apple-FBI imbroglio in the United States.<\/li><li>Where the company refused government\nrequests for help in decrypting data stored in a device in the government\u2019s\njurisdiction<\/li><li><strong>Economic\ncost:<\/strong>\nOne of the main arguments against mandatory localization stems from the cost\nthat it is likely to impose on businesses and consequently, their consumers and\nthe economy as a whole. <\/li><li>Widespread localization norms will mean\nthat businesses and other users-both domestic and foreign-will no longer have\nthe flexibility to choose the most cost-effective or task-specific location to\nstore their data. These efficiency losses will ultimately be passed onto\nconsumers in the form of higher costs of service. <\/li><li>Taking into account factors like energy\ncost, international bandwidth, ease of doing business and taxation provisions,\nCushman &amp; Wakefield (2016) Data Center Risk Index score placed India at\nthirty sixth position, with a score of 47.84 (out of a highest score of 100)<\/li><\/ul>\n\n\n\n<p><strong>Way\nforward:<\/strong>\nWhile privacy and data protection are necessary,\nand data localization may pose its own business challenges, India needs to work\nout a way to crack cyber frauds and crimes. For this, the country urgently needs\na legally-backed framework for a collaborative trigger mechanism that would\nbind all parties and enable law enforcers to act quickly and safeguard Indian\ncitizens and businesses from a fast-growing menace.<\/p>\n\n\n\n<p>Source:\n<a href=\"https:\/\/www.livemint.com\/opinion\/online-views\/opinion-data-deprivation-makes-cybercrime-difficult-to-tackle-1566493171777.html\">https:\/\/www.livemint.com\/opinion\/online-views\/opinion-data-deprivation-makes-cybercrime-difficult-to-tackle-1566493171777.html<\/a>.<\/p>\n","protected":false},"excerpt":{"rendered":"<p>Context: cyber crimes and data localisation in India Requirements for local storage and processing of data are commonly referred to as \u2018data localization\u2019 or \u2018data residency\u2019 requirements. Data localization can broadly be defined as &#8216;any legal limitation on data moving globally and compelling it to remain locally. Localization policies can take a variety of forms.&hellip; <a class=\"more-link\" href=\"https:\/\/forumias.com\/blog\/7-pm-data-deprivation-makes-cybercrime-difficult-to-tackle-23rd-august-2019\/\">Continue reading <span class=\"screen-reader-text\">7 PM | Data deprivation makes cybercrime difficult to tackle | 23rd August, 2019<\/span><\/a><\/p>\n","protected":false},"author":61,"featured_media":49370,"comment_status":"open","ping_status":"open","sticky":false,"template":"","format":"standard","meta":{"jetpack_post_was_ever_published":false,"footnotes":""},"categories":[130],"tags":[],"class_list":["post-51515","post","type-post","status-publish","format-standard","has-post-thumbnail","hentry","category-7-pm","entry"],"jetpack_featured_media_url":"https:\/\/i0.wp.com\/forumias.com\/blog\/wp-content\/uploads\/2019\/07\/7-PM.png?fit=1000%2C500&ssl=1","views":{"total":0,"cached_at":"","cached_date":1704765381},"jetpack_sharing_enabled":true,"_links":{"self":[{"href":"https:\/\/forumias.com\/blog\/wp-json\/wp\/v2\/posts\/51515","targetHints":{"allow":["GET"]}}],"collection":[{"href":"https:\/\/forumias.com\/blog\/wp-json\/wp\/v2\/posts"}],"about":[{"href":"https:\/\/forumias.com\/blog\/wp-json\/wp\/v2\/types\/post"}],"author":[{"embeddable":true,"href":"https:\/\/forumias.com\/blog\/wp-json\/wp\/v2\/users\/61"}],"replies":[{"embeddable":true,"href":"https:\/\/forumias.com\/blog\/wp-json\/wp\/v2\/comments?post=51515"}],"version-history":[{"count":0,"href":"https:\/\/forumias.com\/blog\/wp-json\/wp\/v2\/posts\/51515\/revisions"}],"wp:featuredmedia":[{"embeddable":true,"href":"https:\/\/forumias.com\/blog\/wp-json\/wp\/v2\/media\/49370"}],"wp:attachment":[{"href":"https:\/\/forumias.com\/blog\/wp-json\/wp\/v2\/media?parent=51515"}],"wp:term":[{"taxonomy":"category","embeddable":true,"href":"https:\/\/forumias.com\/blog\/wp-json\/wp\/v2\/categories?post=51515"},{"taxonomy":"post_tag","embeddable":true,"href":"https:\/\/forumias.com\/blog\/wp-json\/wp\/v2\/tags?post=51515"}],"curies":[{"name":"wp","href":"https:\/\/api.w.org\/{rel}","templated":true}]}}