Current Affairs Topics Archive
International Relations Economics Polity & Governance Environment & Ecology Science & Technology Internal Security Geography Social Issues Art & Culture Modern History

India tightens digital security with strict rules

March 25, 2026 4 min read Polity & Governance Science & Technology Internal Security GS3 (Internal Security Science & Technology)
On This Page

What Happened

  • India has implemented a multi-layered digital security framework mandating stricter compliance for telecom equipment, CCTV surveillance systems, and data protection infrastructure.
  • From April 1, 2026, only CCTV cameras certified by STQC (Standardisation Testing and Quality Certification) and BIS (Bureau of Indian Standards) meeting defined Essential Requirements (ER) can be legally sold in India — targeting Chinese-origin equipment that dominated the market.
  • The government has blocked 652 mobile applications under Section 69A of the IT Act, 2000, citing data security concerns and malpractices.
  • The National Security Directive on Telecommunication (2021) mandates that telecom service providers connect only "trusted" equipment from "trusted sources" — certified by the National Cyber Security Coordinator (NCSC) through the Trusted Telecom Portal.
  • These measures address concerns about surveillance infrastructure vulnerabilities and espionage risks embedded in imported equipment, particularly in the context of 5G rollout and the Indo-China security environment.

Static Topic Bridges

National Security Directive on Telecommunication (2021) and Trusted Sources Framework

The Union Cabinet approved the National Security Directive on Telecommunication Sector on December 16, 2020, which came into force after 180 days. From June 15, 2021, telecom service providers are mandatorily required to use only "trusted products" from "trusted sources" in their networks. The National Cyber Security Coordinator (NCSC), under the National Security Committee on Telecom (NSCT), determines which vendors and products qualify as trusted.

  • The Trusted Telecom Portal (trustedtelecom.gov.in) was launched June 15, 2021 for vendor certification.
  • NSCT is headed by the Deputy National Security Adviser and includes members from relevant ministries and industry.
  • Existing equipment is exempt from mandatory replacement; only new deployments must use trusted products.
  • This policy was largely a response to concerns about Huawei and ZTE equipment in India's telecom networks, especially with 5G spectrum auctions.

Connection to this news: The current CCTV and broader digital security tightening follows the same logic as the 2021 telecom directive — identifying and mitigating supply chain vulnerabilities in critical national infrastructure that could be exploited for espionage or sabotage.

Digital Personal Data Protection Act, 2023 and India's Data Governance Framework

India enacted the Digital Personal Data Protection (DPDP) Act in August 2023, creating the first comprehensive statutory framework for personal data protection. The Act mandates that "data fiduciaries" (entities processing personal data) obtain consent, maintain data minimisation, and report breaches. It establishes the Data Protection Board of India as the adjudicatory body. The CCTV and surveillance infrastructure tightening complements the DPDP Act by securing the hardware layer of data collection.

  • The DPDP Act, 2023 replaced the older framework under Section 43A of the IT Act, 2000.
  • It allows cross-border data transfer except to countries notified by the government as restricted.
  • "Significant data fiduciaries" face additional obligations including data protection impact assessments.
  • STQC certification for CCTV cameras ensures that the hardware used to collect personal data (facial recognition feeds, etc.) cannot be remotely accessed by foreign adversaries.

Connection to this news: The convergence of CCTV hardware certification and the DPDP Act creates an end-to-end security chain — from the device capturing data to the entity storing and processing it — addressing both foreign interference and domestic data misuse.

Section 69A of the IT Act, 2000 — Powers to Block Digital Content

Section 69A of the Information Technology Act, 2000 empowers the Central Government to issue directions to block public access to any information through any computer resource if it is necessary in the interest of the sovereignty and integrity of India, defence, security of the State, friendly relations with foreign States, or public order. This section has been used to block apps from adversarial nations.

  • Section 69A was invoked to block 59 Chinese apps in June 2020 (including TikTok, UC Browser) following the Galwan Valley clash.
  • Subsequent rounds of blocking brought the total to 652 apps as of 2026.
  • The Shreya Singhal v. Union of India (2015) judgment struck down Section 66A of the IT Act but upheld the blocking powers under Section 69A, subject to procedural safeguards.
  • The IT (Procedure and Safeguards for Blocking for Access of Information by Public) Rules, 2009 govern the process.

Connection to this news: The app-blocking under Section 69A forms one layer of India's digital security architecture; the CCTV and telecom equipment mandates address the physical hardware layer — together representing a comprehensive approach to digital sovereignty.

Key Facts & Data

  • STQC: Standardisation Testing and Quality Certification directorate under the Ministry of Electronics and Information Technology (MeitY).
  • BIS certification (Bureau of Indian Standards) is mandatory for CCTV cameras from April 1, 2026.
  • 652 mobile applications blocked under Section 69A of the IT Act as of 2026.
  • Telecom Act, 2023: replaced the Indian Telegraph Act, 1885; contains extensive provisions for network security.
  • National Security Committee on Telecom (NSCT): chaired by Deputy NSA; determines trusted vendors.
  • India is the world's second-largest smartphone market and the third-largest CCTV surveillance market.
  • The Trusted Telecom Portal launched June 15, 2021.