A STUDY ON CYBER SECURITY LAW AND BUSINESS LIABILITY IN INDIA

Cybersecurity has become a major worry for governments, corporations, and
individuals alike in the current digital era. Organizations are more susceptible to
financial fraud, ransomware assaults, and data breaches as cyber threats get more
complex. Strong cybersecurity legislation are necessary for both business protection
and customer trust in India, as the country's growing embrace of digital technologies,
e-commerce, and cloud computing has greatly raised the risk of cybercrimes. The
Information Technology Act, 2000 (IT Act), which contains rules pertaining to cyber
crimes, data protection, and electronic governance, is the main piece of legislation
controlling cybersecurity in India. To further guarantee cybersecurity resilience,
regulatory organizations including the Securities and Exchange Board of India (SEBI),
the Reserve Bank of India (RBI), and the Indian Computer Emergency Response
Team (CERT-In) have released sector-specific guidelines. However, with the passage
of the Digital Personal Data Protection (DPDP) Bill, 2023, which seeks to improve
data privacy and put more stringent obligations on companies that handle personal
data, the legal environment is still changing. Companies now risk financial penalties,
harm to their brand, and litigation as a result of cybersecurity breaches. It is expected
of organizations to put in place appropriate security procedures to safeguard user
information and stop cyberattacks.