+ Module III: IT Act 2000 & Amendments. + The Information Technology Act, 2000 is India's primary law governing + digital transactions, cyber crimes, and electronic governance. It gave + legal recognition to electronic records and digital signatures, and + established a framework for punishing cyber offences in India. +
+ ++ The Information Technology Act, 2000 (ITA-2000) was enacted by the + Indian Parliament on 17th October 2000. It is based on the United + Nations Model Law on Electronic Commerce (1996) and aims to: +
+ ++ The IT Act defines specific offences and their corresponding + punishments. Here are the most important sections every student + should know: +
+ ++ Covers unauthorized access, downloading, or copying data from a + computer system or network without permission. Also includes + introducing viruses or causing damage to computer systems. + Penalty: Compensation up to ₹1 crore to the affected person. +
++ Deals with knowingly concealing, destroying, or altering any + computer source code when it is required to be maintained by law. + Penalty: Imprisonment up to 3 years or fine up to ₹2 lakhs, or + both. +
++ Covers hacking — dishonestly or fraudulently doing any act under + Section 43. If someone intentionally damages a computer system or + network, they are liable under this section. Penalty: Imprisonment + up to 3 years or fine up to ₹5 lakhs, or both. +
++ Originally punished sending offensive or false messages online. + However, it was struck down by the Supreme Court in 2015 + (Shreya Singhal vs Union of India) for violating the right to + freedom of speech under Article 19(1)(a) of the Constitution. + This is an important case study in balancing law and civil + liberties. +
++ Prohibits publishing or transmitting obscene material in + electronic form. Section 67A and 67B extend this to sexually + explicit content and child pornography respectively, with stricter + penalties. Penalty: Up to 5 years imprisonment and fine up to + ₹10 lakhs on first conviction. +
++ Any person who has accessed electronic records, books, or + documents under the powers of this Act and discloses them without + consent is punishable. Penalty: Imprisonment up to 2 years or + fine up to ₹1 lakh, or both. +
++ The IT (Amendment) Act 2008 significantly strengthened the original + Act after incidents like the 2008 Mumbai attacks exposed gaps in + cyber surveillance laws. Key changes included: +
+ ++ The IT Act 2000 is the legal backbone of India's digital ecosystem. + It defines what is legal and illegal online, protects e-commerce and + digital communication, and provides a framework for punishing cyber + crimes. The 2008 amendment strengthened it further to address + emerging threats like cyber terrorism and data breaches. +
++ Module IV: Data Privacy & Protection. + Every time you use an app, browse a website, or make an online + payment, data about you is being collected. Data privacy is about your + right to control that information — and data protection laws ensure + organizations handle it responsibly. +
+ ++ Personal data is any information that can identify a specific + individual — directly or indirectly. Understanding what counts as + personal data is the first step in protecting it. +
+ ++ Some data is classified as "sensitive" because misuse causes + greater harm. This includes: +
++ Modern data protection laws grant individuals specific rights over + their personal data. These rights empower you to take control of + your digital identity: +
+ ++ You have the right to know what personal data an organization + collects about you, why they collect it, how they use it, and who + they share it with. Organizations must disclose this through a + clear privacy policy. +
++ If an organization holds incorrect or incomplete personal data + about you, you have the right to request a correction. This is + especially important for financial and medical records. +
++ You can request that your personal data be deleted when it is no + longer needed for the purpose it was collected, or when you + withdraw your consent. This right gained global attention through + the GDPR in Europe. +
++ You have the right to receive your personal data in a structured, + machine-readable format and transfer it to another service + provider. For example, moving your data from one cloud storage + provider to another. +
++ The General Data Protection Regulation is the world's strongest + data privacy law. It applies to any organization that handles + data of EU citizens — including Indian companies with European + users. +
++ The Digital Personal Data Protection Act 2023 is India's landmark + data protection law. It defines the rights of "Data Principals" + (individuals) and obligations of "Data Fiduciaries" + (organizations). +
++ A data breach occurs when unauthorized individuals gain access to + protected data. Here are two major real-world examples: +
+ ++ Data of 87 million Facebook users was harvested without consent + through a third-party quiz app and used to build psychological + voter profiles for political advertising. +
++ India's premier hospital AIIMS Delhi suffered a ransomware attack + that encrypted patient data of approximately 3–4 crore patients + and disrupted hospital services for nearly two weeks. +
++ Data privacy is a fundamental right in the digital age. Laws like + GDPR and India's DPDP Act 2023 exist to ensure organizations handle + your data responsibly. As a digital citizen, knowing your rights and + as a future developer, building privacy-first applications are both + equally important responsibilities. +
+