Topics In Demand
Notification
New

No notification found.

Feedback on GAICT and Recommendation for a Bulk-license for Cryptography
Feedback on GAICT and Recommendation for a Bulk-license for Cryptography

December 12, 2023

75

0

The government has taken several initiatives to ease compliance requirement under SCOMET, including but not limited to the introduction of the General Authorisation for Intra-Company Transfers (‘GAICT’) policy, further revision of the GAICT policy, conducting several outreach programs on SCOMET for the IT sector, among others. This has positively impacted the compliance landscape of export control regulations in the tech sector. Nasscom has extensively engaged with the industry post implementation of the GAICT policy and has received overall positive feedback.

On December 11, 2023, we submitted recommendations to DGFT to further streamline India's export control compliance regime for the benefit of the industry's ease of doing business. We made two key suggestions on:

  1. Expanding the scope of items eligible for GAICT under Category 8
  2. Introduction of bulk licensing for information security items

Summary of our submission is highlighted below:

Expansion of GAICT Applicability:

Despite benefiting from eased compliance under GAICT, certain items within SCOMET category 8 remain excluded from its applicability. Such exclusion necessitates obtaining individual SCOMET licenses for these specific items, leading to the maintenance of multiple licenses (individual SCOMET and bulk GAICT licenses).

This dual licensing scenario creates additional compliance burden and diminishes the effectiveness of the bulk licensing policy.

We recommend reviewing and considering the inclusion of certain excluded items, that are low-risk and frequently traded, within SCOMET category 8, under the scope of GAICT.

Introduction of Bulk Licensing for Information Security Items:

Information security items, particularly those using cryptography, have broad commercial applications. The current GAICT policy is limited to intra-company transfers, and would not include bulk-licensing for cryptography for third-party transactions. This creates challenges for the Information and Communication Technology (ICT) industry where longer timelines for obtaining licenses in such third-party transactions is a significant cost for industry.

Further, since widely used software often incorporates standard encryption libraries, there is a case for relaxing controls on the export of such information security systems.

Therefore, we recommend bulk licensing policy for cryptographic information security items under SCOMET Category 8A5 Part 2, with certain safeguards like documentation proofs, periodic post-shipment reporting requirements, inapplicability of the bulk license for military or government end-users, to prevent misuse.

For any queries on this, kindly write to us via mail to priyanshi@nasscom.in and garima@nasscom.in with copy to policy@nasscom.in.


That the contents of third-party articles/blogs published here on the website, and the interpretation of all information in the article/blogs such as data, maps, numbers, opinions etc. displayed in the article/blogs and views or the opinions expressed within the content are solely of the author's; and do not reflect the opinions and beliefs of NASSCOM or its affiliates in any manner. NASSCOM does not take any liability w.r.t. content in any manner and will not be liable in any manner whatsoever for any kind of liability arising out of any act, error or omission. The contents of third-party article/blogs published, are provided solely as convenience; and the presence of these articles/blogs should not, under any circumstances, be considered as an endorsement of the contents by NASSCOM in any manner; and if you chose to access these articles/blogs , you do so at your own risk.


images
priyanshi
Senior Associate, Public Policy and Government Affairs

Reach out to me for everything data, platforms, or export controls!

© Copyright nasscom. All Rights Reserved.