Topics In Demand
Notification
New

No notification found.

Update: Amendments in the Jan Vishwas (Amendment of Provisions) Act 2023 to the Information Technology Act of 2000
Update: Amendments in the Jan Vishwas (Amendment of Provisions) Act 2023 to the Information Technology Act of 2000

August 31, 2023

166

0

On August 11, 2023, the Jan Vishwas (Amendment of Provisions) Act, 2023 was notified after receiving presidential assent. It decriminalizes certain offences, and revises fines and penalties, across 42 laws, including the Information Technology Act of 2000 (IT Act).

We had, in March 2023, submitted our feedback (available here) to the Parliamentary Joint Committee (JC) sitting on the draft Bill on the amendments proposed to the IT Act. In their report on the Bill, the JC had, in their suggestions on IT Act amendments, aligned with our feedback on the need to clarify the proposed amendment to the definition of the “Appropriate Government” in section 2(1)(e). The final Act also reflects this suggestion as it drops the proposed amendment to section 2(1)(e) itself.  A list of the other amendments that were made to the IT Act are below:

  1. The JVB has repealed section 66A. This was struck down by the Supreme Court in 2015.
  2. Section 46 of the Act empowers the Central Government to appoint adjudicating officers to adjudicate and hold inquiries in case of contravention of the Act by any person. The JVB clarifies the scope of the AOs to adjudge contraventions under the entire Act. Prior to this amendment, this jurisdiction was limited to Chapter IX. 
  3. Section 45 is a residuary penalty in the IT Act – intended to punish contraventions of provisions, rules and regulations for which no other penalty has been separately provided. The JVA raises the maximum penalty to 1 lakh; that both the penalty and the compensation may be levied, and that the maximum compensation is set at 10 lakh, if the contravention is by an intermediary, body corporate or company, and otherwise at 1 lakh, if by any other person. Prior to this amendment, this was capped at twenty-five thousand (all sums in rupees).
  4. Section 33 requires Certifying Authorities to immediately surrender their licenses if they are suspended or revoked, and failure to do so will now result in a penalty of 5 lakhs. Prior to this amendment, non-compliance would have resulted in imprisonment and a fine of ten thousand.
  5. Section 67C requires intermediaries to maintain specified information as directed by the Central Government, and failure to comply may result in a penalty up to twenty-five lakh . Prior to this amendment, non-compliance would have resulted in imprisonment and fines.
  6. Under section 68(2) of the IT Act the Controller can instruct a Certifying Authority or its employee to take necessary actions to ensure compliance with the Act, and failure to comply with such orders may result in a maximum penalty of twenty-five lakh . Prior to this amendment, non-compliance would have led to imprisonment of up to two years or a fine up to one lakh or both.
  7. Under section 72, disclosing any information that has been obtained through the powers granted under this Act to a third party without the consent of the person involved will now result in a penalty of up to five lakh . Prior to this amendment, this would have led to imprisonment and a fine of up to one lakh .
  8. Section 72A now enforces penalties for disclosing personal information, acquired through a contract, without the consent of the concerned person, with fines of up to twenty-five lakh . Prior to the amendment, this would have led to imprisonment and/or a fine of up to five lakh .
  9. Section 44 of the IT Act penalises failure to comply with document submission, filing, or record keeping under the Act resulting in penalties up to fifteen lakhs, fifty thousand, and one lakh respectively. Prior to the amendment, these penalties were lower.
  10. Under section 69B, failure to assist a duly authorised agency of the Central Government with securing online access to traffic data or information, could result in imprisonment of up to one year and a penalty of up to one crore. Prior to the amendment, this was two years and an unspecified fine.  
  11. Section 70(B)(2) empowers CERT-In to request information and issue directives to service providers, intermediaries, data centers, corporate entities, or individuals, and failure to comply with these requests or directives can result in imprisonment of up to one year, a fine up to one crore or both. Prior to the amendment, this fine was capped at one lakh .

For any queries, please write to varun@nasscom.in or priyanshi@nasscom.in with a copy to policy@nasscom.in.


That the contents of third-party articles/blogs published here on the website, and the interpretation of all information in the article/blogs such as data, maps, numbers, opinions etc. displayed in the article/blogs and views or the opinions expressed within the content are solely of the author's; and do not reflect the opinions and beliefs of NASSCOM or its affiliates in any manner. NASSCOM does not take any liability w.r.t. content in any manner and will not be liable in any manner whatsoever for any kind of liability arising out of any act, error or omission. The contents of third-party article/blogs published, are provided solely as convenience; and the presence of these articles/blogs should not, under any circumstances, be considered as an endorsement of the contents by NASSCOM in any manner; and if you chose to access these articles/blogs , you do so at your own risk.


images
Varun Sen Bahl
Manager - Public Policy

Reach out to me for all things about data regulation, cybersecurity policy, and internet governance.

© Copyright nasscom. All Rights Reserved.