The first component of the new law is a requirement that all software companies hire three new roles, all of which must be based in India. The first position is that of a compliance officer, who is responsible for ensuring that Indian legislation is observed. The second function is that of a grievance officer, who will handle customer complaints in India, and the third role is that of a contact person, who will be available to India’s law enforcement 24 hours a day, seven days a week.
Aside from the new responsibilities, the law requires tech businesses to publish compliance reports every six months, but none of these measures has raised significant controversy.
India’s Ministry of Electronics and IT (MEITY) issued new restrictions for popular social media businesses like Facebook, Twitter, and Google earlier this year. The new policy requires corporations to acknowledge and comply with India’s removal requests for “unlawful, misleading, and violent content” within 24 hours, among other things. India has given internet businesses a three-month grace period to become completely comply with the new standards, but others are afraid that the new law may have major privacy repercussions.
According to a spokesperson for WhatsApp, the company filed the lawsuit because “requiring messaging apps to trace chats is the equivalent of asking us to keep a fingerprint of every single message sent on WhatsApp, which would break end-to-end encryption and fundamentally undermine people’s right to privacy.”
End-to-end encryption refers to a communication system in which a message may only be read by the sender and the recipient. Because the key to decrypt the communication is only held on the individuals’ phones, government enforcement, an internet provider, and even WhatsApp itself are unable to read it. End-to-end encryption differs from standard encryption in that it prevents a tech company from reading messages delivered on its own platform. When a communication is sent from one user to another, it is de-encrypted and re-encrypted by the service, which acts as a middleman. This method provides the tech company access to the message.
The most significant advantage of end-to-end encryption is that it protects your message from hackers while also providing a high level of privacy because only the sender and receiver can read it. Alternatively, if a firm like WhatsApp decrypts your communication, it poses a security risk to the user’s message if WhatsApp’s servers are hacked or infiltrated.
WhatsApp is positive that it does. They are concerned that if they adopt traceability, they will be required to gather and retain who said what and who shared what for the billions of messages its users transmit each day, thus putting an end to end encryption. WhatsApp isn’t alone in this belief; a technology policy advocate recently stated that “traceability will require end-to-end encrypted systems to adapt their architecture in a way that will harm online privacy and security.” They’ll have to figure out how to track who sent which message to whom and keep track of it indefinitely.”
However, this view of the new policy is not shared by everyone. In a recent press release, India stated that its “intention is not to violate anyone’s privacy” and that “tracing will only be used for the prevention, investigation, or punishment of very serious offences related to India’s sovereignty and integrity, security, friendly relations with foreign states, or public order, or of incitement to an offence relating to the above or in relation to the above or in relation to the above or in relation to the above or in relation to the above or in relation to the above or in relation to The specific technical solution for safeguarding privacy falls on the shoulders of tech businesses, according to the press release.