Indian government wants VPNs to store customers' personal data for five years and report cybersecurity incidents in six hours.
India’s decision to enforce certain data management regulations on VPN services has prompted an exodus of companies from the country. In April this year, the country’s cybersecurity watchdog, in an apparent attempt to improve security, asked VPN providers in India to store customer’s details for five years and report cybersecurity incidents within six hours.
This rule will come into effect by the end of June 2022. The government has made it clear that those companies that are unwilling to comply can leave the country.
Many privacy experts have raised concerns about this new regulation. Storing personal data is against the very principle of VPN, which is to provide users anonymi...