Home > Topics > Cyber Security Laws > Components of Cyber Law – E-Commerce, Data Protection, IPR & More
← PreviousNext →

Components of Cyber Law – E-Commerce, Data Protection, IPR & More

Cyber law isn't just about punishing hackers! It's a comprehensive legal framework covering everything digital - from your Amazon order to your Instagram posts.

Main Components of Cyber Law

Loading diagram…

1. E-Commerce Law

Governs: Online buying/selling, digital payments, marketplace regulations

Key Provisions

A. Electronic Contracts (Section 10A IT Act)

Before 2000: Only paper contracts valid After IT Act: Electronic contracts = Legally binding!

Requirements:

  • Offer and acceptance (email/website click)
  • Consideration (payment)
  • Intention to create legal relation

Example: You click "Buy Now" on Amazon

  • ✅ Legally binding contract formed
  • ✅ Seller must deliver, you must pay

B. Consumer Protection in E-Commerce

Consumer Protection (E-Commerce) Rules, 2020:

ObligationDetails
Display InfoFull product details, price, seller identity
Return PolicyMust be clearly stated (7-30 days)
Grievance OfficerEvery platform must appoint (respond in 48 hours)
No Flash SalesWithout intimation to government
Country of OriginMust be displayed

Example: Flipkart Big Billion Day sale

  • Must inform government 10 days prior
  • Cannot manipulate rankings to favor own products

C. Payment Security

RBI Guidelines:

  • 2-Factor Authentication mandatory for online payments
  • Card tokenization: Don't store actual card numbers
  • Refund within 7 days for failed transactions

E-Commerce Models

Loading comparison…

2. Data Protection & Privacy

Most important in today's data-driven world!

Loading stats…

India's Data Protection Framework

A. Section 43A IT Act

Corporate liability for data breach:

  • Company must have reasonable security practices
  • If breach due to negligence → Compensation to victims
  • Up to ₹5 crore penalty

Example: If Paytm's database is hacked due to weak security:

  • Victims can sue for compensation
  • Cyber Appellate Tribunal can impose penalty

B. Section 72 IT Act

Privacy violation by individuals with access:

  • Bank employee leaking customer data
  • Punishment: 2 years + ₹1 lakh fine

C. Digital Personal Data Protection Act, 2023

India's comprehensive privacy law (recently passed!)

Key Rights:

  • Right to access your data
  • Right to correction of wrong data
  • Right to erasure ("right to be forgotten")
  • Right to nominate (who gets your data after death)

Obligations on Companies:

  • Explicit consent required
  • Purpose limitation (use data only for stated purpose)
  • Data breach notification within 72 hours
  • Data Protection Officer appointment

Penalties: Up to ₹250 crore for violations!

3. Intellectual Property Rights (IPR) in Cyber Space

A. Copyright (Digital)

What's protected online:

  • Software code, mobile apps
  • E-books, online articles
  • Music (Spotify, Gaana)
  • Videos (YouTube, Netflix)
  • Website design

Duration: Life + 60 years (India)

Violations:

1. Piracy

  • Downloading movies from Torrent = ₹2 lakh fine + 3 years
  • Streaming pirated content (grey area - mostly unprosecuted)

2. Plagiarism

  • Copying someone's blog post without credit
  • Using copyrighted images without license

Fair Use Exception:

  • Education, research, criticism, news reporting
  • Example: Using movie clip in YouTube review video

B. Trademarks Online

Domain Name Disputes:

Cybersquatting = Registering domain similar to famous brand

Example:

  • Someone registers "adidas-india.com" (not official Adidas)
  • Uses it to sell fake products
  • Adidas can sue under Trademark Act

UDRP (Uniform Domain-Name Dispute-Resolution Policy):

  • Complaint to WIPO (World Intellectual Property Organization)
  • If proven cybersquatting → Domain transferred to rightful owner

Famous Case: Microsoft won "microsoftindia.com" from cybersquatter

C. Patents (Software)

India: Software not patentable by itself

  • But software embedded in hardware can be patented
  • Example: Flipkart's "one-click checkout" process - patented!

4. Digital Signatures & Electronic Records

A. Digital Signatures (Section 3 IT Act)

Electronic equivalent of handwritten signature

How it works:

  1. Private key (only you have) → Creates signature
  2. Public key (everyone has) → Verifies signature
  3. PKI (Public Key Infrastructure) → Certifying authorities

Legal Validity: Same as physical signature!

Uses:

  • Income tax e-filing
  • Company registrations (MCA)
  • Tenders, government contracts
  • Banking transactions

Certifying Authorities in India:

  • eMudhra
  • NSDL e-Gov
  • Sify

Cost: ₹800-2,000 for 2 years

B. Electronic Records (Section 4 IT Act)

Paper = Electronic for legal purposes

Examples:

  • Email admissible as evidence in court
  • WhatsApp chats used in criminal cases
  • Digital contracts enforceable

Conditions:

  • Integrity maintained (not tampered)
  • Accessible for future reference

5. E-Governance

Using IT for government services

India's E-Governance Initiatives

A. Digital India Programme (2015)

Vision: Digitally empowered society

Components:

  • Digital Infrastructure: Broadband to every village (BharatNet)
  • Digital Empowerment: 1 crore+ trained in digital literacy
  • Digital Services: Online governance

B. Key Services

ServiceUsersPurpose
Aadhaar1.3 billionUnique ID, authentication
DigiLocker180 millionStore documents digitally
UMANG50 million1,600+ govt services in one app
e-Hospital5,000+ hospitalsOnline appointments, records
e-CourtsAll courtsCase status, virtual hearings

C. Legal Framework

Section 6 IT Act: Government can authorize electronic forms Section 7: Departments can accept digital signatures

Result: No need to visit government offices physically!

6. Cyber Crime Provisions

(Covered extensively in other chapters)

Quick recap:

  • Section 66: Hacking (3 years)
  • Section 66A: Offensive messages (struck down)
  • Section 67: Obscenity (3-5 years)
  • Section 72: Privacy breach by insiders (2 years)

7. Intermediary Liability

Intermediaries = Platforms hosting user content (Facebook, YouTube, Twitter)

Section 79 IT Act: Safe harbor provision

Not liable IF:

  • Act as passive host (don't edit content)
  • Remove illegal content when notified
  • Follow due diligence rules

IT Rules 2021 added:

  • Appoint grievance officer (India-based)
  • Monthly compliance reports
  • Content moderation (AI + human)

Controversy: Traceability requirement

  • WhatsApp must reveal "first originator" of message
  • Privacy vs Security debate

Emerging Areas

1. Cryptocurrency Regulation

  • Not legal tender in India
  • But not banned (as of 2024)
  • TDS 30% on crypto income
  • Regulation still evolving

###2. AI & Algorithm Accountability

  • If AI makes discriminatory decisions?
  • Who's liable - developer, company, or AI itself?
  • No clear law yet in India

3. Internet of Things (IoT)

  • Smart devices (Alexa, cameras) collecting data
  • Security vulnerabilities
  • Need specific regulations

4. Metaverse & Virtual Worlds

  • Virtual property rights?
  • Crimes in metaverse?
  • Uncharted legal territory!

Summary

  • Cyber law components: E-commerce, Data Protection, IPR, Cyber Crimes, Digital Signatures, E-Governance
  • E-commerce: Electronic contracts valid, Consumer Protection Rules 2020, grievance officers mandatory
  • Data Protection: Section 43A (corporate liability), DPDP Act 2023 (₹250cr fines), right to erasure
  • IPR: Software copyright (60 years), domain name disputes, piracy punishable
  • Digital Signatures: Legally valid, ₹800-2,000 for 2 years, used in e-filing
  • E-Governance: Aadhaar (1.3B), DigiLocker (180M), UMANG app
  • Emerging: Crypto regulation, AI accountability, IoT security, Metaverse

Quiz Time! 🎯

Loading quiz…

Next Chapter: Internet Governing Bodies – ICANN, IANA, W3C! 🌐

← PreviousNext →