On April 28, 2022, the Indian Ministry of Information Technology issued a direction relating to cyber security incident reporting in India. The provisions in the direction are controversial and unprecedented. The requirements affect all businesses in India, particularly those operating in the IT industry.

In this client update, the team at Kochhar & Co describe the key requirements of the direction and provide their comments on its implications here.