A complete reference to cyber crimes, applicable laws, punishments, and your digital rights as an Indian citizen.
The Laws That Protect You.
India's IT Act 2000, DPDP Act 2023, and BNS provisions form a comprehensive shield for every citizen's digital life.
IT Act 2000
The foundational legislation governing cyber crime and electronic commerce in India. Provides legal recognition to electronic transactions and defines cyber offences.
Legal framework for electronic governance and cyber crime prosecution
Section 43
Covers unauthorized access, downloading data, introducing viruses, and damaging computer systems. Imposes penalty and compensation on the offender.
Penalty for unauthorized access and data damage — compensation to affected party
Section 65
Addresses tampering with computer source documents. Anyone who knowingly conceals, alters, or destroys source code faces imprisonment and fine.
Tampering with source code — imprisonment up to 3 years or fine up to ₹2,00,000
Section 66
Deals with computer-related offences including hacking. Dishonestly or fraudulently accessing a computer system without authorization constitutes hacking under this section.
Hacking and computer fraud — imprisonment up to 3 years and/or fine up to ₹5,00,000
Section 66C
Punishes identity theft — fraudulently using another person's electronic signature, password, or other unique identification feature.
Identity theft — imprisonment up to 3 years and fine up to ₹1,00,000
Section 66D
Covers cheating by personation using computer resources. Using someone else's identity to commit fraud through digital means.
Cheating by personation — imprisonment up to 3 years and fine up to ₹1,00,000
Section 67
Prohibits publishing or transmitting obscene material in electronic form. Covers vulgar, pornographic, or sexually explicit content distribution online.
Publishing obscene content — imprisonment up to 5 years and fine up to ₹10,00,000
Section 67A
Addresses publishing or transmitting material containing sexually explicit acts in electronic form. More severe than Section 67 for explicit sexual content.
Sexually explicit content — imprisonment up to 7 years and fine up to ₹10,00,000
Section 69
Empowers the government to issue directions for interception, monitoring, and decryption of information through computer resources for national security.
Government interception power for sovereignty, defense, and public order
Section 70
Protects critical information infrastructure. Unauthorized access to systems designated as protected by the government carries severe penalties.
Protected system access — imprisonment up to 10 years and fine
Section 72
Penalizes breach of confidentiality and privacy. Anyone accessing data without authorization and disclosing it to others faces punishment.
Privacy breach — imprisonment up to 2 years and/or fine up to ₹1,00,000
DPDP Act 2023
The Digital Personal Data Protection Act establishes comprehensive framework for processing digital personal data, ensuring consent-based processing and data principal rights.
Consent-based data processing, data principal rights, penalties up to ₹250 crore
BNS Cyber Provisions
The Bharatiya Nyaya Sanhita (Indian Penal Code replacement) includes specific provisions for cyber crimes including online fraud, identity theft, and digital harassment.
Sections 318, 351, 354, 351D — modernized criminal provisions for digital offences
Rights the Law Guarantees You.
The Constitution and cyber laws guarantee these fundamental digital rights to every Indian citizen. Know them — they are enforceable.
Right to Privacy
The Supreme Court of India recognized the Right to Privacy as a fundamental right under Article 21. Your personal data, communications, and digital activities are protected by constitutional guarantee.
Right to Data Protection
Under the Digital Personal Data Protection Act 2023, you have the right to know what data is collected, consent to its use, request deletion, and nominate someone to exercise these rights after your death.
Right to Online Safety
Every citizen has the right to a safe online environment. The IT Act provides legal recourse against cyber harassment, stalking, and threats. Platforms must ensure user safety.
Right to Digital Identity Protection
Section 66C of the IT Act protects your digital identity. Unauthorized use of your electronic signature, password, or identity is a punishable offence with up to 3 years imprisonment.
Right to Report Cyber Crime
Every citizen has the right to report cyber crimes through the National Cyber Crime Portal (cybercrime.gov.in) or by calling 1930. FIR registration is free and can be done online.
Right to Legal Action
Victims of cyber crime have the right to seek legal remedy, claim compensation, and pursue criminal prosecution. The IT Act and BNS provide comprehensive legal remedies.
Report Cyber Crime
Follow these 5 steps to effectively report a cyber crime and begin the legal process.
Collect Evidence
Preserve all digital evidence — do not delete anything. Note dates, times, and details of the incident.
Save Screenshots
Take screenshots of all relevant communications, web pages, messages, and suspicious activities.
Save Transaction Details
Record transaction IDs, bank statements, UPI references, and any financial trail related to the fraud.
File Complaint
Report at cybercrime.gov.in or call 1930. File FIR at nearest cyber crime police station.
Investigation
Cyber cell investigates. Cooperate fully and provide additional evidence as requested. Track your complaint status online.
National Cyber Crime Portal • Helpline: 1930
10 Rules That Keep You Safe.
Simple, non-negotiable practices that dramatically reduce your risk of becoming a cyber crime victim.
Never Share OTP
Your OTP is the last line of defense for your accounts. Banks, payment apps, and legitimate services will never ask for your OTP. Sharing it gives attackers full access to your financial accounts and personal data.
Verify UPI Requests
Always double-check the UPI ID and amount before approving any payment request. Scammers create similar-looking UPI IDs and send collect requests. Verify the recipient name matches your expectation.
Avoid Unknown Links
Phishing links can look identical to legitimate websites. Never click links from unknown senders in email, SMS, or messaging apps. When in doubt, navigate directly by typing the URL in your browser.
Enable Two-Factor Authentication
2FA adds a second layer of security beyond your password. Even if your password is compromised, attackers cannot access your account without the second factor. Enable it on every account that supports it.
Use Strong Passwords
Use passwords with at least 12 characters mixing uppercase, lowercase, numbers, and symbols. Never reuse passwords across accounts. Consider using a password manager to generate and store unique passwords.
Keep Software Updated
Software updates contain critical security patches that protect against known vulnerabilities. Enable automatic updates on your operating system, browser, and apps. Outdated software is an open door for hackers.
Report Suspicious Activity
Reporting cyber crime quickly increases the chances of recovery and prosecution. Use the National Cyber Crime Portal or call 1930. Your report could prevent others from becoming victims.
Protect Personal Information
Limit the personal information you share online. Scammers use social media details to craft convincing phishing attacks and impersonate you. Review your privacy settings regularly on all platforms.
Use Secure Networks
Avoid public Wi-Fi for financial transactions and sensitive activities. Use a VPN if you must connect to public networks. Hackers can intercept data on unsecured Wi-Fi connections through man-in-the-middle attacks.
Back Up Your Data
Maintain regular backups of important files to protect against ransomware, hardware failure, and accidental deletion. Use the 3-2-1 rule: 3 copies, 2 different media, 1 off-site backup.
Been a victim of cyber crime?
Report immediately at cybercrime.gov.in or call 1930
Ask a Cyber Law Expert
Get answers to the most frequently asked questions about cyber laws in India.
Every Crime Has
a Legal Consequence.
India's IT Act 2000 and BNS define strict punishments for cyber offences. Know the law — it's your first line of defence.
Phishing Fraud
Phishing Fraud
#001 · IT Act 2000
Fraudulent attempts to obtain sensitive information such as usernames, passwords, and credit card details by disguising as a trustworthy entity in electronic communication.
IT Act 2000
Imprisonment up to 3 years
Up to ₹1,00,000
Protection: Never click suspicious links. Verify sender identity. Report to CERT-In immediately.
Fake Customer Care Scam
Fake Customer Care Scam
#002 · IT Act 2000
Scammers pose as customer care representatives of banks, telecom companies, or e-commerce platforms to extract personal and financial information from victims.
IT Act 2000
Imprisonment up to 3 years
Up to ₹1,00,000
Protection: Always verify customer care numbers on official websites. Never share OTP or card details over phone.
Showing 2 of 18 documented cyber crimes
