The Computer Emergency Response Team (CERT-In) Excluded From RTI
The Computer Emergency Response Team (CERT-In) has recently been included by the central government in the list of organizations exempted from the Right to Information Act (RTI), 2005.
CERT-In, which is the national agency responsible for responding to computer security incidents, falls under the Ministry of Electronics and Information Technology.
The said decision has raised concerns as it puts limitations relating to transparency for an entity dominant and crucial in addressing cyber threats and enhancing security awareness.
CERT-In plays an important role in responding to computer security incidents promptly.
Enhancement of security awareness among common citizens is one of its main objectives.
CERT-In functions under the Ministry of Electronics and Information Technology, reflecting its significance in safeguarding digital infrastructure and addressing cybersecurity challenges.
Enacted in 2005, the Right To Information (RTI) Act exempts certain intelligence and security organizations from its purview.
The said exemption includes entities listed in the Second Schedule, with a provision excluding information related to allegations of corruption and human rights violation and the amendment adds CERT-In as the 27th organization exempted under this provision.
The decision to exclude CERT-In from RTI scrutiny has sparked concerns about transparency and accountability, specifically relating to cybersecurity.
As a national nodal agency, the activities of CERT-In are crucial for addressing cyber threats and ensuring the security of critical digital infrastructure.
The decision to exclude it from RTI inquiries shall impact the public’s access to information on cybersecurity incidents, response strategies, and overall governance of digital security.