Delhi Government Implements Stringent Cybersecurity Guidelines to Protect Public Data
Delhi Govt Rolls Out Cybersecurity Rules to Safeguard Public Data

Delhi Government Implements Stringent Cybersecurity Guidelines to Protect Public Data

The Delhi government has adopted a comprehensive set of cybersecurity measures to safeguard public and official data stored across various departments. This initiative comes as the government plans to expand its digital infrastructure and build databases for multiple welfare schemes.

Key Cybersecurity Measures Introduced

The Information Technology Department has issued detailed cyber security guidelines to all departments, local bodies, boards, and commissions. These directives aim to tighten cybersecurity protocols and protect official IT infrastructure against increasing cyber threats.

The guidelines include several critical requirements:

  • Implementation of strong passwords and multi-factor authentication for access to sensitive data
  • Mandatory security audits of all websites and applications
  • Deployment of assistant chief information security officers as single points of contact
  • Prohibition of third-party email platforms for official communication
  • Ban on using pirated software across all departments

Protecting Extensive Public Data

The Delhi government holds extensive personal and household data of residents, including names, addresses, family details, income, education, profession, caste, and age. This information is collected through multiple departments and requires robust protection mechanisms.

An official emphasized, "Strong data protection mechanisms are essential to safeguard public privacy, prevent misuse, and ensure trust in digital governance."

The government is currently creating a unified data hub—a centralized platform that will integrate records from departments such as food and civil supplies, revenue, water (Delhi Jal Board), power, trade and taxes, and municipal bodies. This initiative aims to generate "golden records" of beneficiaries, eliminate duplication, and streamline welfare delivery.

Additional Security Protocols

The guidelines provide specific instructions for daily operations and incident response:

  1. Only NIC email IDs can be used for official communication
  2. Officials must avoid opening anonymous links, suspicious websites, or email attachments on office systems
  3. All devices, operating systems, software, and SSL certificates must be regularly updated
  4. Departments must install and maintain updated antivirus systems
  5. Sharing of passwords is strictly prohibited
  6. Employees must shut down systems before leaving office
  7. Detailed inventory of IT infrastructure must be maintained
  8. Regular data backups must be scheduled according to prescribed policy

Incident Reporting Requirements

In the event of any cyber incident, departments must immediately report the matter to the national cybercrime helpline at 1930 or via email to incident@cert-in.org.in and incident@nic-cert.nic.in. This rapid response protocol is designed to minimize damage and facilitate quick resolution of security breaches.

The advisory has been circulated to all additional chief secretaries, principal secretaries, secretaries, heads of departments, local bodies, boards, and commissions under the Delhi government. The guidelines emphasize that any breach of government systems could damage administrative credibility, compromise sensitive information, and affect governance delivery.

This comprehensive cybersecurity framework represents a significant step toward securing Delhi's digital infrastructure as the government expands its online services and data collection initiatives. The measures address both technical vulnerabilities and human factors in cybersecurity, creating a multi-layered defense against potential threats to public data and government operations.