Contact us

 What are the Basic Security Standards Required in India?

0:33 Min Read Time 1 Experts
Sahib
Senior Security Engineer | OSCP, CISM, CEH | Testvox

In India, the following basic security standards are generally required:

  • Information Technology (Reasonable Security Practices and Procedures and Sensitive Personal Data or Information) Rules: These rules under the Information Technology Act, 2000 mandate that businesses must ensure reasonable security practices to protect personal data and sensitive information.
  • ISO 27001: An international standard for information security management systems (ISMS).
  • PCI DSS (Payment Card Industry Data Security Standard): For businesses handling payment card transactions.
  • SOC 2 (System and Organization Controls): A framework for managing and securing data in service organizations.
  • GDPR (General Data Protection Regulation): Though an EU regulation, companies operating in India and handling EU citizens’ data must comply with GDPR standards.

Additionally, organizations must comply with any industry-specific security standards and regulations (e.g., HIPAA for healthcare, RBI guidelines for financial services).

RELATED ARTICLES

How do QA engineers contribute to your product’s success?

16 January 2025

What Security Testing is most crucial for Startups, and Why?

16 December 2024

What are the key activities involved in the basic level of security testing

15 December 2024

Is Security Testing mandatory for Mobile Apps? Why and for how long?

13 December 2024

When is Security Testing conducted? (After Release, At Beta, In Production)

12 December 2024

If there is still bug leakage after release despite having a QA team, why do we need a QA team?

4 June 2024
ABOUT TESTVOX
Testvox
Testvox is a software testing company help your product reach its full potential. Get full cycle testing for your mobile and web applications while ensuring all quality assurance standards are met.