In April 2022, the Indian Computer Emergency Response Team (CERT-In) introduced cybersecurity guidelines in an effort to counter cyberattacks and strengthen online security. The new rules would require VPN services and other cloud service providers to maintain all customer data and ICT transactions for five years.