India Delays VPN Rules To Log Customers Data by 3 Months

India will give VPN providers and cloud service operators an additional three months to comply with new rules that require they maintain names and addresses of their customers and their IP addresses, delivering some relief to firms as many scramble to follow the new guidelines and others explore exiting the South Asian market. From a report: The Indian Computer Emergency Response Team, the body appointed by the government to protect India's information infrastructure, said Monday evening it is extending the enforcement of the new rules to September 25. The rules, unveiled in late April, was set to go into effect Monday. Its announcement follows sharp criticism from VPN providers, many of which including Nord and ExpressVPN have announced their intentions to remove local servers in the country in recent weeks. [...] CERT's new directions require "virtual private server (VPS) providers, cloud service providers, VPN service providers, virtual asset service providers, virtual asset exchange providers, custodian wallet providers and government organisations" to store customers' names, email addresses, IP addresses, know-your-customer records and financial transactions for a period of five years.

Read more of this story at Slashdot.