NEW DELHI: The Information Technology (IT) industry has reacted angrily to the expose that tens of thousands of Australians are at risk of computer fraud because workers in India-based call centres are illegally selling personal information. It asked why media organisations carrying out undercover operations did not take the help of Indian security agencies and IT organisations to prosecute the guilty and dissuade potential hackers.

The Australian TV programme alleged that ATM and passport numbers and credit card details, enough information for hackers to assume a different identity online, were sold to its undercover reporter for $ 7 per person. It was the same journalist who had carried out an undercover operation for Britain's Sun tabloid a few months ago, suggesting that a Gurgaon-based call centre employee was willing to sell a compact disc containing personal details of thousands of British citizens.

Unaddressed issues

Having tightenedsecurity measures to a certain extent after the first `expose' by Sun, the industry says it has noted several unaddressed issues: such reports emanate from `entrapment operations' and no person has reported any harm yet; and, in the absence of a formal complaint, even Enforcement officials cannot launch formal investigations and apprehend the criminals.

The apex body of the Indian industry, Nasscom, has asked media organisations concerned to provide details collected through `entrapment operations' and pass on details of alleged criminal activities to Enforcement officials.

The Indian IT and business process outsourcing (BPO) companies are already working with the government to introduce amendments to the Information Technology Act, which will make life even more difficult for criminals; train and support Indian law enforcement agencies to ensure that they are well-equipped to tackle cyber crime; and, establish a register of IT professionals to ensure that only suitable staff are employed in the industry.

"Nasscom and its member companies are strong upholders of data privacy and have been continuously strengthening both the legal and enforcement framework for data protection. In keeping with this, Nasscom will work with the legal authorities in Australia and India to ensure that those responsible for any criminal breaches are promptly prosecuted and given the maximum penalty.

"We believe that any case of theft or breach of a customer's confidentiality must be treated extremely seriously. It does not matter if the crime is `traditional' in nature or whether it is a cyber crime", it said.

"The problem is not unique to any single nation. It is one that affects us all and each of us has a responsibility to take on the criminals. This problem, unfortunately, is unlikely to diminish. As the world becomes increasingly interconnected and warped, criminal minds are likely to outpace technological solutions", it said.

"Each of our IT and BPO member companies should adhere to the highest global standards in data security and privacy. Each of our customers must maintain diligence on all their vendors and ensure contractual commitments to relevant laws. India, with its strong legal system and independent judiciary, is a country which takes this responsibility extremely seriously."

"Indian IT companies undertaking work for global companies contractually comply with all the requirements of the relevant privacy and data protection laws of the home country as well as other security and confidentiality safeguards. But the industry is determined to raise standards even further. The Indian IT and BPO companies already match worldwide standards in security. However, they want to do more: they want to set the very highest standards,'' it said.

Printer friendly page  
Send this article to Friends by E-Mail