No.eNo.2(4)/2023-CyberLaws–3

Government of India

Ministry of Electronics and Information Technology

Cyber Law and Data Governance Group

Electronics Niketan,

New Delhi 110003

Date: 01-03-2024

Subject:         Due diligence by Intermediaries / Platforms under the Information Technology Act, 2000 and Information Technology (Intermediary Guidelines and Digital Media Ethics Code) Rules, 2021.

This is in continuation to the advisoryNo. e No. 2(4)/2023-CyberLaws – 2 dated 26th Dec 2023 (copy enclosed). It has further come to the notice of the Ministry of Electronics and Information Technology (“Ministry”) that intermediaries or platforms are failing to undertake due-diligence obligations outlined under Information Technology (Intermediary Guidelines and Digital Media Ethics Code) Rules, 2021 (“IT Rules”).

  1. Accordingly, in addition to the advisory No. e No. 2(4)/2023-CyberLaws – 26th Dec 2023, all intermediaries / platforms are hereby advised to also ensure compliance to the following:
  1. All intermediaries or platforms to ensure that use of Artificial Intelligence model(s) /LLM/Generative AI, software(s) or algorithm(s)on or through its computer resource does not permit its users to host, display, upload, modify, publish, transmit, store, update or share any unlawful content as outlined in the Rule 3(1)(b) of the IT Rules or violate any other provision of the IT Act.
  2. All intermediaries or platforms to ensure that their computer resource do not permit any bias or discrimination or threaten the integrity of the electoral process including via the use of Artificial Intelligence model(s)/LLM/Generative AI, software(s) or algorithm(s).
  3. The use of under-testing / unreliable Artificial Intelligence model(s) /LLM/Generative AI, software(s) or algorithm(s) and its availability to the users on Indian Internet must be done so with explicit permission of the Government of India and be deployed only after appropriately labeling the possible and inherent fallibility or unreliability of the output generated. Further, ‘consent popup’ mechanism may be used to explicitly inform the users about the possible and inherent fallibility or unreliability of the output generated.
  4. All users must be clearly informed including through the terms of services and user agreements of the intermediary or platforms about the consequence of dealing with the unlawful information on its platform, including disabling of access to or removal of non-compliant information, suspension or termination of access or usage rights of the user to their user account, as the case may be, and punishment under applicable law.
  1. Where any intermediary through its software or any other computer resource permits or facilitates synthetic creation, generation or modification of a text, audio, visual or audio-visual information, in such a manner that such information may be used potentially as misinformation or deepfake, it is advised that such information created, generated, or modified through its software or any other computer resource is labeled or embedded with a permanent unique metadata or identifier, by whatever name called, in a manner that such label, metadata or identifier can be used to  identify that such information has been created, generated or modified using computer resource of the intermediary, or identify the user of the software or such other computer resource, the intermediary through whose software or such other computer resource such information has been created, generated or modified and the creator or first originator of such misinformation or deepfake.
  2. It is reiterated that non-compliance to the provisions of the IT Act and/or IT Rules would result in potential penal consequences to the intermediaries or platforms or its users when identified, including but not limited to prosecution under IT Act and several other statues of the criminal code.
  3. All intermediaries are, hereby requested to ensure compliance with the above with immediate effect and to submit an Action Taken-cum-Status Report to the Ministry within 15 days of this advisory.

Yours faithfully,

(Dr. Sandip Chatterjee)

Scientist G and Group Coordinator (Cyber Law)

Tel.:011-24363094

Email: gccyberlaw@meity.gov.in

Enclosed:

  1. AdvisoryNo. e No. 2(4)/2023-CyberLaws – 2 dated 26thDec 2023(Annexure A)
  2. The Information Technology (Intermediary Guidelines and Digital Media Ethics Code)Rules, 2021, updated as on 06.04.2023 (Annexure B)

Page  of 2