Mandatory Cybersecurity Regulations for MSMEs in India

Fri Jan 17, 2025

In India, Micro, Small, and Medium Enterprises (MSMEs) are not currently subject to mandatory sector-specific cybersecurity regulations. However, MSMEs must comply with general laws and guidelines applicable to all organizations operating within India, including the IT Act, 2000, and CERT-In directions. Here’s a summary of relevant regulationsfor MSMEs:

Sector-Specific Guidelines:

MSMEs in critical sectors (e.g., healthcare, BFSI, manufacturing) may have additional voluntary or mandatory requirements depending on client or regulatory demands.

Do reach out to our Cybtree Team, if you'd like assistance tailoring cybersecurity measures for MSMEs or reviewing compliance obligations in greater detail!

Rishabh Gupta
Cyber Security Expert (based in UAE)Has worked for companies such as McKinsey & Company, Emirates Group, Ernst & Young, Wipro etc.Master in Cyber Security from Indian Institute of Information Technology - Allahabad

Mandatory Cybersecurity Regulations for MSMEs in India

You may also be interested in