Wednesday, October 13, 2021

Data theft during festivals post pandemic: why we need to be aware by Dr.Debarati Halder

CYBER CRIME AGAINST WOMEN BY DEBARATI HALDER


Image courtesy : Internet 

2021 October promises to be different than October 2020. The difference is being felt already and it is not because of the increase in the number of vaccinated people who may win over pandemic, but because of the ever growing percentage of cyber-crimes, especially cyber monetary crimes. Several researches have shown that pandemic related lockdown has pushed people to go on a buying spree. Given the situation, people have invested more on online shopping. The festival periods are the chosen periods for pumping up sale. In 2020, people could not invest more in the festival related shopping which includes paying for vacations, apparels and accessories.  2021 sees the graph slowly rising. Governments have eased restrictions and this has further encouraged people to venture out from their homes, visit more shops physically as well as virtually. But people have understood the value of plastic money better than before.  Ecommerce platforms are booming with offers and consumers are buying heartfull. Most of the ecommerce platforms have offered their own applications to be downloaded in Android phones so that the consumers do not venture out to other links. There is unique blending of application of social engineering, artificial intelligence, business analytical skills and most importantly data polling which makes the e commerce platforms unique in their own spheres.

The e-commerce platforms are the chosen platforms for consumer data theft.

Why do our phones showcase us our secret plans?

Many have asked me why and how their devices “secretly spy” on their buying plans and how the social media platforms, popup ads show exactly the staff that these consumers/customers are looking for. The answer is: NO! The devices are inanimate objects and they cannot spy on our plans unless there is a human made mechanism to share our plans. Here we need to look into the consumer behavior on the cyber space: time and again the internet companies have tried to shred off liability of breaching the privacy of their subscribers/customers. If we look into the consumer behavior on the cyber space, we may be able to understand that the internet companies are not completely wrong. One cannot have the search engines activated unless the said person is using some personally identifiable unique identification data which may include the phone number or the email id. Most of us do not log out of our email ids after we have finished our “search”.  We neither log off from our social media accounts when we are doing a virtual window shopping. Not to forget that social media companies are deeply connected with the e-commerce platforms: they are even more deeply connected with the search engines as well. This makes the entire search- history of the respective consumers reflect on the digital platforms that are being used by the said consumers.

The banking data leak?

Quite in the same way consumers/customers leave their banking digital footprints on the e-commerce platforms. When we use any online payment modes, the e-commerce platforms record the said mode for future commercial transaction purposes. The card/payment app etc., that may have been used by the consumers/customers may also be recorded by the e commerce platforms. But if seen minutely, the customers are ‘asked’ to consent for ‘remembering’ the payment systems. Such payments through cards or net-banking or through any other digital payment mode further goes through other payment gateways which will also remember the amount paid, the unique customer id that the banking card displays and other related sensitive personal financial data of the customer/consumers.

 

Several researches and cyber-crime analysis have shown that the festival times may be considered as the peak times for  monetary crimes on the cyber space because  there may be heavy flow of commercial transactions on e-commerce platforms and there may be almost nil ‘monitoring’ in this regard. Added with this, it has also been noticed by some that personal details of women customers may become the highest ‘valued’ data in this regard. The profile of the female customer along with the banking details and the stuff that she chooses to purchase may all be linked for an entirely different and unethical business that would add profit for some in the deep dark net world.  Unfortunately it may become a herculean task to detect the mastermind of the entire data theft as the crime detection agency may need to investigate through multiple layers of virtual platforms, majority of which may deny their liability siting the negligence of the customer.

The legal recourse?  

We need to look into EU General Data Protection Regulation (EU GDPR) for understanding the universal rules in this regard. Chapter 3 of the EU GDPR discusses in detail about the rights of the data subjects and clearly mentions that there should be restrictions in sharing personal data of the data owner with multiple stakeholders when the data owner has not given any explicit permission for the same. Interpreting this, it may be understood that social engineering is never permitted under the EU GDPR even if the consumer/customer has ‘voluntarily’ consented for recording of his/her online payment mode by the e-commerce platforms. India still does not have any dedicated data privacy protection laws. Resultant, we need to look at scattered laws and rules mentioned in different statutes and legal provisions. The Consumer Protection Act, 2019 does not specifically protect consumer’s rights against such kinds of data privacy infringements. Information Technology Act, 2000(amended in 2008) very loosely touches upon the issue of consumer data privacy under S.72A which states as follows:

Save as otherwise provided in this Act or any other law for the time being in force, any person including an intermediary who, while providing services under the terms of lawful contract, has secured access to any material containing personal information about another person, with the intent to cause or knowing that he is likely to cause wrongful loss or wrongful gain discloses, without the consent of the person concerned, or in breach of a lawful contract, such material to any other person, shall be punished with imprisonment for a term which may extend to three years, or with fine which may extend to five lakh rupees, or with both.

But again, we must understand that the scope of this provision to prevent sharing of the banking/financial and sensitive personal data by the internet companies becomes extremely limited especially when they come up with strong plea of no liability towards willful causing of loss and ignorance of the behavior of the consumers in spite of giving the later opportunities to protect their data and profiles through different privacy control mechanisms. However, this doesn’t mean that the victim does not have legal recourse. The internet companies may need to clearly establish that they were absolutely ignorant of the probable loss that may be caused to the victim due to recording the banking details, consumer habits of the later. They must also establish that their data processing and recording mechanisms are secured and cannot be infringed by perpetrators. This claim of the internet companies must also be adhering to the principles set in S.43A of the Information Technology Act, 2000(amended in 2008) which speaks about the responsibilities of the body corporates.  Otherwise, they may need to undergo the legal recourses that the present Indian legal system offers for penalizing the internet companies.

It is hoped that India enacts a full-fledged data privacy law which will protect the rights of the general individuals including the consumers. But till then, we the general users of the information and digital communication technology need to be aware of the risks and rights available to us.

 Please note: Please  do not violate the copyright of this writeup. Please site it as Halder Debarati ( October, 2021) "Data theft during festivals post pandemic: why we need to be aware." Available @https://debaraticyberspace.blogspot.com/2021/10/data-theft-during-festivals-post.html 

 

  

 

 


Tuesday, September 7, 2021

Hurray … I am vaccinated: know the risks for updating vaccine-posts

CYBER CRIME AGAINST WOMEN BY DEBARATI HALDER

                                                    Image courtesy : Internet  



As on first week of September, 2021, India has reportedly vaccinated more than 67, 09, 59,968 people and several of them have also got fully vaccinated. Noticeably Covid vaccination drive is being conducted by the government and it necessarily includes sharing of certain sensitive personal data that have been included in the Aadhar data of every individual. Expectantly vaccination data is connected with the personal information including health information of the beneficiary as well.

Let me now explain how we the beneficiaries of Covid vaccination drive have knowingly shared our personal data and have invited risks of privacy infringement.

In 2020 when I was affected by Covid and wanted to be reassured that I am carrying the virus, I had sought for Covid testing like millions of us who have survived Covid. The government testing agencies were over flowing and this had happened in all cities across India. Medical shops got many of us connected with private labs who would be testing us ‘at the earliest’ to help us recover faster. Several people reported that even though they did not have symptoms, they were tested positive. Everyone suspected foul play, but we had to accept that the pandemic has touched all of us very dearly. Whether it was government labs or private labs, the individuals who would be taking the swab test were directed to mandatorily collect Aadhar data of the persons who were taking the tests. There were series of data sharing from private agencies to government agencies and in majority of the cases the data owners were never asked for their explicit permission for sharing their data. Added with this, we the general users of social media companies have shared about our levels of infections and recovery on social media platforms without giving it a thought that we are generating data that have potential to put us on risk for numerous kinds of cybercrimes including ransom attacks, bullying, stalking and doxing to name a few. During the very first phase of Covid-19 we have seen social exclusion with the Covid 19 victims and their families. There had been several cases of shaming on the social media for victims of Covid-19. Somehow such ‘harassments’ of victims of Covid and their families may be attributed to the data generated by people who had been infected and survived Covid.

Most of us would never understand how such data sharing would have affected us. Resultant, most people have shared about their vaccination details, which should have been considered as part of sensitive personal health data. Let me explain how we have unknowingly shared such data and have invited risks:

Many people who had vaccine may have taken selfies or may have allowed their family members to take photographs of being vaccinated. These images may have been immediately shared on social media profiles with date of vaccination and the name of the vaccine. Further, several vaccination centers had also offered galleries for taking photographs. Some may argue that vaccine beneficiaries may not have shared the personal data including secret numbers or registration details that may be availed from the government platforms. But not to forget, this is an age of social engineering.  Hackers and ransom attackers are smart to connect facial images, geo-locations, Aadhar details with date and time stamp to access sensitive personal data stored on platforms which may not provide much security to the privacy of the data owners.

Such apprehensions are not baseless. In December, 2020,  Pfitzer had reportedly shared the bad news of being targeted by cyber criminals.[1] Again, in June, 2021 news about possible hacking of CoWin platform made the government to consider for investigation of the entire issue.[2]

Why we need to be considered for this issue and what does the law say? The answer basically centers on the liability of the websites/social media companies to protect our data. Two issues must be understood here: the liability of the companies/body corporates (especially the vaccine production companies and the vaccine administering stakeholders) in whose data base our sensitive health data including the vaccine data is being stored, and  the liability of the social media companies on whose platform we are sharing our own data in the form of selfies, pictures etc. S.43A of the Information Technology Act, 2000(amended in 2008) makes the body corporates liable for protection of the data of the clients/customers/beneficiaries. If the integrity and confidentiality of the data is infringed, the body corporates need to compensate the damages. There may be huge legal battles for this and body corporates may always prima facie deny their negligence. Not to forget, they may outsource the entire work of data generation, data storing and maintaining the confidentiality of the data to the third parties and resultant, they may need to face layers of liability charges. This does not happen in case of social media companies. The later have explicit policies and agreement clauses that majority of the users of the platforms ignore. These clauses and policies clearly demonstrate the company’s due diligence clauses. In other words, the companies very clearly state that they will remove some posts if the same are offensive and fall within their own category of offensive posts. They would also bear the liability of securing confidentiality of  the profiles. But they would not take any liability if the users themselves “knowingly” post something which is self-damaging. For understanding this, we have take close look on S.79 of the Information Technology Act, 2000(amended in 2008) which elaborates website liabilities and immunity clauses for the websites from third party liabilities. In short, websites will not be liable for any ransom attack, hacking or any other forms of online harassment if the users “knowingly” upload some contents which may attract perpetrators. “Knowingly” here corresponds with the meaning of “awareness”. The websites expect their users to be aware of the risks of posting certain contents which would be self-damaging.  

We should rejoice the winning over the pandemic but not at the cost of our privacy and security. Be aware, stay safe and spread positive awareness.

Please note: Please note: Please  do not violate the copyright of this writeup. Please site it as Halder Debarati (2021) Hurray … I am vaccinated: know the risks for updating vaccine-posts @https://debaraticyberspace.blogspot.com/2021/09/hurray-i-am-vaccinated-know-risks-for.html

 

 



[1] See in Stubbs.J(2021) Hackers steal Pfizer/BioNTech COVID-19 vaccine data in Europe, companies say . published in https://www.reuters.com/article/uk-ema-cyber/hackers-steal-pfizer-biontech-covid-19-vaccine-data-in-europe-companies-say-idUKKBN28J1VF on December 10,2020.

[2] See for more in Jaswal M(June 2021) Claims of Cowin system, hacking, data breach baseless: Health ministry . Available @ https://www.livemint.com/news/india/claims-of-cowin-system-hacking-data-breach-baseless-health-ministry-11623489372000.html published on June 12,2021


Thursday, April 22, 2021

Is using electronic payment mode mandatory?

CYBER CRIME AGAINST WOMEN BY DEBARATI HALDER

We are facing challenge of Covid-19 restrictions. A whole generation is facing another unique challenge. Many senior citizens and people from socio-backward classes and communities are unable to exercise their basic right to life because they may be unable to use the electronic payment mechanisms.

By the end of 1990’s electronic commerce started getting popularity and almost by the first half of the millennium, banks of several countries had expanded their services for electronic money transactions. Soon plastic money in the forms of ATM, credit, debit cards etc., were introduced and the smart generation started relying more on plastic money rather than carrying currency in their wallets. But this proved dangerous for majority. There were physical theft of wallets and the cards, misuse of the cards, hacking of e banking systems which directly affected the card operating systems, ATM machines were unauthorizedly accessed, spycams were installed in the machines to detect the banking information including the passwords etc. Senior citizens were worst affected as most of them in countries like India could not operate the e-banking system or the cards: either they could not understand the operational mechanisms or they were not physically able to conduct the entire transactions either through the ATMs, or through their smart devices. This was due to generation gap.

With the advancement of technology, e wallets were introduced. Through online banking mechanisms, one can deposit a particular amount of money in e—wallets. However, this would not be operating as a single and independent device or mechanism. Users may connect their valid government identity proofs with e-wallets. Such e-wallets may necessarily be used through computers, smart phones etc.[1] Everything remains virtual except the device/s that will help a user to access the online transaction mechanisms. It has been continuously stated that plastic money, e-wallets and e-banking systems are safe and better than carrying the currency.

But do we really know who is safeguarding our money in this system? A few provisions Chapter III of our very own Information Technology Act, 2000(amended in 2008) would make this clear. Chapter III discusses about electronic governance. S.6A of the Information Technology Act (IT Act), 2000, amended in 2008 is noteworthy here: it says as follows:

6A Delivery of services by service provider. -

(1) The appropriate Government may, for the purposes of this Chapter and for efficient delivery of services to the public through electronic means authorise, by order, any service provider to set-up, maintain and upgrade the computerised facilities and perform such other services as it may specify by notification in the Official Gazette. Explanation. -For the purposes of this section, service provider so authorised includes any individual, private agency, private company, partnership firm, sole proprietor firm or any such other body or agency which has been granted permission by the appropriate Government to offer services through electronic means in accordance with the policy governing such service sector.

(2) The appropriate Government may also authorise any service provider authorised under sub-section (1) to collect, retain and appropriate such service charges, as may be prescribed by the appropriate Government for the purpose of providing such services, from the person availing such service.

(3) Subject to the provisions of sub-section (2), the appropriate Government may authorise the service providers to collect, retain and appropriate service charges under this section notwithstanding the fact that there is no express provision under the Act, rule, regulation or notification under which the service is provided to collect, retain and appropriate e-service charges by the service providers.

(4) The appropriate Government shall, by notification in the Official Gazette, specify the scale of service charges which may be charged and collected by the service providers under this section: Provided that the appropriate Government may specify different scale of service charges for different types of services.

 

Online transactions for e-commerce purposes are directly connected with the concept of service delivery by service providers. S.6A has got two main component parts: (i) authorization to the service providers by the government to set up provisions for delivery of services in the electronic mode; and (ii) collection of service charges by the service charges. Whenever we get to see a smooth or a bumpy operation of services from the banks or from any other government or corporate authorities, we must know that there is a secret team behind that government department, bank or the corporate authority. They may be independent agencies who are commissioned by such government /bank/corporate authorities. These ‘secret teams’ perform all the technical functions for economic transactions, maintenance of the records for money transactions, maintenance of cyber security issues etc.,  and they are duty bound to not to violate the confidentiality of the user-data. Intact there are layers of contracts between the actual user and the bank/government/company, between such service provider and the actual users and the government etc. We know only the first layer of contracts and agreements between us, the actual users and the bank/government /company etc., who are providing us certain services or even goods. But there are several examples of violating the agreements and contracts. These ‘service providers’ know us more than we know ourselves because they know our bank details, our spending habits and even our location data too.

Considering the risk for breaching of confidentiality in all such cases S.7A of the IT Act, 2000(amended in 2008) has prescribed for auditing of documents etc., maintained in electronic forms. This Section says as follows:

“7A Audit of documents, etc., maintained in electronic form. -Where in any law for the time being in force, there is a provision for audit of documents, records or information, that provision shall also be applicable for audit of documents, records or information processed and maintained in the electronic form.”

But this is hugely neglected by many stakeholders and this loophole creates several data breaching related legal issues. The Indian legislature has also brought in the Intermediary guidelines Rules, 2021 which also shifts the liability for data protection for intermediaries in certain cases.

However, we must not forget that there is digital divide in our societies. Adults including men, women and people belonging to LGBTQ communities may not always access information and digital communication systems and services. This is a universal problem. Women may not be empowered to use electronic devices in socio-economically backward classes and communities. Not to forget that even though Indian constitution mandates for equal pay for all, women may not always get equal pay in unorganized sectors. Many households in India as well as in many Asian countries do not allow women to take any decision related to family-finances.  But there are situations when people are forced to use electronic payment/transaction systems. Covid-19 pandemic is one such situation where the WHO advised to reduce usage of anything which may transmit the viruses from people to people: reduction of usage of currency notes were also suggested as it was understood that the materials in the currency notes may get wet with sweat, saliva etc., and this may be extremely dangerous since it might increase the risk of spreading of pandemic. But there are new researches coming up every day which are suggesting how to take precautions while dealing with papers (including materials which are used to make currency notes) or clothes during pandemic times.

In all such cases, aren’t our constitutional rights get violated if the government or any other stakeholder insists on e-transactions? It actually does.

Answer to this question may be found in S.9 of the IT Act, 2000(amended in 2008). This says as follows:

Sections 6, 7 and 8 not to confer right to insist document should be accepted in electronic form.-Nothing contained in sections 6, 7 and 8 shall confer a right upon any person to insist that any Ministry or Department of the Central Government or the State Government or any authority or body established by or under any law or controlled or funded by the Central or State Government should accept, issue, create, retain and preserve any document in the form of electronic records or effect any monetary transaction in the electronic form.

Nonetheless, the above mentioned provision empowers all who may not be able to use or who may want to refuse the use of electronic payment system. But this may not always be considered as the Rule: this is rather Exceptio probat regulam (an exception proves the rule) in the era of internet. Even though the government and other corporate stakeholders may extend their services on humanitarian grounds to help those who may not be able to use the digital payment systems or the e-wallets etc., people’s trust may easily be broken by gross misuse of the powers that such ‘helpers’ may have: ATM debit cards may be stolen, data may be compromised, e-wallets may be illegally operated by such ‘volunteers’ who may want to gain illegal and unethical profits at the cost of innocent people.

It will take longer time to make people from all backgrounds aware about electronic payment modes. It will probably take even longer to control cyber criminality targeting vulnerable people. One must not violate the legal norms and constitutional principles to make the right to life of others almost unachievable. Vulnerable groups including senior citizens, disabled people, socio-economically backward communities, women and children must be given enough protection to gain their trust so that all can survive and win over adverse situations.

Please note: Please  do not violate the copyright of this writeup. Please site it as Halder Debarati (2021) Is using electronic payment mode mandatory?  Published @ https://debaraticyberspace.blogspot.com/2021/04/is-using-electronic-payment-mode.html on 22-04-2021



[1] https://economictimes.indiatimes.com/definition/e-wallets


Sunday, November 8, 2020

Plight of "Punita" : A common tale of 'powerless' women victims of trolling

CYBER CRIME AGAINST WOMEN BY DEBARATI HALDER
Image courtesy : Internet 

In 2012 “Nirbhaya” a young female paramedic was brutally gang raped in a cold December night in Delhi, India. Within a few days the police nabbed the offenders and arrested them. All 6 of them were from northern parts of India who came down to Delhi for making their living. All of them were working as transport workers including driver, conductor, cleaner etc. Within a few days of their arrest, the victim died because of the impact of the assault and internal injuries. The charges against the accused were enhanced from rape to include murder under the Indian Penal Code. Among the 6 accused persons, the prime accused committed suicide. Even though the case was taken over by fast track trial court, it took around 10 months for the trial court to convict the accused and award death penalty to the surviving 5 accused. The death penalty was upheld by the Supreme Court of India in 2017. In between one of the accused pleaded to be considered as minor and was declared as minor and hence was dealt under the Juvenile justice administration system. However neither the Supreme Court, nor the high court prevented the accused persons from exercising their rights to appeal against the capital sentence. The Supreme Court considered this case as rarest of rare cases. Except the minor, other convicted accused did not however succeed in their respective pleas to the Supreme Court to reverse the sentence to life imprisonment and the President for mercy petition.[1]  All four of the adult convicts were hanged in the wee hours of 20th March, 2020. Immediately after this the Covid 19 lockdown was clamped strictly almost all over the world preventing several litigants, victims to approach the courts as courts also suffered due to pandemic.

None of the convicted persons in NIrbhaya case came from socio-economically forward class. Except one, others did not complete their basic education as well.[2] Some researches including the controversial India’s Daughter documentary[3] claimed that lack of education could have been the main reason to defy the laws for violating women in this regard. While almost all such researches and findings were concerned about the perpetrators, not many looked into the fate of the wives of such sex offenders who may not have received primary education and may not have been allowed to access justice for themselves because of being women and living in patriarchal societies. Punita, wife of Akshay Thakur, who was one of the convicts, tried her level best to convince the courts and the society at large in her own way  that if her husband was hanged, she and her minor son would have to die. On the final day of hearing she was seen shouting, crying, beating herself and fainting before the Supreme Court building. Her actions attracted media and she was probably encouraged to continue to do what she was doing because that would add more TRP to the stories that were being made on Nirbhaya sentencing. Soon she made headlines in almost all domestic and foreign news channels and she was center of debates for and against death penalty. Simultaneously she was targeted by internet trolls vigorously.[4]

In the recently held 9th international victimology conference organized by Jindal institute of Behavioral Sciences[5] I had addressed the issue of cyber victimization of Punita through my paper titled Critical analysis of the case of wife of Nirbhaya rape convict: therapeutic jurisprudence & cyber victimological perspectives”.  While the media could successfully (and probably rightly) generate public sympathy for the rape victim and her family, they generated extreme hatred to Punita because she was apparently ‘supporting her husband’. The internet platforms added fuel to the fire in this hate campaign. If one sees the news reports on Punita Devi on the social media handles of the news media channels, one would get to see that the comments posted about her and opinion generated on her created extremely negative profile of hers which would go a long way to prevent her from getting any job in any private or public sector. It was a visual victimization of Punita on cyber space which still exists on cyber space and will be existing forever. In my earlier research on visual victimization of women on cyber space, I had observed that the victims of such visual victimizations may now know about their online victimization because they may never get access to the internet and digital communication media as their urban counterparts may get, which may eventually help the later to reach the criminal justice machinery to remove these contents.[6]

 Women such as Punita are often seen as ‘co-accused’ by the public at large. Coming from socio-economically backward communities and being educationally challenged, most wives of sex offenders in several Asian countries (where patriarchy rules), may not be allowed to access justice for themselves. Apparently she approached the family court in her native district for divorce because the Hindu Marriage Act under S.13B(2ii) allows women to get ‘quick’ divorce under special grounds which includes conviction of husband for rape, sodomy, bestiality etc.[7] But she was too late in approaching the court. She did not want to live as a widow of a hanged rapist. She preferred to be a divorcee. Women in such situations are blamed by the families and public at large for failing to satisfy their husbands sexually and materialistically which may have encouraged the later to go ahead for raping and sexually assaulting other women. These women cannot go ahead for divorce while the trial is on because this would not only attract social taboo, it will also push such women to extreme poverty: they have to leave the matrimonial homes, they may not be accepted in their parental homes and they may not get any financial support from anyone.

How can Therapeutic Jurisprudence help?  Justice Krishna Iyer  a legendary judge who introduced new paradigm to reformative justice in India mentioned about applying Therapeutic jurisprudence in the prisons for reforming the prisoners in 1970’s.[8] But after him we did  not get to see the use of the term by the judges while dealing with reformative criminal jurisprudence in India. In numbers of my researches however I have shown that the concept of Therapeutic Jurisprudence has submissively influenced the Indian judges.[9] The spirit of Therapeutic Jurisprudence may help wives of sex offenders especially in countries like India. In my earlier research  titled “Free Legal Aid for women and Therapeutic Jurisprudence: A critical examination of the Indian model”,[10]  which was published In the edited book volume titled Methodology And Practice Of Therapeutic Jurisprudence Research edited by Stobbs Nigel, Bartel Lorana & Vols.M , I had observed that women especially from socioeconomically backward communities may not be permitted to access justice even if the legal counseling  is freely available through free legal aid clinics. This situation may be improved by vigorous campaigning by legal aid volunteers and law students. The law students, practitioners and judges must be sensitized about Therapeutic jurisprudence and law’s therapeutic effects which may bring tremendous change in women empowerment. Wives of sex offenders go through tremendous traumatization primarily because they feel cheated in their marriages and then feel threatened when it comes to social security for them. As such, mental wellbeing of these women are least taken care of when the court decides to charge the husbands, i.e. the accused in sex offences. In my presentation in the international victimology conference mentioned above, I have proposed that courts must consider to parallelly counsel such wives through free legal aid cells so that they may be made aware about their rights for divorce, matrimonial alimony, child custody and maintenance for child.

Further, I have also proposed that courts must suomotu consider to pass restraining order for the media houses regarding airing the images of grieving wives, who may or may not be accompanied by their children. These women do not make any ‘drama’ to stall the execution of sentences for supporting their husbands. They express their anger, frustration and fear for their own future which is dependent on the longevity of their husbands. Unfortunately their expression of fear, frustration etc are hugely consumed sadistically by the society at large and due to the non-ending presence of the clippings on the internet, such women may be profiled in a negative way. I have proposed that the scope of Right to be forgotten must be expanded in such cases which the courts must take up extending the power of judicial intervention for ensuring the privacy rights of women. Interestingly many courts across the globe are shifting burden to the website companies for not removing objectionable contents especially when it comes privacy of women and children. India has laws for website liabilities in this regard under S.79 of the Information Technology Act, 2000(amended in 2008). This provision read with Information Technology (reasonable security practices and procedures and sensitive personal data or information ) Rules 2011 mandates that web companies shall be held liable if they do not take down objectionable contents within due time. This brings two major points to be considered: who reports it? Whether this can be considered as ‘protected speech and expression’. Indian judicial understanding regarding freedom of speech on internet is expanding and courts have started using judicial discretion to not to consider each and every speech as speech falling outside the purview of Article 19(1)(A) of the Indian constitution which guarantees freedom of speech and expression as a fundamental right. It is obvious that women such as Punita would not know about such legal jurisprudence. The courts therefore must consider adding this issue in the bag of ‘reformative and rehabilitative considerations’ when awarding the sentences (including life sentence or capital sentences).  This may go a long way to prevent secondary victimization of the wives of sex offenders who are ‘innocent victims’ of the entire situation.

It is therefore hoped that if the issue of online as well as real life victimization of the wives of the convicted sex offenders are seen from the Therapeutic Jurisprudential aspects, the rights of women to access justice, rehabilitation and privacy may be secured.

 



Prof(Dr) Debarati Halder, LL.B, LL.M, Ph.D(Law)(NLSIU) is a Professor at Unitedoworld School of Law, Karnavati University, Gujarat, India. She is the founder of Centre for Cyber Victim Counselling (www.cybervictims.org) and the India chapter head of International Society of Therapeutic Jurisprudence. She is the pioneer in introducing Therapeutic Jurisprudence as a part of credit course in legal education in India. She can be reached @debaratihalder@gmail.com

 

[1] See for more in PTI(2020) Nirbhaya case convicts to be hanged at 5.30 a.m. as Supreme Court dismisses plea against rejection of mercy petition. Published on March 20.2020 in The Hindu. URL: https://www.thehindu.com/news/national/nirbhaya-case-convicts-to-be-hanged-as-supreme-court-dismisses-plea-against-rejection-of-mercy-petition/article31114747.ece Accessed on 21.03.2020

[2] For more, see in Profiles: Who were the Delhi gang rape convicts?. Published in https://www.bbc.com/news/world-asia-india-23434888#:~:text=Courts%20convicted%20six%20people%20for,student%20in%20a%20moving%20bus. On March 20. 2020, accessed on 21.03.2020

[3] For more, see in Banned film India's Daughter shown in rapists' slum

. Published in https://www.bbc.com/news/world-asia-india-31865477 . On March13. 2015, accessed on 21.03.2020

[4] For example see the comments @ https://www.youtube.com/watch?v=rzwPrx1l9Hg Accessed on 29.10.2020

[5] The conference proceedings and my presentation are available @ https://www.youtube.com/watch?v=c9__aYyD9cA

[6] Halder D., & Jaishankar, K. (2014). Online Victimization of Andaman Jarawa Tribal Women: An Analysis of the Human Safari YouTube Videos (2012) and its Effects. British Journal of Criminology, 54(4), 673-688. (Impact factor 1.556). DOI: 10.1093/bjc/azu026.

[7] Section 13(2)(ii) in The Hindu Marriage Act, 1955 states

 “A wife may also present a petition for the dissolution of her marriage by a decree of divorce on the ground………. that the husband has, since the solemnisation of the marriage, been guilty of rape, sodomy or bestiality”

[8] See for more in Md Ghiasuddin vs State of AP . reported in (1977) 3 SCC 287. Available at: www.indiankanoon.org/

doc/1850315/,

[9] See Halder, Debarati, Why Law Fails to Be Therapeutic in Spite of Therapeutic Judicial Efforts: A Critical Analysis of Indian Legal Education From the Therapeutic Jurisprudence Perspective (October 28, 2018). Unitedworld Law Journal, Vol 2, Issue: I, ISSN: 2457-0427, (2018) pp 173-182, Available at SSRN: https://ssrn.com/abstract=3274175

[10] Halder, D. (2019), Free Legal Aid for women and Therapeutic Jurisprudence: A critical examination of the Indian model. In Stobbs Nigel, Bartel Lorana & Vols.M (eds.), Methodology And Practice Of Therapeutic Jurisprudence Research. USA: Carolina Academy Press.

Please do not violate the copyright of this blog. Please cite it as “Halder Debarati. (2020), Plight of "Punita" : A common tale of 'powerless' women victims of trolling" November, 8, 2020, published in http://debaraticyberspace.blogspot.com

 



 

[1] See for more in PTI(2020) Nirbhaya case convicts to be hanged at 5.30 a.m. as Supreme Court dismisses plea against rejection of mercy petition. Published on March 20.2020 in The Hindu. URL: https://www.thehindu.com/news/national/nirbhaya-case-convicts-to-be-hanged-as-supreme-court-dismisses-plea-against-rejection-of-mercy-petition/article31114747.ece Accessed on 21.03.2020

[2] For more, see in Profiles: Who were the Delhi gang rape convicts?. Published in https://www.bbc.com/news/world-asia-india-23434888#:~:text=Courts%20convicted%20six%20people%20for,student%20in%20a%20moving%20bus. On March 20. 2020, accessed on 21.03.2020

[3] For more, see in Banned film India's Daughter shown in rapists' slum

. Published in https://www.bbc.com/news/world-asia-india-31865477 . On March13. 2015, accessed on 21.03.2020

[4] For example see the comments @ https://www.youtube.com/watch?v=rzwPrx1l9Hg Accessed on 29.10.2020

[5] The conference proceedings and my presentation are available @ https://www.youtube.com/watch?v=c9__aYyD9cA

[6] Halder D., & Jaishankar, K. (2014). Online Victimization of Andaman Jarawa Tribal Women: An Analysis of the Human Safari YouTube Videos (2012) and its Effects. British Journal of Criminology, 54(4), 673-688. (Impact factor 1.556). DOI: 10.1093/bjc/azu026.

[7] Section 13(2)(ii) in The Hindu Marriage Act, 1955 states

 “A wife may also present a petition for the dissolution of her marriage by a decree of divorce on the ground………. that the husband has, since the solemnisation of the marriage, been guilty of rape, sodomy or bestiality”

[8] See for more in Md Ghiasuddin vs State of AP . reported in (1977) 3 SCC 287. Available at: www.indiankanoon.org/

doc/1850315/,

[9] See Halder, Debarati, Why Law Fails to Be Therapeutic in Spite of Therapeutic Judicial Efforts: A Critical Analysis of Indian Legal Education From the Therapeutic Jurisprudence Perspective (October 28, 2018). Unitedworld Law Journal, Vol 2, Issue: I, ISSN: 2457-0427, (2018) pp 173-182, Available at SSRN: https://ssrn.com/abstract=3274175

[10] Halder, D. (2019), Free Legal Aid for women and Therapeutic Jurisprudence: A critical examination of the Indian model. In Stobbs Nigel, Bartel Lorana & Vols.M (eds.), Methodology And Practice Of Therapeutic Jurisprudence Research. USA: Carolina Academy Press.


Saturday, May 2, 2020

Covid-19 lock down and cyber victimization of women by Dr.Debarati Halder

CYBER CRIME AGAINST WOMEN BY DEBARATI HALDER


Since 16th March, 2020 most of the countries started planning for partial lockdown for preventing the fast spreading of Covid -19. By 22nd March, most of the countries in Europe, Asia, Africa and in the USA , Australia etc called for total lock down. India was no exception. Almost all universities, colleges, schools and other workplaces faced the impact of lockdown. People including adults and children became extremely confused as there was no specific indication as when worldwide lock down would be lifted. Europe saw a rapid increase of the Covid-positive patients. USA joined soon. Many Asian countries including India could not afford to let people do their business as usual. Indian government called for a lockdown period for 15 days first. But before the finishing the of 2 weeks period, the government had to reconsider and extended the lockdown period till 3rd May, 2020. However, several State governments in India are considering for further extension because the numbers of Covid 19 patients are increasing.  Schools and universities decided to conduct online classes with huge preference to Zoom. Adults and children shifted more to online entertainment because television industry came to a standstill due to lockdown as well. However, the tele industry did consider sharing old versions of the daily soaps.
While people went in lockdown, many took to internet to entertain each other : social media sites including Facebook, Instagram, YouTube, TikTok, and digital and internet communication apps like WhatsApp  etc soon saw a flood of user generated contents which are now hugely consumed by others. Not all of these user generated contents are actually for entertainment for all. There were several contents which were and are still being made specifically   to target and harass women and girls. The first platform that started getting contents for gender harassment, especially harassment to women was Zoom app which was being used by most of the educational institutes and workplaces for holding online meetings, classes, webinars etc. In several cases it was seen that Zoom meetings were unauthorizedly accessed by unwanted persons who started posting harassing, sexually explicit comments, disrupted meetings with exposing private parts, showing masturbation etc. Soon Zoom authorities came with a pubic declaration that cyber security and safety measures of the platform were not strong enough to tackle such sudden huge use.[1] Who could actually be held responsible for such unauthorized access then? The web platform implied that organizers of the zoom meetings and classes must take precautionary measures. But were we really ready and aware and to take such precautionary measures? Probably no.  The Zoom app mismanagement actually led to four kinds online crimes :
Unauthorized access to the meetings
Data privacy infringement
Creation of sexually explicit contents
Making gestures etc to harm the modesty of women
While this is just one kind of offence, online harassment of women did not remain restricted to this only. Given the fact that during lockdown most of the stakeholders of criminal justice machinery including the police and courts and the web companies are working with limited man power and infrastructure facilities, perpetrators have taken this time to escalate harassment. The communication apps like Whatsapp, Facebook messenger etc are now flooding with online bullying. This is seen especially in the school and college groups. These platforms have become chosen platforms for throwing harsh, insulting, intimidating comments towards classmates, batchmates and also towards the teachers, especially female teachers, colleagues and users. I myself had been targeted by some bullies and stalkers  on Facebook messenger and WhatsApp as well.
Apart from this, the other patterns of online harassment which has raised to a maximum height during the Covid -19 lockdown stage, that came in my observation is creation of impersonating profiles on social media. We must however appreciate the fact that impersonation by using unique identities have been considered as an offence Under S.66C of the Information Technology Act, 2000(amended in 2008), which speaks about punishment for identity theft and says “whoever, fraudulently or dishonestly make use of the electronic signature, password or any other unique identification feature of any other person, shall be punished with imprisonment of either description for a term which may extend to three years and shall also be liable to fine which may extend to rupees one lakh”
Several of such impersonating profiles are of the nature of revenge porn.  some may also fall in the category of sexually explicit and voyeuristic contents , but may not have the mens rea as that of revenge porn ( the element of revenge taking mentality is not present), especially since these images may have been captured in the public places or may have been collected from other profiles etc.[2] TikTok and YouTube are of no exception in this matter. People are restricted in their homes; they have taken to TikTok content creations which may include uploading contents including women doing different activities,  that may have been captured in public places. Consider videos showcasing women cooking and sweating, eating at weddings, resting at home by lying down or in a leisure posture, women and girls walking on the roads, at college/school campuses, working in a working place etc: TikTok content  creators may take such audio visual images, pickup any specific posture of women that may be consumed more by viewers and may upload such clippings with texts (sometimes sexually explicit) and background sounds that may be available on Tiktok or may be created by the users . One must not forget that TikTok was questioned earlier on their lack of due diligence for not taking down abusive contents earlier by Supreme court of India: Google Play services removed TikTok from their platform as well. But soon TikTok cleared all legal hassles and came back in android services again. [3] No doubt, the App is back again for being (mis)used to harm the modesty of women and infringing the privacy of women and children during quarantine time when the victims may feel more restrained to reach out to criminal justice machinery and the websites.
But we should not think that this is an exclusive problem of India only. I did get to hear about sudden growth of online harassment targeting women from different regions of the world: be it USA, Australia, South Africa, UK , Ireland or even our neighbouring countries like Nepal, Bangladesh or SriLanka .women, including working women, volunteers who may have come to different Asian countries from the US etc, health workers, law students and professionals, every where women are facing similar problems to reach out to criminal justice system to report crimes. Even if they may reach out, the police and the courts and the websites as well are not in a position to offer a quick help.[4]  
Several stakeholders may provide several suggestions to stay safe online and maintain the hygiene of the devices to save ourselves, especially women from rising level of cyber crimes during lock down period.  But are we concerned about the mental health conditions and impact of victimisation of online harassment on women during lock down? Several women may be living with abusive partners, husbands who may have cheated on them, or even other women family members who may have been victimised online and who may in order to share the trauma, disclosed the victimisation to the former. Unlike trauma that may generate from physical harassments, online harassments during lock down may bring unique traumatising effects. Devices handled by women may be detained and they may  not be allowed to contact anyone in case the harasser spreads his vicious net to reach out to husband or other male members of the family. Victim women may even go to the extent of self-harming too. They may even try to destroy the evidences of online harassment by deleting the contents from their phones if the harassment is in the nature of bullying or threatening message etc. In case of revenge porn content or in the case of non-consensual image sharing, victims may even try to block the profiles without saving the evidences. In several other cases, they may take up irrational coping mechanism like counter bullying or contacting the perpetrator asking him to take down the contents. they may even try to contact amateur hackers, which may prove extremely dangerous for them. Emotionally such women victims may become completely withdrawn and may even show aggressiveness as well.
What could be done in such situations as lock down in India has been extended for the third time. My opinion in this regard is as follows:
Ø The police control rooms in each district must open a dedicated 24-hour service unit specially equipped with infrastructure and properly trained police personnel who may handle such digital harassment cases and evidences to receive complaints from the victims, especially women victims of online harassment.
Ø Some types of online offences have been recognised by our domestic laws; some however have not received any focussed laws. But that does not mean that only offences that may contain complaints towards creating porn contents, threatening and defamatory contents etc, may be given priority and FIR may be registered for such offences which may fall within the meaning of cognizable offences. The police must entertain all complaints and must guide the victims in all cases.
Ø Police may rope in NGOs, cyber crime and cyber law experts to create an expert committee in every district and metropolitan area to provide immediate counselling to the victim as how to save the evidences of online harassments and how to share the same with the police for the purpose of investigation.
Ø Victims may get an immediate feel of relief when they are told that their complaints are registered. The police therefore must not neglect to look into each type of compliant. Such gestures from the police may prevent the women victims from committing self harm or from taking any irrational steps to saver their reputation and that of their families.
Ø Courts and prosecutors must also consider extending their support whereby judicial magistrates may join such endeavours to support the victims. We should remember that it is only adults, but children may also be involved as victims as well as perpetrators. Unless the courts are extending supports through electronic mediums, it would become extremely difficult to win the trust of victims as well as general public for Criminal Justice machinery at this time of lock down.
Last but not the least, we must not forget that in cases of online harassment of women, web companies are the foremost liable sectors. The Due diligence clause must not be suspended due to lock down. The web companies must consider each and every take down request and reports on objectionable contents and must adhere to Indian legal understanding for restricting the access to such contents.
Indeed, the Lock down period is a testing time for the entire human civilization. But if we do not restrict unethical and illegal usage of information technology, the impact of online harassment may be more traumatizing than the Covid-19 experience.
Stay safe, stay strong and do not misuse the Information and digital communication technology.

Please note : Do not violate copyright of this blog. If you would like to use information provided in this blog for your own assignment/writeup/project/blog/article, please cite it as “Halder Debarati. (2020), "Covid-19 lock down and cyber victimization of women" “May 2nd, 2020, published in http://debaraticyberspace.blogspot.com








[1] See  https://www.financialexpress.com/industry/technology/govt-of-india-issues-advisory-says-zoom-not-secure-video-conferencing-platform/1930509/
[2] Halder.D(2017) Criminalising Revenge Porn: Why Stakeholders Must Not Be Happy With Present Legal Setup. Published in Livelaw.in magazine @
https://www.livelaw.in/criminalising-revenge-porn-stakeholders-must-not-happy-present-legal-setup/
[3] https://www.indiatoday.in/technology/features/story/tiktok-is-back-on-app-stores-from-ban-to-court-order-here-s-everything-you-need-to-know-1513644-2019-04-30
[4] For more, see https://kathmandupost.com/national/2020/04/23/how-one-pokhara-resident-led-a-smear-campaign-to-get-an-american-kicked-out-of-the-country