In a bold move to tighten cybersecurity and safeguard national interests, India has rolled out its most stringent surveillance technology regulations to date.
As of April 2025, the government requires all internet-connected CCTV cameras — whether imported or manufactured domestically — to undergo extensive security testing before they can enter the market.
The new rules aim to eliminate vulnerabilities that could be exploited for remote spying, particularly by foreign entities.
This shift marks a significant escalation in India’s efforts to assert digital sovereignty, reduce reliance on foreign tech, and control the flow of sensitive public data. The ripple effects are already being felt across infrastructure projects and global supply chains.
Why the crackdown?
India’s concerns stem from growing suspicions that surveillance cameras from companies like Hikvision, Dahua, and Xiaomi — all of which have ties to China — could be used for espionage. These cameras, once connected to public networks, may transmit data to foreign servers or contain hidden backdoors, creating serious risks for national security.
This isn’t just speculation. Around the world, governments have begun phasing out Chinese surveillance systems from sensitive areas. India is following suit — but with a uniquely strict, system-wide approach.
What the new rules require
Under the new regulations, manufacturers must submit their camera systems — including hardware, software, firmware, and even source code — to government-approved testing labs. These tests are overseen by the Ministry of Electronics and Information Technology (MeitY) and must meet cybersecurity standards set by the Bureau of Indian Standards (BIS).
Approved devices must include:
Cameras that fail these checks will be banned. Non-compliant manufacturers may face penalties, including the revocation of their licenses to operate in India.
Immediate fallout: stalled projects and supply delays
The new policy has already disrupted over 100 surveillance-related projects across India, including airports, metro stations, highways, and smart city initiatives. Customs departments are holding up large shipments of cameras for verification.
Without certified devices, construction and infrastructure work is slowing down, frustrating developers, project managers, and city councils.
Also Read: We just 'time-travelled' 4.5 billion years back into the past thanks to the James Webb Space Telescope
Even major global players now find themselves waiting for security clearance. This has left a gap in supply, which India is quickly trying to fill through domestic alternatives.
India’s response: go local, go secure
The government is using this moment to accelerate its “Make in India” strategy. Indian electronics companies and startups are now being encouraged — and funded — to build secure, locally-developed surveillance systems.
These systems are vetted in Indian labs, using Indian code, and are designed to comply with national cybersecurity benchmarks.
This not only reduces dependency on foreign manufacturers but also strengthens India’s control over its digital infrastructure and data sovereignty.
Bigger picture: trust, control, and digital sovereignty
India’s new surveillance rules are about more than just camera security. They represent a fundamental shift in how the country views control over data, public infrastructure, and national safety in a connected world.
By enforcing strict verification standards and limiting foreign access to surveillance networks, India is placing trust, transparency, and control at the heart of its digital governance strategy.
Conclusion: who watches the watchers?
In a time when cameras are everywhere, and surveillance is nearly invisible, India is choosing to look inward before looking outward. With some of the toughest cybersecurity rules in the world, the country is asking a simple question:
If something is watching us, who’s watching it?
Now, India has an answer — it will.
