Cyber-incident records of public authority — CIC
Central Information Commission · 2023-01-01 · Citation awaited
Cyber-incident reports: executive summary post-remediation OK; live forensic content §8(1)(h) protected.
Case details
| Court | Central Information Commission |
|---|---|
| Decided | 2023-01-01 |
| Citation | Citation awaited |
| Petitioner | RTI applicant |
| Respondent | Public authority (victim) |
| RTI Act sections | §8(1)(a), §8(1)(h) |
| Outcome | Partly allowed |
Outcome
Cyber-incident details against a public authority: executive summary disclosable post-remediation; live-investigation material protected.
Ratio decidendi
Where a public authority suffers a cyber-incident, the existence, date, nature (ransomware/data-exfiltration), and remediation status are disclosable post-remediation as accountability records. Live forensic content and specific IOCs remain protected under §8(1)(a) / §8(1)(h).
Keywords
cyber incident, CIC, §8(1)(a), §8(1)(h), CERT-In
Similar cases in the corpus
These rulings have the closest editorial ratio to this case — computed by tf-idf cosine similarity over ratio, keywords and Act sections. Useful starting points if you are researching the same point of law.
- Police complaint records — Karnataka SIC (SIC-KA 2021)
- DGCA aircraft-incident investigation — CIC (CIC 2023)
- Lok Pal under RTI — SC (SC 2024)
- PDS leakage investigation — Rajasthan SIC (SIC-RJ 2021)
- BMTC tender records — Karnataka HC (HC-KAR 2020)
Related
Editorial summary, not a certified report. The ratio here is an editorial compression. Before citing this ruling in a PIO order, FAA speaking order, or any appellate filing, verify against the full reported decision. RTI Wiki is not a legal service.
Editorial summary · last reviewed 21 April 2026.