TechnoLAWgy Bulletin, April-May 2026

Read full e-bulletin in pdf here above.

In this issue, the LKS Technology Law Team captures the recent developments in information technology law, data privacy law, tech-regulatory landscape, and significant changes from across the globe. 

As part of this issue of the Bulletin, the Team also covers a detailed article titled ‘Recalibrating Intermediary Liability: India’s Draft Second Amendment to the IT Rules, 2026’. The article discusses the Draft Information Technology (Intermediary Guidelines and Digital Media Ethics Code) Second Amendment Rules, 2026, which is a step towards regulating digital intermediaries. According to the Team, the amendments propose a clear shift toward tighter, more centralized regulation of digital intermediaries, significantly raising compliance expectations and legal risk.

In addition to the article, the Bulletin also covers various relevant developments as follows:

Information Technology

• CERT-In issues high severity advisory on frontier AI-driven cyber risk
• CERT-In releases blueprint for defending against AI-assisted cyber threats

Technology and Data Protection

• Government confirms AI-enabled CCTV cameras fall within the scope of DPDPA
• Online Gaming Rules notified, operationalising India’s Online Gaming Act

Tech-Regulatory Landscape

• RBI issues discussion paper on fraud safeguards for digital payments
• RBI constitutes Committee on Quantum-Resistant Financial Systems
• RBI mandates additional factor authentication for digital payments e-mandates
• RBI notifies draft Prepaid Payment Instruments (PPI) Rules, 2026
• IRDAI revises information and cyber security guidelines for insurers

From Across the Globe

• European Commission launches an open-source, zero-knowledge-based age-verification app to protect minors online.
• Singapore’s Ministry of Law releases sector-specific guidance on the responsible use of generative AI in legal practice.
• China releases draft regulations to govern AI-generated digitalhumans, mandating clear labelling of synthetic content, stricter consent requirements, and enhanced safeguards for minors.
• The European Union has introduced new regulatory measurestargeting addictive design practices deployed by social mediaplatforms, particularly those affecting minors.
• The European Data Protection Board adopts guidelines on the processing of personal data for scientific research purposes under GDPR.