Law For Layman

Episode 4: Need to File an FIR? Here’s How

Think filing an FIR is complicated? Not at all! It’s easier than you think—and yes, you can do it without a law degree.

What is an FIR?

FIR stands for First Information Report. It is a written document prepared by the police when they receive information about a cognizable offence, such as theft, assault, kidnapping, or murder. These are serious crimes where the police can take action without the court’s permission.

Step-by-Step: How to File an FIR

  1. Go to the nearest police station
    If a crime has occurred, visit the nearest police station (ideally in the area where the crime happened).
  2. Talk to the officer-in-charge
    Explain what happened clearly. Be honest and give as many details as possible—like the date, time, place, and people involved.
  3. Submit a written complaint
    You can write your complaint in your own words. If you can’t write, the officer will write it down for you.
  4. Review the written report
    Make sure everything you said is correctly written. You have the right to read it before signing.
  5. Ask for a copy
    Once the FIR is registered, the police will give you a free copy. Keep it safe—it’s important.

Can You File an FIR Online?

Yes! Some states in India allow online FIR filing, especially for non-emergency cases like lost documents or cyber complaints.
To do this:

  • Visit the official police website of your state
  • Look for the “e-FIR” or “Online Complaint” section
  • Fill out the form with appropriate details
  • Submit it and save a copy

If the Police Refuse to File an FIR

If the police refuse to file your FIR, don’t panic. You have options:

  • Write a complaint to the Superintendent of Police (SP)
  • Send your complaint to the Magistrate, who can direct the police to register the FIR
  • You can also file your complaint online if your state allows it

To know more such basic details about law and more, you may visit this page.

Episode 3: Privacy, Please!

As our lives become increasingly digital, concerns about online privacy and personal data have grown significantly. In India, legal protections around data and digital privacy are evolving, especially with the recent enactment of the Digital Personal Data Protection Act, 2023. Here's what Indian law currently says about your digital rights and responsibilities.

The Digital Personal Data Protection Act, 2023 (DPDP Act)

This is India’s landmark data protection law, passed in August 2023. It aims to safeguard personal data of individuals while also allowing lawful processing for legitimate purposes.

Key Provisions:

  • Consent-Based Data Collection: Companies must obtain clear, informed consent before collecting personal data.
  • Right to Withdraw Consent: Users can withdraw their consent at any time.
  • Data Principal Rights: You have the right to access, correct, delete, and nominate someone to manage your data in case of death or incapacity.
  • Obligations for Data Fiduciaries (companies or organizations): They must ensure security safeguards, limit data storage duration, and notify breaches.
  • Penalties: Companies can face penalties of up to ₹250 crore for data breaches or non-compliance.

What Is Considered ‘Personal Data’?

Under the DPDP Act, personal data means any data that can identify a person, such as name, email ID, phone number, location data, biometric information, etc.

There is no longer a distinction between “sensitive” and “non-sensitive” personal data as in earlier drafts.

Your Rights as a Data Principal (Individual)

You have several key rights:

  • Right to Access Information: Know what data is being collected and how it’s used.
  • Right to Correction and Erasure: Request changes or deletion of your data.
  • Right to Grievance Redressal: Approach the data fiduciary or Data Protection Board in case of misuse.
  • Right to Nominate: Assign someone to manage your data in case you pass away or become incapacitated.

What Obligations Do Companies and Apps Have?

Any organization (called a Data Fiduciary) that collects your data must:

  • Use the data only for specific, lawful purposes.
  • Take steps to protect your data from breaches.
  • Delete your data when it’s no longer needed.
  • Allow you to withdraw consent easily.

There is also a special category called Significant Data Fiduciaries (like large platforms), which have additional responsibilities like appointing data protection officers and conducting audits.

What About Government Access to Your Data?

The DPDP Act allows the government to exempt itself or certain agencies from some parts of the law for reasons like national security or public order.

This has raised concerns about unchecked surveillance and lack of judicial oversight.

Other Relevant Laws

In addition to the DPDP Act, other laws also touch on digital privacy:

  • Information Technology Act, 2000: Covers hacking, identity theft, and online fraud.
  • Indian Penal Code: Applies to cyberstalking, defamation, and unauthorized access.
  • IT (Intermediary Guidelines) Rules, 2021: Requires platforms like WhatsApp and Facebook to remove harmful content and trace messages under certain conditions.

Indian law has made a significant leap with the Digital Personal Data Protection Act, 2023, but many challenges remain particularly around government access, user awareness, and enforcement. As a user, understanding your rights and practicing digital hygiene is more important than ever.

To explore more about how privacy works and related concepts, you may check out this insightful book.

Episode1- Behind the Screen: Crimes in the Digital Age

Think about how today, we are all living at the periphery of the conventional and the digital worlds. Where some people are still managing to send out letters, while others are nose-deep into artificial intelligence. While the latter can make life much easier and more exciting, it comes at a cost, the dark side of the digital era.

The pathogens of this era cause digital “diseases” like theft, cyberstalking, phishing, and more. And while these issues have been widely discussed in books and by intellectuals, it is still critically important to talk about them at a layman’s level.

How can a common person, someone outside the legal profession, detect and solve these digital mysteries? That’s the question we need to explore.

The Invisible Enemy: What Counts as a Cybercrime Today?

  1. Identity theft is punishable under Section 66C of the IT Act, 2000.
    Using someone else’s personal data—like PAN, Aadhaar, or banking information—for fraudulent purposes can lead to up to 3 years of imprisonment and a fine of ₹1 lakh.
  2. Phishing and online financial fraud are among the most reported cybercrimes in India.
    According to NCRB’s 2023 data, over 50% of cybercrime cases involved online financial fraud, primarily through fake UPI links, email spoofing, and deceptive SMS.
  3. Cyberstalking and harassment are addressed under Section 354D of the Indian Penal Code and Section 66A/67 of the IT Act.
    Repeated online messaging, monitoring, or sharing obscene content can lead to up to 3 years of jail and/or fines, especially if the victim is a woman.

Hackers, Crackers & Digital Intruders: Who’s Really Behind the Screen?

Hackers, crackers, and digital intruders are individuals who break into computer systems—sometimes to steal data, cause damage, or simply exploit vulnerabilities.

  • Hackers may be ethical (white hat) or malicious (black hat), depending on their intent.
  • Crackers are those who deliberately bypass security or damage software, often for illegal use.
  • Digital intruders include cyberstalkers, fraudsters, or those spreading malware.

Phishing Hooks & Malware Traps: How Cybercriminals Reel You In

  1. Fake Emails from Trusted Sources (Email Spoofing)
    Cybercriminals often impersonate banks, delivery services, or government agencies to trick users into clicking malicious links.
  2. QR Code Scams (Quishing)
    Victims are sent QR codes that, when scanned, redirect to fake payment pages or automatically download malware.
  3. Fake Job Offers & Lottery Winnings
    Scammers promise job opportunities or lottery prizes and ask victims to fill out fake forms or pay processing fees.
  4. “Digital Arrest” & Law Enforcement Threats
    Scammers pose as police, CBI, or RBI officials, claiming the victim’s identity is linked to a crime. They then demand payments to “resolve the issue.”
  5. Malware via Mobile Apps & APKs
    Users are tricked into downloading fake apps or APK files that steal data or give remote access to the attacker.

These tricks often rely on psychological manipulation—fear, urgency, greed, or curiosity. A single click on the wrong link or a scan of a fraudulent QR code can expose users to identity theft, financial loss, or system compromise.

The Future of Cybercrime: AI, Deepfakes, and What’s Next

As AI and deepfake technologies evolve, cybercrime in India is becoming more sophisticated and harder to detect. In 2024, India faced over 79 million cyberattacks, with phishing rising by 175% in key sectors like banking and finance. AI-generated scams and voice cloning now trick even the most cautious, with 64% of Indians finding it harder to spot fraud. Healthcare and finance remain top targets for cybercriminals in 2025.

The future demands stronger cybersecurity, awareness, and quick adaptation to combat AI-powered threats before they cause greater harm.

To explore more about cybercrimes and the laws that govern them, check out Cyber Crimes by Talat Fatima