Users need to ensure that applications hosted are Cloud ready, to utilize the benefits of cloud computing.
Users have to follow all rules prescribed from time to time for using their Cloud Accounts.
Users will be responsible for the preservation of their Data. They may ensure necessary backup/remote replication of the same. NIC will provide backup services on demand to the extent possible. NIC is not obligated to retain any User Data after the termination/ closure of Cloud Account.
Users need to adhere to NIC security policies available at https://security.nic.in and follow the instructions/guidelines as and when issued by Cyber Security Division of NIC. Users need to take the appropriate action in case of any security threat or breach. This action also includes sharing the system/application logs/data, access to server/VM with security agencies (NIC-CSG/ CERT-IN/ IB/ CBI etc.), blocking of any contents/services etc.
Users shall utilize the Cloud Services only for purposes that are legal, proper and in accordance with the Indian Cyber Laws. Authorized users shall not share their credentials or allow any other entity to use these services. Users should not interfere with or disrupt the integrity or performance of the NIC National Cloud Services or attempt to gain unauthorized access to these services or any associated systems or networks.
The Hosting Organization will respect and follow all such sensitive and privacy guidelines issues by GOI from time to time.
The Organization will be solely responsible for any violation of information leakage or violation of privacy guidelines issues by GOI from time to time e.g. Aadhaar related personal information of individual.
Users are responsible for all information, data, text, software, music, sound, photographs, graphics, video, messages, files, attachments, or other materials, including images of instances that is created, transmitted, stored, or displayed by, from, or within user account including content of end user.
Users are responsible for maintaining the confidentiality of account username and password, and for all activities that occur under the account. Users should immediately notify the Cloud Management team of any unauthorized use of account, username or password.
Users will be responsible for maintaining appropriate security precautions for security and protection of all User Data.
NIC reserves the right to suspend or terminate access to NIC National Cloud Account, in case of any violation of the Indian Cyber Laws.
NIC National Cloud shall be operated and managed as per security guidelines and policies issued by CERT-In (http://www.cert-in.org.in/) and Cyber Security Group of NIC.
Security audit by the third party audit agency or by the NIC Security division of sites should be completed prior to hosting of application on Cloud. A third party audit security agency should be CERT-IN empanelled agency only. However in case of exigencies, provision will be made to host sites without security audit for a limited period of time. This hosting will be at owner’s risk. NIC will not be responsible for any issue arising as a result of hosting of an application prior to completion of audit.