Government Orders Employees Not to Use Google Drive, Dropbox, VPNs

All government employees "are required to strictly adhere to the guidelines" mentioned in the official document.

Advertisement
By Jagmeet Singh | Updated: 17 June 2022 16:44 IST
Highlights
  • NIC has developed the new directive
  • It orders employees not to use NordVPN and ExpressVPN
  • Government recently brought an order for VPN providers

The government has cited an increase in cyberattacks for its move

Photo Credit: Unsplash/ Stillness InMotion

A new government order restrict employees from using third-party, non-government cloud platforms including Google Drive and Dropbox as well as virtual private network (VPN) services including NordVPN and ExpressVPN. The order passed by the National Informatics Centre (NIC) has been circulated to all ministries and departments and all government employees are required to comply with the directive, Gadgets 360 has learnt. The new move by the government comes just weeks after directing VPN service providers and data centre companies to store their user data for up to five years.

Citing an increased number of cyberattacks and threat perception to the government, the 10-page document seen by Gadgets 360 ordered employees to "not upload or save any internal, restricted, confidential government data or files on any non-government cloud service (ex: Google Drive, Dropbox, etc.)." The document is titled "Cyber Security Guidelines for Government Employees."

Advertisement

In addition to restricting employees from using the popular cloud services, the government instructed employees through its directive to not use any third-party anonymisation services and VPNs, including NordVPN, ExpressVPN, Tor, and proxies. Additionally, it directed the workforce to refrain from using "unauthorised remote administration tools" such as TeamViewer, AnyDesk, and Ammyy Admin, among others.

Government employees are also directed to not use any "external email services for official communication" and conduct "sensitive internal meetings and discussions" using "unauthorised third-party video conferencing or collaboration tools."

Advertisement

The government additionally ordered employees to not "use any external websites or cloud-based services for converting/ compressing a government document". It also directed the workforce to not use "any external mobile app-based scanner services" including CamScanner for "scanning internal government documents.

Notably, the government banned CamScanner in 2020 as a part of its initial move to restrict China-based apps in the country. Some government officials were, however, still being seen using the app for scanning physical copies of their official documents.

Advertisement

Alongside restricting the usage of certain apps, the government's order also directed employees to not 'jailbreak' or 'root' their mobile phones.

The directive also ordered employees to take measures including the use of complex passwords as well as updating passwords once in 45 days and updating operating system and BIOS firmware with the latest updates and security patches.

Advertisement

"All government employees, including temporary, contractual/ outsourced resources are required to strictly adhere to the guidelines mentioned in this document," the order said. "Any non-compliance may be acted upon by the respective CISOs/ department heads."

The order was released on June 10 after a couple of revisions in the original draft made by the NIC. It included inputs from India's Computer Emergency Response Team (CERT-In) and was approved by the Ministry of Electronics and Information Technology (MeitY) secretary.

Gadgets 360 has reached out to Google, Dropbox, and other entities to get their comments on the government's directive. This article will be updated when the companies in question respond.

In late April, the CERT-In issued a directive to make its mandatory for VPN service providers, data centres, virtual private server (VPS) providers, and cloud service providers to keep user data for five years or even longer. The order will come into force from June 28.

As a result of that order, VPN service providers including NordVPN, ExpressVPN, and Surfshark have decided to remove their physical servers in the country as they follow no-log policies and are not technically capable of storing logs. The major VPN entities as well as some digital rights groups have also raised privacy concerns for users in storing their data.

Tech companies including Facebook and Google also warned that the rules made by CERT-In could create a frightening environment.


Missed Apple's WWDC 2022? We discuss every major announcement on Orbital, the Gadgets 360 podcast. Orbital is available on Spotify, Gaana, JioSaavn, Google Podcasts, Apple Podcasts, Amazon Music and wherever you get your podcasts.
Affiliate links may be automatically generated - see our ethics statement for details.
 

Get your daily dose of tech news, reviews, and insights, in under 80 characters on Gadgets 360 Turbo. Connect with fellow tech lovers on our Forum. Follow us on X, Facebook, WhatsApp, Threads and Google News for instant updates. Catch all the action on our YouTube channel.

Advertisement

Related Stories

Popular Mobile Brands
  1. OnePlus Exits US, Europe, Continues Operations in India: 5 Things to Know
  2. Lava Virat V1 5G, Virat V1 Key Specifications Confirmed Before India Launch
  3. Tecno Camon 50 Ultra 5G With a 6,500mAh Battery Debuts in India: See Price
  4. Oppo K15 Launch Date Confirmed; Key Specifications Revealed Ahead of Debut
  5. iPhone 18 Pro Max Could Get a New Sony Sensor With Variable Aperture Tech
  6. Asus Re-Enters India's Tablet Market With the Upcoming Asus Pad T3201
  7. GTA 6 on Track to Make Up to $5.2 Billion in First Week, Says Analytics Firm
  1. Poco M8 Power, Poco X8 India Launch Timeline Tipped; Could Arrive as Rebranded Redmi Note 17 Series
  2. Samsung Galaxy S25 Series Could Get Galaxy S26’s Horizontal Lock Camera Feature With One UI 9 Update
  3. Asus Pad India Launch Date Announced as Company Reveals Key Specifications
  4. iPhone 18 Pro Max Diagnostics Log Reportedly Reveals Variable Aperture Camera, Sony Sensor Upgrade
  5. Vivo X500 Ultra Leak Suggests Three 200-Megapixel Telephoto Sensors Under Testing
  6. iQOO Z11 Lite Price Range in India, Key Specifications Revealed Ahead of Official Launch
  7. Lava Virat V1 5G, Virat V1 Specifications Revealed Ahead of July 24 India Launch
  8. Oppo K15 Launch Date Confirmed; Key Specifications Revealed Ahead of Debut
  9. WhatsApp Usernames Are Now Reportedly Available for Some Android and iOS Users
  10. Meta Introduces New Parental Alerts for Teen Suicide and Self-Harm Conversations
Download Our Apps
Available in Hindi
© Copyright Red Pixels Ventures Limited 2026. All rights reserved.