ISLAMABAD: Despite the Pakistan Telecommunication Authority (PTA) opening the registration process for VPNs on December 19, no companies have yet applied for registration, according to sources. The PTA has been waiting for over ten days, but applications are expected to be received in the next two to four weeks.
Overview of VPN Registration Process
The PTA introduced the VPN registration initiative with the aim of bringing VPN service providers under local regulation. VPN service providers will need to apply for a license to operate within Pakistan. The registration process will include several key requirements, such as:
- Licensing: VPN providers must obtain a license through PTA’s class licensing system.
- Local Data Centres: Providers will be required to establish data centres within Pakistan.
- Licensing Fees: A fee ranging from Rs. 200,000 to Rs. 400,000 will be charged for registration.
- Compliance with Data Protection Laws: VPN providers must adhere to Pakistan’s local data protection regulations.
Strengthening Cybersecurity Measures
The registration process is supposed to increase the detection and tracking of cyberattacks, resulting in improved cybersecurity. Authorities claim that stakeholder consultations informed the decision to register VPN service providers.
Providers of virtual private networks (VPNs) were able to restart registering with the PTA last week.
Officials from the PTA have stated that the goal of the licensing initiative is to regulate VPN services. Providers would be obligated to comply with the data privacy rules of Pakistan and operate with locally registered data centres after the implementation.
The class licensing system will allow the PTA to efficiently control and monitor VPN services, according to sources.
Importantly, in order to strengthen cybersecurity measures, the PTA will be able to access user data and surfing history under licensing conditions. Additionally, the measure will give the authority wider power to identify and track cyberattacks.
The effort was launched in response to conversations with stakeholders, including the Pakistan Software Houses Association (P@SHA), which formally requested the registration procedure to streamline operations.
Additionally, VPN companies are required to follow local data protection legislation, guaranteeing compliance with domestic laws, according to sources. Also, in order to meet regulatory and oversight standards, businesses providing these services will have to set up shops in the area and build data centres.
