Can someone please tell about ISP spying in India?
- Like how far they can legally collect data? And illegally collect data?
- How, and what data they collect?
- How long does they store the logs?
- What are the privacy practices to prevent these ISP spying?
I don’t know at larger scale. But I’m with the event coordinators for a hackathon… And we’re setting up our own endpoints with monitoring enabled. The people in charge of organizing said if we’re serving internet to people we are legally required to see who is browsing what…
So I guess ISPs are definitely spying on your activities.
If you control the device you can see what is going on set up a CA and set your proxy to use a Sub-CA cert to pretend to be any website. If you do not control the device, you aren’t able to do SSL inspection as the device will not trust your CA.