Bombay High Court Steps In to Protect Sensitive Data of School Children
In a crucial move to safeguard the privacy of minors, the Bombay High Court has issued an order preventing a hacker group from disclosing sensitive data concerning children enrolled in educational institutions managed by the Pratiksha Foundation Charitable Trust. This decision comes amidst threats from the hacker group known as FulcrumSec, which demanded a ransom of $750,000 in exchange for not releasing the compromised data.
The case, titled Pratiksha Foundation Charitable Trust and Anr v. FulcrumSec and Ors, was brought before the court after the Trust reported the hacking incident. On June 12, Justice Arif S Doctor ruled that revealing the hacked information could be detrimental to the children involved. “The disclosure of such highly sensitive and confidential information, particularly with regard to the mental health issues of the children, could indeed have grave and deleterious effects, in particular on the children themselves,” observed Justice Doctor.
Legal Arguments and Court’s Decision
Representing the Trust, Senior Advocate Birendra Saraf argued for immediate relief without notifying FulcrumSec or other defendants, fearing that any delay could compromise the purpose of the interim application. The Court sided with this argument, deeming the situation appropriate for an ex parte order — a legal action taken without the presence of the opposing party.
The Trust, which operates several schools, revealed to the Court that its databases had been breached. The stolen data allegedly includes sensitive details such as students’ school travel information, medical conditions, mental health issues, and parental occupation and income. Saraf informed the Court that a threatening email demanding payment was received from FulcrumSec on May 12. Alarmingly, by June 10, some parents had already been contacted with emails revealing confidential information about their children, particularly regarding mental health.
Concerns Over Data Exposure
Justice Doctor expressed significant concern about the potential risks posed by the exposure of such information. “From what has been pointed out to me, FulcrumSec has details of the vocation, income, and other details of the parents of the children and the daily movement of the children. Such information, if made public, could also potentially pose a grave risk to the safety of the children,” he noted.
More Read
Given these considerations, the Court issued an ad-interim order restraining FulcrumSec and other defendants from leaking or publishing the hacked data. The next hearing is scheduled for July 1, where further discussions on the matter will continue.
The legal team representing the Trust included Advocates Chirag Mody, Parag Khandhar, Soham Bhalerao, Tapan Radkar, and Sankit Jain, all from DSK Legal, under the leadership of Senior Advocate Saraf.
