21-05-2025
J&K Govt. offices ordered to stop using unofficial digital platforms
The J&K government on Wednesday (May 21, 2025) barred its departments from acquiring non-official domains and directed officials not to use non-official mailing services.
'In view of the growing risks associated with unauthorised digital platforms, outdated hardware/software infrastructure, and increasing incidents of data compromise and phishing, a comprehensive set of instructions is hereby issued for immediate implementation and strict compliance,' an order issued by J&K's General Administration Department (GAD) said.
The GAD mandated all the departments to adopt stringent cybersecurity practices, terminate unauthorised digital platforms, and ensure full compliance with official IT governance protocols. It has directed immediate 'deactivation of all departmental websites operating on non-official domains like .com, .org, or .net.'
'Government websites will be hosted exclusively on authenticated domains such as '. or '. it said.
Personal email banned
The government also barred the use of personal email services such as Gmail, Yahoo, or Rediffmail for any official communication. 'All communications must be conducted using NIC-provided official email IDs. Emails from unofficial domains will be treated as invalid and may be ignored,' it said.
The order also underlined that any proposals for new websites must be routed through the National Informatics Centre (NIC) and approved by the Information Technology Department to ensure uniformity and compliance with cyber standards.
The administration has also ordered a comprehensive IT infrastructure audit across all departments. 'Chief Information Security Officers (CISOs) and Information Security Officers (ISOs) are tasked with compiling hardware and software inventories, verifying licensed systems, ensuring the presence of antivirus/firewall solutions, and assessing network security configurations. A standardised reporting format will be provided by the IT Department for uniformity,' it said..
Cyber hygiene
The NIC will conduct cyber hygiene and threat response training for IT staff. These sessions will cover topics such as email security configuration, CERT-In reporting protocols, and safe digital practices.
The order strictly prohibits the use of pirated or outdated software, stating that all IT procurements must adhere to the minimum technical standards set by the IT Department.
All the departments have been given a 15-day deadline to submit detailed compliance reports. 'Failure to comply will invite disciplinary action under the relevant administrative and IT conduct rules,' the order said.
