10-year of imprisonment for hacking into the Government’s India's Goods and Services Tax (GST) Database and its associated infrastructure dependencies installed at GST Network (GSTN), as the assets have been declared as 'Protected Systems' by the Finance Ministry, under the IT Act. Protected Systems stores information with national security significance which get additional security cover and are part of critical information infrastructure, destruction of which can have a debilitating impact on national security, economy, public health or safety. Only Authorised GSTN employees, designated tax officers of the Central Government, State Government, Union territories, auditing agencies and accounting authorities will be authorised to access the system and its facilities. Also, Authorised members or employees of the service providers that manage the GSTN, shall be allowed access. Under of Section 70(1) of the Information Technology Act, 2000, which has been cited by the finance ministry, the government can declare any computer resource as a protected system and as per the Act a person who attempts to access such a system can be jailed up to 10 years, besides being fined. The government has already declared Central Identities Data Repository (CIDR) facilities of Unique Identification Authority of India besides its information assets, logistics infrastructure and dependencies, as protected systems under the Act.