top of page

Information Technology Act 2000 Section 23

IT Act Section 23 defines offences related to identity theft and impersonation using electronic means.

Section 23 of the Information Technology Act, 2000 addresses offences involving identity theft and impersonation through electronic means. It criminalises the act of dishonestly or fraudulently making use of another person's electronic signature, password, or any unique identification feature. This section is crucial in the digital age where personal data and identities are vulnerable to misuse.

In today's interconnected world, identity theft can lead to significant financial loss, privacy breaches, and damage to reputation. Section 23 empowers law enforcement to act against such cybercrimes, protecting individuals, businesses, and digital platforms from fraudulent impersonation.

Information Technology Act Section 23 – Exact Provision

This section clearly states that using another person's electronic signature or password without permission, with dishonest or fraudulent intent, is a punishable offence. The law aims to deter identity theft and protect the integrity of electronic transactions.

  • Criminalises dishonest use of electronic signatures or passwords.

  • Applies to any unique electronic identification feature.

  • Prescribes imprisonment up to three years or fine up to one lakh rupees.

  • Targets identity theft and impersonation in cyberspace.

  • Supports secure electronic communication and transactions.

Explanation of Information Technology Act Section 23

This section prohibits the dishonest or fraudulent use of another person's electronic identification features.

  • It states that using someone else's electronic signature, password, or unique ID without consent is illegal.

  • Applies to individuals, hackers, intermediaries, and service providers.

  • Triggered when unauthorized use of electronic credentials occurs.

  • Legal criteria include dishonest or fraudulent intent.

  • Allows lawful use only with proper authorization.

  • Prohibits misuse that leads to identity theft or fraud.

Purpose and Rationale of IT Act Section 23

The section aims to safeguard digital identities and prevent fraudulent impersonation in electronic environments.

  • Protects users from identity theft and misuse of credentials.

  • Prevents cybercrimes involving impersonation.

  • Ensures trust in electronic transactions and communications.

  • Regulates use of electronic signatures and passwords.

When IT Act Section 23 Applies

This section applies when unauthorized or fraudulent use of electronic identification features is detected.

  • When an offence involving electronic signature or password misuse occurs.

  • Law enforcement or affected individuals can invoke it.

  • Requires evidence of dishonest or fraudulent use.

  • Relevant to digital devices, networks, and electronic records.

  • Exceptions include authorized or lawful use.

Legal Effect of IT Act Section 23

Section 23 creates a legal prohibition against identity theft via electronic means. It restricts unauthorized use of electronic signatures and passwords, imposing penalties to deter such acts. The penalties include imprisonment up to three years or fines up to one lakh rupees, or both. This section complements Indian Penal Code provisions on cheating and forgery by addressing digital impersonation specifically.

  • Creates criminal liability for identity theft using electronic credentials.

  • Imposes imprisonment and/or fines as penalties.

  • Protects individuals and businesses from digital fraud.

Nature of Offence or Liability under IT Act Section 23

This section imposes criminal liability for dishonest or fraudulent electronic impersonation. The offence is cognizable and non-bailable, allowing police to investigate without prior court approval. Arrest may be made without a warrant in cases of clear violation.

  • Criminal offence with cognizable status.

  • Non-bailable in nature.

  • Arrest can be made without warrant if necessary.

  • Focuses on fraudulent use of electronic identification.

Stage of Proceedings Where IT Act Section 23 Applies

Section 23 is relevant from investigation through trial and appeal stages in cybercrime cases involving identity theft.

  • Investigation includes collecting digital evidence like logs and metadata.

  • Complaint filing by victim or authorities initiates proceedings.

  • Trial involves examination of electronic records and witness testimony.

  • Appeal may be filed against conviction or acquittal.

Penalties and Consequences under IT Act Section 23

Penalties include imprisonment up to three years, fines up to one lakh rupees, or both. Corporate entities may face liability if involved. Intermediaries must ensure compliance to avoid penalties. Compensation claims may arise from victims for damages suffered.

  • Imprisonment up to three years.

  • Fine up to one lakh rupees.

  • Corporate and intermediary liability possible.

  • Victim compensation claims may be pursued.

Example of IT Act Section 23 in Practical Use

X, a cybercriminal, obtains Y's electronic signature and password without consent. X uses these credentials to authorize fraudulent online transactions causing financial loss to Y. Upon complaint, law enforcement invokes Section 23 to prosecute X for dishonest use of electronic identification. The court convicts X, imposing imprisonment and fine, deterring similar offences.

  • Demonstrates protection against electronic identity theft.

  • Shows legal recourse for victims of digital impersonation.

Historical Background of IT Act Section 23

The IT Act, 2000 was introduced to regulate electronic commerce, digital signatures, and cybercrime. Section 23 was included to address emerging identity theft risks in digital transactions. The 2008 Amendment strengthened provisions related to cyber offences. Over time, courts have interpreted Section 23 to cover various forms of electronic impersonation.

  • Introduced to combat digital identity theft.

  • Strengthened by IT Amendment Act 2008.

  • Expanded judicial interpretation over years.

Modern Relevance of IT Act Section 23

In 2026, cybersecurity threats and data breaches are widespread. Section 23 remains vital to protect digital identities amid growing online payments, fintech, and social media use. It supports enforcement against impersonation and fraud, ensuring safer digital ecosystems.

  • Supports digital evidence admissibility.

  • Enhances online safety and trust.

  • Addresses enforcement challenges in cybercrime.

Related Sections

  • IT Act Section 43 – Penalty for unauthorised access and data theft.

  • IT Act Section 66 – Computer-related offences.

  • IT Act Section 66C – Punishment for identity theft.

  • IPC Section 420 – Cheating, relevant for online fraud.

  • Evidence Act Section 65B – Admissibility of electronic evidence.

  • CrPC Section 91 – Summons for digital records or documents.

Case References under IT Act Section 23

No landmark case directly interprets this section as of 2026.

Key Facts Summary for IT Act Section 23

  • Section: 23

  • Title: Offence of Identity Theft using Electronic Means

  • Category: Cybercrime, Identity Theft

  • Applies To: Individuals, hackers, intermediaries, service providers

  • Stage: Investigation, Trial, Appeal

  • Legal Effect: Criminal liability for fraudulent electronic impersonation

  • Penalties: Imprisonment up to 3 years, fine up to ₹1 lakh, or both

Conclusion on IT Act Section 23

Section 23 of the IT Act, 2000 plays a critical role in combating identity theft and impersonation in the digital realm. By criminalising the dishonest use of electronic signatures and passwords, it protects individuals and organisations from cyber fraud and misuse.

As digital transactions and online interactions increase, this provision ensures accountability and legal recourse against cybercriminals. It strengthens trust in electronic communications and supports the broader framework of cybersecurity and data protection in India.

FAQs on IT Act Section 23

What does Section 23 of the IT Act cover?

It covers offences involving dishonest or fraudulent use of another person's electronic signature, password, or unique identification feature.

Who can be punished under Section 23?

Any individual or entity using electronic credentials of another person without authorization, with dishonest intent, can be punished.

What penalties does Section 23 prescribe?

Imprisonment up to three years, a fine up to one lakh rupees, or both may be imposed for offences under this section.

Is Section 23 a cognizable offence?

Yes, offences under Section 23 are cognizable, allowing police to investigate without prior court approval.

How does Section 23 protect digital users?

It deters identity theft and impersonation, ensuring secure electronic transactions and protecting personal digital identities.

Related Sections

Are Replica Guns Legal In India

Replica guns are conditionally legal in India but face strict regulations and restrictions under arms laws.

CGST Act 2017 Section 152

Detailed analysis of Central Goods and Services Tax Act, 2017 Section 152 on power to arrest without warrant.

Income Tax Act 1961 Section 44AD

Income Tax Act Section 44AD offers a presumptive taxation scheme for small businesses to simplify income computation and tax compliance.

Companies Act 2013 Section 248

Companies Act 2013 Section 248 governs the power of the Registrar to remove the name of a company from the register of companies.

Is Parkour Legal In India

Parkour is legal in India with no specific laws banning it, but safety and public space rules apply.

Is Alprazolam Legal In India

Alprazolam is legal in India only with a valid prescription and strict regulation under drug laws.

IPC Section 226

IPC Section 226 addresses the offence of voluntary causing grievous hurt by dangerous weapons or means, defining scope and punishment.

Companies Act 2013 Section 85

Companies Act 2013 Section 85 governs the issue of shares at a discount, outlining conditions and restrictions.

Companies Act 2013 Section 229

Companies Act 2013 Section 229 governs the preparation, approval, and filing of financial statements by companies in India.

Negotiable Instruments Act 1881 Section 63

Negotiable Instruments Act, 1881 Section 63 defines the holder in due course and their rights under the Act.

IPC Section 444

IPC Section 444 defines house trespass, penalizing unlawful entry into someone's property with intent to commit an offence or intimidate.

IPC Section 101

IPC Section 101 defines the law of concealment of facts, detailing when hiding information amounts to criminal liability.

Is Emailvalid Legal Document In India

Understand whether an email is considered a legal document in India and its enforceability under Indian law.

Evidence Act 1872 Section 85A

Evidence Act 1872 Section 85A deals with presumption of electronic records' authenticity, crucial for admitting digital evidence in court.

Companies Act 2013 Section 121

Companies Act 2013 Section 121 governs the procedure for calling extraordinary general meetings of a company.

IPC Section 248

IPC Section 248 defines the offence of negligent conduct with respect to poisonous substances, focusing on public safety and prevention of harm.

IPC Section 387

IPC Section 387 defines extortion by putting a person in fear of death or grievous hurt to obtain property.

Income Tax Act 1961 Section 80IA

Income Tax Act, 1961 Section 80IA provides deductions for profits from industrial undertakings and infrastructure projects.

IPC Section 285

IPC Section 285 penalizes negligent acts likely to cause danger to human life or public safety, ensuring public protection.

Negotiable Instruments Act 1881 Section 18

Negotiable Instruments Act, 1881 Section 18 defines the holder in due course and their rights under the Act.

Income Tax Act 1961 Section 188A

Section 188A of the Income Tax Act 1961 governs the advance tax payment on winnings from lotteries, crossword puzzles, horse races, and other games in India.

IPC Section 489D

IPC Section 489D addresses the offence of counterfeiting currency notes or banknotes, defining its scope and penalties.

IPC Section 29

IPC Section 29 defines 'public servant' and clarifies who is considered a public servant under Indian law.

CPC Section 52

CPC Section 52 details the procedure for arrest and detention of a judgment-debtor to enforce a decree.

Is Nembutal Legal In India

Nembutal is illegal in India; its possession, sale, or use is strictly prohibited under Indian law.

Companies Act 2013 Section 269

Companies Act 2013 Section 269 governs the appointment of managing directors and whole-time directors in Indian companies.

CGST Act 2017 Section 42

Detailed guide on Central Goods and Services Tax Act, 2017 Section 42 about matching, reversal, and reclaim of input tax credit.

bottom of page