top of page

Information Technology Act 2000 Section 23

IT Act Section 23 defines offences related to identity theft and impersonation using electronic means.

Section 23 of the Information Technology Act, 2000 addresses offences involving identity theft and impersonation through electronic means. It criminalises the act of dishonestly or fraudulently making use of another person's electronic signature, password, or any unique identification feature. This section is crucial in the digital age where personal data and identities are vulnerable to misuse.

In today's interconnected world, identity theft can lead to significant financial loss, privacy breaches, and damage to reputation. Section 23 empowers law enforcement to act against such cybercrimes, protecting individuals, businesses, and digital platforms from fraudulent impersonation.

Information Technology Act Section 23 – Exact Provision

This section clearly states that using another person's electronic signature or password without permission, with dishonest or fraudulent intent, is a punishable offence. The law aims to deter identity theft and protect the integrity of electronic transactions.

  • Criminalises dishonest use of electronic signatures or passwords.

  • Applies to any unique electronic identification feature.

  • Prescribes imprisonment up to three years or fine up to one lakh rupees.

  • Targets identity theft and impersonation in cyberspace.

  • Supports secure electronic communication and transactions.

Explanation of Information Technology Act Section 23

This section prohibits the dishonest or fraudulent use of another person's electronic identification features.

  • It states that using someone else's electronic signature, password, or unique ID without consent is illegal.

  • Applies to individuals, hackers, intermediaries, and service providers.

  • Triggered when unauthorized use of electronic credentials occurs.

  • Legal criteria include dishonest or fraudulent intent.

  • Allows lawful use only with proper authorization.

  • Prohibits misuse that leads to identity theft or fraud.

Purpose and Rationale of IT Act Section 23

The section aims to safeguard digital identities and prevent fraudulent impersonation in electronic environments.

  • Protects users from identity theft and misuse of credentials.

  • Prevents cybercrimes involving impersonation.

  • Ensures trust in electronic transactions and communications.

  • Regulates use of electronic signatures and passwords.

When IT Act Section 23 Applies

This section applies when unauthorized or fraudulent use of electronic identification features is detected.

  • When an offence involving electronic signature or password misuse occurs.

  • Law enforcement or affected individuals can invoke it.

  • Requires evidence of dishonest or fraudulent use.

  • Relevant to digital devices, networks, and electronic records.

  • Exceptions include authorized or lawful use.

Legal Effect of IT Act Section 23

Section 23 creates a legal prohibition against identity theft via electronic means. It restricts unauthorized use of electronic signatures and passwords, imposing penalties to deter such acts. The penalties include imprisonment up to three years or fines up to one lakh rupees, or both. This section complements Indian Penal Code provisions on cheating and forgery by addressing digital impersonation specifically.

  • Creates criminal liability for identity theft using electronic credentials.

  • Imposes imprisonment and/or fines as penalties.

  • Protects individuals and businesses from digital fraud.

Nature of Offence or Liability under IT Act Section 23

This section imposes criminal liability for dishonest or fraudulent electronic impersonation. The offence is cognizable and non-bailable, allowing police to investigate without prior court approval. Arrest may be made without a warrant in cases of clear violation.

  • Criminal offence with cognizable status.

  • Non-bailable in nature.

  • Arrest can be made without warrant if necessary.

  • Focuses on fraudulent use of electronic identification.

Stage of Proceedings Where IT Act Section 23 Applies

Section 23 is relevant from investigation through trial and appeal stages in cybercrime cases involving identity theft.

  • Investigation includes collecting digital evidence like logs and metadata.

  • Complaint filing by victim or authorities initiates proceedings.

  • Trial involves examination of electronic records and witness testimony.

  • Appeal may be filed against conviction or acquittal.

Penalties and Consequences under IT Act Section 23

Penalties include imprisonment up to three years, fines up to one lakh rupees, or both. Corporate entities may face liability if involved. Intermediaries must ensure compliance to avoid penalties. Compensation claims may arise from victims for damages suffered.

  • Imprisonment up to three years.

  • Fine up to one lakh rupees.

  • Corporate and intermediary liability possible.

  • Victim compensation claims may be pursued.

Example of IT Act Section 23 in Practical Use

X, a cybercriminal, obtains Y's electronic signature and password without consent. X uses these credentials to authorize fraudulent online transactions causing financial loss to Y. Upon complaint, law enforcement invokes Section 23 to prosecute X for dishonest use of electronic identification. The court convicts X, imposing imprisonment and fine, deterring similar offences.

  • Demonstrates protection against electronic identity theft.

  • Shows legal recourse for victims of digital impersonation.

Historical Background of IT Act Section 23

The IT Act, 2000 was introduced to regulate electronic commerce, digital signatures, and cybercrime. Section 23 was included to address emerging identity theft risks in digital transactions. The 2008 Amendment strengthened provisions related to cyber offences. Over time, courts have interpreted Section 23 to cover various forms of electronic impersonation.

  • Introduced to combat digital identity theft.

  • Strengthened by IT Amendment Act 2008.

  • Expanded judicial interpretation over years.

Modern Relevance of IT Act Section 23

In 2026, cybersecurity threats and data breaches are widespread. Section 23 remains vital to protect digital identities amid growing online payments, fintech, and social media use. It supports enforcement against impersonation and fraud, ensuring safer digital ecosystems.

  • Supports digital evidence admissibility.

  • Enhances online safety and trust.

  • Addresses enforcement challenges in cybercrime.

Related Sections

  • IT Act Section 43 – Penalty for unauthorised access and data theft.

  • IT Act Section 66 – Computer-related offences.

  • IT Act Section 66C – Punishment for identity theft.

  • IPC Section 420 – Cheating, relevant for online fraud.

  • Evidence Act Section 65B – Admissibility of electronic evidence.

  • CrPC Section 91 – Summons for digital records or documents.

Case References under IT Act Section 23

No landmark case directly interprets this section as of 2026.

Key Facts Summary for IT Act Section 23

  • Section: 23

  • Title: Offence of Identity Theft using Electronic Means

  • Category: Cybercrime, Identity Theft

  • Applies To: Individuals, hackers, intermediaries, service providers

  • Stage: Investigation, Trial, Appeal

  • Legal Effect: Criminal liability for fraudulent electronic impersonation

  • Penalties: Imprisonment up to 3 years, fine up to ₹1 lakh, or both

Conclusion on IT Act Section 23

Section 23 of the IT Act, 2000 plays a critical role in combating identity theft and impersonation in the digital realm. By criminalising the dishonest use of electronic signatures and passwords, it protects individuals and organisations from cyber fraud and misuse.

As digital transactions and online interactions increase, this provision ensures accountability and legal recourse against cybercriminals. It strengthens trust in electronic communications and supports the broader framework of cybersecurity and data protection in India.

FAQs on IT Act Section 23

What does Section 23 of the IT Act cover?

It covers offences involving dishonest or fraudulent use of another person's electronic signature, password, or unique identification feature.

Who can be punished under Section 23?

Any individual or entity using electronic credentials of another person without authorization, with dishonest intent, can be punished.

What penalties does Section 23 prescribe?

Imprisonment up to three years, a fine up to one lakh rupees, or both may be imposed for offences under this section.

Is Section 23 a cognizable offence?

Yes, offences under Section 23 are cognizable, allowing police to investigate without prior court approval.

How does Section 23 protect digital users?

It deters identity theft and impersonation, ensuring secure electronic transactions and protecting personal digital identities.

Related Sections

Companies Act 2013 Section 4

Companies Act 2013 Section 4 governs the memorandum of association and its significance in company formation and governance.

Evidence Act 1872 Section 124

Evidence Act 1872 Section 124 defines the admissibility of oral evidence, emphasizing that oral evidence must be direct and relevant to the facts in issue.

Consumer Protection Act 2019 Section 101

Consumer Protection Act 2019 Section 101 details penalties for false or misleading advertisements, safeguarding consumer interests.

Information Technology Act 2000 Section 21

IT Act Section 21 defines the legal recognition of electronic records and their validity in India.

Information Technology Act 2000 Section 13

IT Act Section 13 defines the scope and application of the Act, establishing its territorial and jurisdictional reach.

IPC Section 323

IPC Section 323 defines punishment for voluntarily causing hurt, detailing scope and legal consequences.

IPC Section 489C

IPC Section 489C defines the offence of using forged currency notes or banknotes, outlining penalties and legal scope.

IPC Section 131

IPC Section 131 penalizes assaulting or obstructing public servants during legal duties to ensure law enforcement.

Evidence Act 1872 Section 65B

Evidence Act 1872 Section 65B governs the admissibility of electronic records as evidence in Indian courts.

CrPC Section 290

CrPC Section 290 deals with punishment for public nuisance, prescribing fines for acts disturbing public peace.

Companies Act 2013 Section 128

Companies Act 2013 Section 128 mandates maintenance and preservation of books of account and other records by companies.

CrPC Section 404

CrPC Section 404 details the procedure for issuing a proclamation to a person absconding or concealing to avoid legal process.

IPC Section 13

IPC Section 13 defines criminal conspiracy, outlining its scope and legal implications in Indian law.

CrPC Section 450

CrPC Section 450 details the procedure for disposal of property in cases of theft or other offences when the owner is unknown or untraceable.

CrPC Section 484

CrPC Section 484 defines the offence of cheating and dishonestly inducing delivery of property under Indian law.

CrPC Section 77

CrPC Section 77 details the procedure for arresting a person in a public place without a warrant.

Evidence Act 1872 Section 126

Evidence Act 1872 Section 126 protects communications between legal advisers and clients, ensuring confidentiality in legal proceedings.

Companies Act 2013 Section 103

Companies Act 2013 Section 103 governs quorum requirements for board meetings, ensuring valid corporate decision-making.

IPC Section 153B

IPC Section 153B penalizes promoting enmity between different groups on grounds of religion, race, place of birth, residence, language, etc.

Contract Act 1872 Section 18

Contract Act 1872 Section 18 defines free consent and its role in making contracts valid and enforceable.

IPC Section 160

IPC Section 160 empowers police officers to enter any public place to search for a person suspected of committing an offence.

Consumer Protection Act 2019 Section 7

Consumer Protection Act 2019 Section 7 outlines the establishment and composition of the Central Consumer Protection Authority (CCPA).

CPC Section 149

CPC Section 149 defines the power of the court to order the arrest of a judgment-debtor for willful disobedience of its decree.

IPC Section 423

IPC Section 423 defines dishonestly receiving stolen property, outlining its scope and legal consequences.

IPC Section 185

IPC Section 185 penalizes public servants who disobey lawful orders, ensuring accountability in official duties.

IPC Section 370

IPC Section 370 criminalizes human trafficking, prohibiting buying, selling, or recruiting persons for exploitation.

Consumer Protection Act 2019 Section 31

Consumer Protection Act 2019 Section 31 details the procedure for filing complaints with Consumer Commissions to resolve consumer disputes effectively.

bottom of page