One of the most debated provisions of the Income-tax Act, 2025 is Section 247 — which explicitly empowers tax authorities, during a formally authorised search operation, to access 'virtual digital spaces' including email accounts, cloud storage, social media, and online investment platforms, with the power to override passwords where access is otherwise denied. Here's what the provision actually says, how it relates to the old law, and what it means in practice.
What Section 247 Says
Section 247 of the Income-tax Act, 2025 empowers authorised tax officers, during a search conducted under the Act's search-and-seizure provisions, to access not just physical premises, books of account, and documents — but also 'virtual digital spaces'. Where access to a virtual digital space is protected by a password or other access code and the person concerned does not provide it, the authorised officer is empowered to override or bypass such access controls to gain entry.
What Counts as a 'Virtual Digital Space'?
Section 261(j) of the new Act defines 'virtual digital space' broadly, reportedly covering:
- Email accounts and other messaging/communication platforms
- Social media accounts
- Online investment and trading accounts (demat accounts, trading platforms, etc.)
- Cloud storage and remote servers
- Virtual/remote desktops and any digital application or platform used to store information electronically
This is a significant explicit expansion compared to the language of the 1961 Act, which predates most of these technologies and did not specifically enumerate digital accounts and cloud-based storage as objects of search.
How This Relates to the Old Section 132
The government's position, as reported, is that Section 247 does not create new substantive search powers — it largely mirrors the search and seizure framework that existed under Section 132 of the Income-tax Act, 1961, which already allowed search authorities to examine 'books of account, other documents, money, bullion, jewellery or other valuable article or thing' found during an authorised search, including in electronic form. The argument is that digital records were already implicitly covered under 1961-Act search provisions (as 'electronic records'), and Section 247 simply makes this explicit and extends it formally to cloud-based and online accounts that didn't clearly fall within the older statutory language.
The Privacy Debate
Critics have raised concerns on several fronts:
- Scope of 'virtual digital space': The definition is broad enough to potentially cover personal communications (private emails, social media DMs) that may have no direct connection to the financial records being searched for.
- Password override: The power to compel access or override password protection on personal accounts — as opposed to merely seizing physical devices — is seen by some commentators as qualitatively different from physical search powers, given how much personal (non-financial) information modern digital accounts contain.
- Constitutional safeguards: Some critics argue the provision lacks explicit safeguards analogous to the right to privacy framework established by the Supreme Court (in the context of Article 21 of the Constitution), and have called for clearer judicial oversight mechanisms specific to digital searches.
The government's counter-position is that the same procedural safeguards applicable to physical searches under the 1961 Act — authorisation requirements, designated authority levels, and the requirement that searches be linked to a reason to believe income has been concealed — continue to apply to searches involving virtual digital spaces under the 2025 Act.
What This Means for Ordinary Taxpayers
⚠ Important context: Section 247 powers apply only during a formally authorised search operation — these are not routine powers exercised during normal assessments, scrutiny, or faceless assessment proceedings. Searches under the Income-tax Act have historically been reserved for cases involving suspected concealment of income, undisclosed assets, or similar serious non-compliance, typically following specific intelligence or investigation findings, not for ordinary salaried taxpayers or routine filers.
For the vast majority of taxpayers who file accurate returns and are not subject to search proceedings, Section 247 has no direct practical effect. Its relevance is primarily for businesses, high-net-worth individuals, and entities that may become subject to search-based investigations — and for the broader public debate about the balance between tax enforcement and digital privacy.
What to Do If You're Concerned
- Maintain accurate, well-documented records — the best protection against any search-related concern remains accurate income reporting and proper documentation of financial transactions.
- Understand your rights during a search — if you are ever subject to a search operation, you (or your representative) are entitled to know the authorisation basis and to have legal/professional representation present, as under the prior law.
- Follow ongoing legal developments — given the privacy concerns raised, this provision may see legal challenges or judicial clarifications in the period following the Act's commencement; tax professionals are likely to track these closely.
Frequently Asked Questions
Does Section 247 give tax authorities routine access to my email or social media accounts? ▼
No. Section 247 powers apply only during a formally authorised search operation under the Income-tax Act, 2025 — the same type of search proceeding that existed under Section 132 of the 1961 Act, typically triggered by specific evidence of suspected income concealment. It does not grant routine access during normal assessments, scrutiny notices, or faceless assessment proceedings for ordinary taxpayers.
Is this a completely new power that didn't exist before? ▼
The government's position is that Section 247 largely mirrors the search and seizure powers under the old Section 132 of the Income-tax Act, 1961, which already covered electronic records found during authorised searches. Section 247 makes the coverage of digital accounts, cloud storage, and online platforms more explicit and codifies the term 'virtual digital space' under Section 261(j) — but critics argue the explicit password-override power for online/cloud accounts represents a meaningful practical expansion.
What safeguards apply before a search involving digital accounts can be conducted? ▼
The same procedural safeguards that applied to physical searches under the 1961 Act — requirement of authorisation by a designated senior tax authority, and the requirement that the search be based on credible information suggesting concealment of income or assets — are reported to continue applying under the 2025 Act. However, privacy advocates have called for additional, digital-specific safeguards and judicial oversight mechanisms, and this remains an area of ongoing public debate.