Public Awareness and Understanding of Cybersecurity Legislation in Pakistan: A Qualitative Study on Perceptions, Knowledge, and Compliance

Abstract

This study examines the level of awareness and comprehension of cybersecurity rules among the general population in Pakistan. Its primary goal is to analyze individuals' perceptions, comprehension, and adherence to these laws. Data was collected from a sample of 60 persons, including members of the general population, IT professionals, law enforcement authorities, and legal specialists. This was achieved by employing semi-structured interviews and conducting focus group discussions. The participants were chosen via purposive sampling. Interviews and conversations were conducted to assess participants' understanding and personal encounters with cybersecurity legislation. A thematic analysis was performed, which included transcribing the data, coding, developing topics, and verifying them through member checking. The results indicated different degrees of awareness, with IT professionals and legal experts exhibiting a better level of understanding in comparison to the general populace. The main obstacles faced in this situation were a lack of widespread public awareness, the fast pace of technology advancement, and the limited resources available to law enforcement. The report suggests the adoption of extensive public education initiatives, frequent revisions to legislation, enhanced allocation of resources to law enforcement, and the fostering of collaboration between the public and commercial sectors. The objective of these efforts is to enhance public consciousness, establish strong legal structures, and strengthen implementation methods, ultimately strengthening cybersecurity in Pakistan.