Section 38 in The Information Technology Act, 2000
38. Revocation of Digital Signature Certificate.-
(1)A Certifying Authority may revoke a Digital Signature Certificate issued by it-(a)where the subscriber or any other person authorised by him makes a request to that effect; or(b)upon the death of the subscriber; or(c)upon the dissolution of the firm or winding up of the company where the subscriber is a firm or a company.(2)Subject to the provisions of sub-section (3) and without prejudice to the provisions of sub-section (1), a Certifying Authority may revoke a Digital Signature Certificate which has been issued by it at any time, if it is of opinion that-(a)a material fact represented in the Digital Signature Certificate is false or has been concealed;(b)a requirement for issuance of the Digital Signature Certificate was not satisfied;(c)the Certifying Authority's private key or security system was compromised in a manner materially affecting the Digital Signature Certificate's reliability;(d)the subscriber has been declared insolvent or dead or where a subscriber is a firm or a company, which has been dissolved, wound-up or otherwise ceased to exist.(3)A Digital Signature Certificate shall not be revoked unless the subscriber has been given an opportunity of being heard in the matter.(4)On revocation of a Digital Signature Certificate under this section, the Certifying Authority shall communicate the same to the subscriber.
