In India, it is legally mandatory for which of the following to report on cyber security incidents? 1. Service providers 2. Data centres 3. Body corporate Select the correct answer using the code given below:

Under Section 70B of the Information Technology Act, 2000, and the CERT-In Rules 2013, it is legally mandatory for service providers, data centres, and body corporates to report cyber security incidents to the Indian Computer Emergency Response Team (CERT-In). Option (b) is a common distractor because candidates often assume private "body corporates" are exempt; however, the law defines them broadly to include any company, firm, or association engaged in commercial or professional activities. The core concept tested is the regulatory framework for national cyber security and the mandatory reporting obligations of digital stakeholders under the IT Act.