Part 2 / 6

FIR se Chargesheet Tak

🕑 90-120 Minutes 📖 Intermediate Level 📋 Module 6

Introduction

The journey from filing an FIR to the submission of a chargesheet is the core of any criminal investigation. This part covers the complete process under the new Bharatiya Nagarik Suraksha Sanhita (BNSS) 2023, which has replaced the Criminal Procedure Code (CrPC).

📚 Learning Objectives

By the end of this part, you will understand FIR registration under BNSS Section 173, the investigation stages, proper evidence collection methods, witness statement recording, and chargesheet preparation techniques.

FIR Process (BNSS Section 173)

The First Information Report (FIR) is the first step in the criminal justice process. Under BNSS 2023, the FIR provisions have been modernized to include digital reporting mechanisms.

What is an FIR?

💡 Definition

First Information Report (FIR): The first information given to the police about the commission of a cognizable offence. It sets the criminal law in motion and is the basis for the investigation.

BNSS Section 173 - Key Provisions

  • Mandatory Registration: Police must register FIR for cognizable offences immediately
  • Free Copy: Complainant entitled to free copy of FIR immediately
  • Electronic FIR: FIR can be registered electronically and sent digitally
  • Zero FIR: Can be filed at any police station, later transferred to appropriate jurisdiction
  • E-FIR: Online FIR facility for certain offences with physical verification within 3 days
  • SMS/Email Updates: Automatic updates to complainant on case progress

Types of Offences

Type Definition FIR Required? Investigation
Cognizable Serious offences where police can arrest without warrant Mandatory Police can investigate without court order
Non-Cognizable Less serious offences requiring magistrate's permission NCR (Non-Cognizable Report) Requires magistrate's permission

Cyber Crimes as Cognizable Offences

Most cyber crimes under IT Act 2000 and BNS 2023 are cognizable offences:

  • Section 66 IT Act - Computer related offences (Hacking)
  • Section 66C IT Act - Identity theft
  • Section 66D IT Act - Cheating by personation using computer
  • Section 66E IT Act - Violation of privacy
  • Section 66F IT Act - Cyber terrorism
  • Section 67, 67A, 67B IT Act - Obscene content offences
  • Section 318 BNS - Cheating (online fraud)
  • Section 316 BNS - Criminal breach of trust
Important Change in BNSS

BNSS Section 173(3) now mandates that FIR must be registered within a reasonable time. The IO must visit the scene of crime within 2 days for serious offences and file preliminary report within 15 days.

Investigation Stages (Jaanch ke Charan)

Cyber crime investigation follows a structured process from FIR registration to chargesheet submission. Each stage has specific procedures and timelines under BNSS.

Investigation Timeline

Stage 1: Registration and Initial Steps (Day 1-3)
FIR registration, case diary opening, IO appointment, preliminary examination, preservation of volatile evidence, first notices issued to service providers.
Stage 2: Scene Visit and Evidence Collection (Day 1-7)
Visit to scene (if applicable), electronic device seizure, evidence preservation, witness identification, forensic imaging of devices.
Stage 3: Statement Recording (Day 7-30)
Recording of complainant's detailed statement (161 BNSS), witness statements, accused examination (if identified), Section 164 statements before Magistrate.
Stage 4: Technical Investigation (Day 15-60)
Data requests to ISPs, banks, telecom companies, social media platforms. Analysis of IP addresses, call records, transaction trails, forensic reports.
Stage 5: Identification and Arrest (Day 30-60)
Suspect identification, arrest (if required), remand proceedings, custodial interrogation, further evidence collection based on accused's disclosure.
Stage 6: Chargesheet Preparation (Day 60-90)
Evidence compilation, report drafting, Section 65B certificates, witness list finalization, chargesheet filing.

Investigation Timelines Under BNSS

Offence Punishment Investigation Time Extension Possible
Up to 3 years 60 days No (closure report)
3-7 years 90 days Up to 180 days with court permission
7+ years / Life / Death 90 days Up to 180 days with court permission

Evidence Collection (Saakshya Sangrah)

Evidence collection in cyber crimes requires specialized techniques to ensure digital evidence is legally admissible and forensically sound.

Types of Evidence in Cyber Crimes

💻

Digital Evidence

Emails, chat logs, social media posts, browser history, system logs, metadata, deleted files, encrypted data.

💾

Documentary Evidence

Bank statements, transaction receipts, KYC documents, service provider records, forensic reports.

👤

Testimonial Evidence

Victim statements, witness accounts, expert opinions, confessions, admissions.

📦

Physical Evidence

Seized devices (mobiles, laptops, servers), storage media, SIM cards, routers, ATM cards.

Evidence Collection Principles

  • Identification: Identify all potential sources of evidence
  • Collection: Use proper tools and techniques for seizure
  • Preservation: Maintain integrity through hashing and proper storage
  • Documentation: Detailed documentation at every step
  • Chain of Custody: Maintain unbroken custody record
  • Presentation: Prepare evidence for court presentation

Service Provider Data Requests

Provider Type Data Available Request Authority
Telecom (Airtel, Jio, VI) CDR, CAF, Cell ID, Subscriber details SP/DCP level
ISP IP allocation, browsing logs, subscriber info SP/DCP level
Banks Account details, transaction history, KYC IO with proper requisition
Social Media (Indian) User details, content, IP logs Court order recommended
Social Media (Foreign) Limited data through MLAT/LEA portal MHA/Court order
💡 Best Practice

Always request data preservation immediately upon registration of FIR. Most service providers retain data only for limited periods (60-180 days). Send preservation letters before formal requisition.

Witness Statements (Gavaah Bayaan)

Recording accurate and legally valid witness statements is crucial for successful prosecution. BNSS provides specific procedures for statement recording.

Types of Statements

📝

Section 180 BNSS Statement

Recorded by IO during investigation. Not signed by witness. Can be used for contradiction but not as substantive evidence.

Section 183 BNSS Statement

Recorded before Magistrate. Signed by witness. Used as substantive evidence in certain cases. Can be recorded via audio-video means.

🎥

Audio-Video Recording

BNSS mandates audio-video recording of statements in serious offences. Ensures transparency and reduces retraction claims.

👤

Dying Declaration

Statement of a person who expects to die. Recorded by Magistrate or doctor. Admissible as substantive evidence.

Recording Procedures

  • Identify yourself as IO and explain the purpose
  • Record in witness's own words, preferably in their language
  • Do not prompt, suggest, or lead the witness
  • Record date, time, and place of statement
  • Read back the statement to the witness
  • Note any demeanor observations
  • Maintain confidentiality of witness identity in sensitive cases

Expert Witnesses in Cyber Crimes

Expert witnesses provide technical testimony essential for cyber crime prosecution:

  • Digital Forensic Experts: Analyze devices, recover data, verify evidence integrity
  • Cyber Security Experts: Explain attack methods, vulnerabilities, technical aspects
  • Financial Experts: Trace money flow, explain financial fraud mechanisms
  • Handwriting/Document Experts: Verify document authenticity

Chargesheet Preparation (Chargesheet Taiyaari)

The chargesheet (now called Police Report under BNSS Section 193) is the final investigation report submitted to the court. A well-prepared chargesheet is crucial for successful prosecution.

Chargesheet Components

Essential Elements of Chargesheet

  1. FIR Details: FIR number, date, police station, sections invoked
  2. Accused Details: Full identification - name, age, address, parentage, occupation
  3. Offence Details: Complete description with sections of law
  4. Evidence Summary: Documentary, digital, testimonial, physical evidence list
  5. Witness List: All witnesses with addresses and their relevance
  6. Investigation Summary: How investigation was conducted
  7. Opinion of IO: Whether evidence supports prosecution
  8. Previous History: Criminal antecedents of accused (if any)
  9. Property Details: Seized property, case property list
  10. Forensic Reports: FSL reports, expert opinions

Annexures to Chargesheet

Annexure Contents
Annexure A List of witnesses with full particulars
Annexure B List of documents/articles to be produced
Annexure C Statement of witnesses under Section 180
Annexure D List of previous convictions (if any)
Annexure E Section 65B certificates for digital evidence
Annexure F FSL/Expert reports

Common Deficiencies in Cyber Crime Chargesheets

  • Missing Section 65B certificates for digital evidence
  • Incomplete chain of custody documentation
  • Technical jargon without proper explanation
  • Missing correlation between evidence and accused
  • Inadequate witness list (forgetting technical witnesses)
  • Incomplete forensic examination reports
  • Failure to invoke all applicable sections
Critical Reminder

Under BNSS Section 193, the police report must be filed within the stipulated time. If investigation is incomplete, file interim chargesheet and seek extension from court. Never delay beyond statutory limits as it may result in default bail for the accused.

📚 Key Takeaways
  • FIR must be registered immediately for cognizable cyber offences under BNSS Section 173
  • Investigation has specific timelines: 60 days for minor offences, 90 days for serious offences
  • Evidence collection must follow forensic best practices with proper chain of custody
  • Audio-video recording of statements is now mandatory for serious offences under BNSS
  • Section 65B certificate is essential for admissibility of digital evidence
  • Chargesheet must be comprehensive with all required annexures and expert reports
Previous: Filing Complaints Next: Search and Seizure