🔗 Share this article

In a major decision, India's telecommunications authority has privately asked mobile phone makers to include all new phones with a national cybersecurity tool that must remain installed. This mandate, which was revealed, is set to antagonise major technology firms like Apple and prompt concerns among privacy advocates.

An International Pattern in Cybersecurity Regulation

Addressing a recent surge of online fraud and device misuse, The Indian authorities is joining governments internationally. This action parallels recent regulations enacted in countries like Russia, which seek to prevent the use of lost phones for fraud and encourage government-developed tools.

What Companies Are Impacted by the Directive?

The new mandate affects major mobile phone companies active in the Indian market. Among them are Apple, a company that has in the past clashed with the telecom authority over similar apps, as well as leaders like Samsung, Vivo, Oppo, and Xiaomi.

Specifics of the Official Order

An directive dated 28 November provides phone companies a three-month period to ensure that the official Sanchar Saathi app is included on all new devices. A critical provision is that users cannot disable the software.

For handsets already in the supply chain, makers are required to push the application via software patches. It is worth mentioning that this order was not made public and was communicated in confidence to specific firms.

Privacy Concerns Expressed

However, legal experts have expressed significant apprehensions regarding this policy. A lawyer specialising in tech law stated that India's action is a worrying development.

“The government effectively erodes user consent as a meaningful choice,” commented Mishi Choudhary, an advocate working on digital advocacy issues.

Consumer organisations had earlier criticised a comparable requirement by Russia in August for a government-sponsored communication app to be pre-installed on phones.

The Scale of the Domestic Market

India, among the world's largest mobile markets, boasts over 1.2 billion mobile users. Government statistics indicate that the cybersecurity app, launched in January, has already helped locating over 700,000 lost phones, with an estimated 50,000 recovered in October by itself.

The government contends that the software is essential to combat the “serious endangerment” of telecom cybersecurity from duplicate or spoofed IMEI numbers, which facilitate fraud and system misuse.

Apple's Likely Response

Apple's iOS powers an approximate 4.5% of the 735 million mobile phones in India, with the vast majority using Android, as per industry analysis. While Apple includes its own first-party apps on its devices, its company policies reportedly ban the installation of any government app before the sale of a device.

“Apple has in the past declined such requests from authorities,” noted Tarun Pathak, a analyst at Counterpoint.

“It’s expected to seek a compromise: rather than a forced inclusion, they might discuss and ask for an option to encourage users towards downloading the app.”

Queries for comment from Apple, Google, Samsung, and Xiaomi went unanswered. India’s telecoms department also offered no comment.

The Role of the IMEI and the Application's Purpose

The IMEI, or International Mobile Equipment Identity, is a 14- to 17-digit number unique to each handset. It is most commonly used by networks to block cellular access for phones flagged as stolen.

The government application is mainly intended to enable users block and track missing phones across all mobile carriers, using a national registry. It also allows them to spot, and disconnect, fraudulent mobile connections.

Notable Usage and Results

With over 5 million installs since its launch, the software has reportedly helped block over 3.7 million stolen or lost mobile phones. Moreover, over 30 million illegal connections have also been disconnected through its use.

The authorities asserts that the app helps combating digital threats and assists in the locating and disabling of lost or stolen phones, thereby helping police in tracing devices and keeping cloned devices out of the illicit trade.