🔗 Share this article

In a significant decision, India's telecoms authority has privately directed mobile phone manufacturers to include all new devices with a national cybersecurity app that cannot be deleted. This directive, which has come to light, is likely to alarm major tech firms like Apple and raise questions among digital rights groups.

An International Pattern in Digital Security Regulation

In tackling a rising tide of online fraud and hacking, India is following governments across the globe. This action parallels recent measures enacted in nations like Russia, which are designed to curb the use of stolen phones for illicit activities and encourage state-backed tools.

What Manufacturers Are Affected by the Order?

The recent directive applies to leading smartphone makers operating in the Indian market. These include Apple, a company that has previously had disagreements with regulators over comparable applications, as well as giants like Samsung, Vivo, Oppo, and Xiaomi.

Specifics of the Government Mandate

An directive dated 28 November provides phone companies a three-month window to guarantee that the government's "Messenger Friend" application is pre-installed on all new devices. A notable provision is that owners are prevented from deleting the application.

For handsets currently in the distribution network, companies are instructed to deliver the application via system upgrades. It is worth mentioning that this directive was not made public and was dispatched selectively to chosen firms.

Privacy Apprehensions Expressed

However, legal experts have raised serious apprehensions regarding this decision. A lawyer focusing in tech issues said that India's step is a cause for concern.

“The government practically eliminates user consent as a meaningful choice,” stated Mishi Choudhary, an advocate working on internet rights matters.

Privacy advocates had previously condemned a similar mandate by Russia in August for a state-backed communication called Max to be pre-installed on phones.

The Scope of the Indian Market

India, one of the world's largest mobile markets, boasts more than 1.2 billion subscribers. Official statistics reveal that the cybersecurity application, launched in January, has reportedly assisted in tracking down over 700,000 lost phones, with approximately 50,000 recovered in October alone.

The authorities argues that the software is essential to fight the “serious endangerment” of mobile network cybersecurity from cloned or spoofed IMEI numbers, which facilitate fraud and network abuse.

Apple's Likely Response

Apple's iOS runs on an estimated 4.5% of the 735 million mobile phones in India, with the vast majority using Android, as per industry analysis. While Apple includes its own first-party apps on its devices, its company guidelines reportedly prohibit the inclusion of any government application before the sale of a smartphone.

“Apple has in the past resisted these kinds of mandates from governments,” commented Tarun Pathak, a research director at Counterpoint.

“It’s likely to aim for a middle ground: rather than a compulsory inclusion, they might discuss and ask for an option to nudge users towards downloading the application.”

Requests for comment from Apple, Google, Samsung, and Xiaomi were unresponded. India’s telecommunications department also remained silent.

The Role of the IMEI and the Application's Purpose

The IMEI, or International Mobile Equipment Identity, is a unique identification number assigned to each mobile device. It is most commonly used by networks to cut off network access for phones flagged as lost.

The Sanchar Saathi app is chiefly intended to help users block and locate lost or stolen smartphones across all telecom networks, using a national database. It also enables them to spot, and terminate, unauthorised mobile connections.

Notable Usage and Outcomes

With more than 5 million downloads since its inception, the software has reportedly been used to block more than 3.7 million stolen or lost mobile phones. Moreover, more than 30 million fraudulent connections have also been terminated through its use.

The authorities claims that the software helps combating digital threats and assists in the locating and blocking of missing phones, thereby helping police in tracing devices and preventing counterfeits out of the black market.