🔗 Share this article

In a major decision, India's telecommunications ministry has confidentially asked smartphone manufacturers to preload all new devices with a state-owned cybersecurity application that is non-removable. This order, which was revealed, is likely to concern leading technology companies like Apple and raise concerns among digital rights groups.

A Global Shift in Cybersecurity Regulation

To combat a growing wave of digital scams and phone theft, India is following governments internationally. This step echoes comparable regulations introduced in countries like Russia, which seek to block the use of stolen phones for illicit activities and push government-developed service apps.

Which Companies Are Bound by the Directive?

The latest order binds major mobile phone brands operating in the domestic market. This encompasses Apple, a company that has in the past clashed with the telecom authority over similar applications, as well as giants like Samsung, Vivo, Oppo, and Xiaomi.

Specifics of the Official Mandate

An directive dated 28 November provides phone companies a three-month window to guarantee that the official Sanchar Saathi app is factory-loaded on all new mobile phones. A notable provision is that users are prevented from deleting the application.

For handsets currently in the retail pipeline, manufacturers are directed to send the application via system updates. It is important that this order was sent confidentially and was communicated in confidence to specific companies.

Digital Rights Apprehensions Voiced

However, legal experts have raised significant apprehensions regarding this policy. A lawyer focusing in technology matters said that India's step is a worrying development.

“The government practically removes user consent as a real choice,” commented Mishi Choudhary, an advocate working on internet advocacy issues.

Digital rights groups had previously questioned a comparable mandate by Russia in August for a government-sponsored messenger called Max to be pre-installed on phones.

The Scope of the Indian Smartphone Landscape

India, among the world's biggest mobile markets, boasts more than 1.2 billion mobile users. Official data reveal that the cybersecurity app, introduced in January, has reportedly assisted in recovering more than 700,000 lost phones, with approximately 50,000 recovered in October by itself.

The authorities argues that the tool is vital to combat the “significant endangerment” of mobile network cybersecurity from cloned or spoofed IMEI numbers, which enable illicit activities and network abuse.

Apple's Likely Response

Apple's iOS powers an estimated 4.5% of the 735 million mobile phones in India, with the vast majority using Android, as per market research. While Apple pre-installs its own first-party applications on its devices, its internal guidelines reportedly prohibit the installation of any third-party application before the sale of a smartphone.

“Apple has in the past resisted these kinds of requests from governments,” noted Tarun Pathak, a research director at Counterpoint.

“It’s expected to aim for a middle ground: rather than a mandatory pre-install, they might discuss and propose an option to prompt users towards installing the application.”

Requests for response from Apple, Google, Samsung, and Xiaomi were unresponded. India’s telecommunications department also did not respond.

The Role of the IMEI and the Application's Purpose

The IMEI, or International Mobile Equipment Identity, is a 14- to 17-digit number unique to each handset. It is typically used by operators to cut off cellular access for phones reported as stolen.

The Sanchar Saathi application is primarily intended to enable users block and locate lost or stolen smartphones across all telecom networks, using a national registry. It also lets them to identify, and disconnect, illegal mobile connections.

Impressive Adoption and Results

With more than 5 million installs since its launch, the app has already helped disable over 3.7 million stolen or lost mobile phones. Additionally, over 30 million fraudulent connections have also been terminated through its use.

The authorities states that the software helps preventing cyberthreats and helps in the locating and blocking of missing phones, thereby helping police in recovering devices and preventing cloned devices out of the illicit trade.