🔗 Share this article

In a significant step, India's telecommunications authority has confidentially directed mobile phone companies to include all new handsets with a national cybersecurity application that cannot be deleted. This order, which has been disclosed, is set to alarm leading tech firms like Apple and raise questions among privacy advocates.

A Global Pattern in Cybersecurity Policy

In tackling a recent surge of digital scams and hacking, The Indian authorities is aligning with authorities across the globe. This step echoes recent regulations framed in countries like Russia, which aim to curb the use of stolen phones for fraud and push official service apps.

What Companies Are Bound by the Order?

The latest mandate affects leading smartphone makers active in the Indian market. These include Apple, which has in the past clashed with regulators over comparable applications, as well as giants like Samsung, Vivo, Oppo, and Xiaomi.

Specifics of the Government Order

An directive dated 28 November provides phone manufacturers a three-month deadline to guarantee that the government's "Messenger Friend" app is pre-installed on all new devices. A key provision is that users will not be able to remove the application.

For handsets currently in the retail pipeline, manufacturers are instructed to send the application via system upgrades. It is worth mentioning that this order was privately circulated and was communicated privately to chosen firms.

User Consent Worries Raised

However, technology analysts have raised significant worries regarding this move. A legal expert specialising in tech law said that India's directive is a reason to worry.

“The government practically removes user consent as a genuine choice,” commented Mishi Choudhary, an advocate working on internet advocacy matters.

Consumer organisations had earlier condemned a comparable requirement by Russia in August for a government-sponsored communication called Max to be included on phones.

The Size of the Indian Smartphone Landscape

India, one of the world's biggest telephone markets, boasts over 1.2 billion connections. Official figures indicate that the cybersecurity application, introduced in January, has reportedly assisted in recovering more than 700,000 stolen phones, with around 50,000 found in October alone.

The government contends that the app is essential to fight the “grave endangerment” of telecom cybersecurity from fake or spoofed IMEI numbers, which facilitate fraud and network misuse.

Apple's Position

Apple's iOS runs on an estimated 4.5% of the 735 million mobile phones in India, with the vast majority using Android, as per market research. While Apple pre-installs its own first-party apps on its devices, its internal guidelines reportedly prohibit the installation of any third-party application before the sale of a smartphone.

“Apple has in the past resisted such mandates from authorities,” said Tarun Pathak, a research director at Counterpoint.

“It’s expected to seek a negotiated solution: instead of a compulsory inclusion, they might negotiate and propose an option to encourage users towards installing the application.”

Requests for response from Apple, Google, Samsung, and Xiaomi were unresponded. India’s telecommunications department also did not respond.

Understanding the IMEI and the Application's Purpose

The IMEI, or International Mobile Equipment Identity, is a 14- to 17-digit number assigned to each handset. It is primarily used by networks to disable network access for phones flagged as stolen.

The government application is chiefly created to help users block and track lost or stolen phones across all telecom networks, using a national database. It also enables them to identify, and block, illegal mobile connections.

Notable Usage and Outcomes

With more than 5 million installs since its launch, the software has reportedly been used to block over 3.7 million stolen or lost mobile phones. Furthermore, more than 30 million illegal connections have also been disconnected through its use.

The government states that the app helps combating cyberthreats and assists in the locating and disabling of missing phones, thereby aiding police in recovering handsets and keeping cloned devices out of the illicit trade.