🔗 Share this article

In a significant move, India's telecommunications department has confidentially instructed smartphone manufacturers to preload all new devices with a national cybersecurity application that cannot be deleted. This order, which has come to light, is likely to antagonise leading tech firms like Apple and raise concerns among privacy advocates.

A Global Pattern in Cybersecurity Regulation

Addressing a recent surge of digital scams and hacking, India is joining governments across the globe. This action parallels recent rules introduced in nations like Russia, which are designed to prevent the use of stolen phones for scams and encourage official tools.

Which Companies Are Bound by the Directive?

The latest order affects key mobile phone brands active in the domestic market. This encompasses Apple, which has in the past had disagreements with the telecom authority over similar applications, as well as giants like Samsung, Vivo, Oppo, and Xiaomi.

Details of the Government Order

An order dated 28 November provides phone companies a 90-day period to guarantee that the government's "Messenger Friend" application is pre-installed on all new devices. A notable stipulation is that owners cannot disable the app.

For phones currently in the supply chain, makers are directed to send the app via system upgrades. It is worth mentioning that this directive was privately circulated and was communicated privately to specific firms.

Digital Rights Worries Raised

However, technology analysts have flagged significant concerns regarding this decision. A lawyer specialising in technology issues commented that India's step is a cause for concern.

“The government effectively eliminates user consent as a genuine choice,” stated Mishi Choudhary, an advocate working on internet advocacy issues.

Digital rights groups had also criticised a comparable mandate by Russia in August for a government-sponsored messenger called Max to be pre-installed on phones.

The Scale of the Domestic Smartphone Landscape

India, among the world's largest mobile markets, boasts more than 1.2 billion connections. Government figures indicate that the cybersecurity application, introduced in January, has reportedly assisted in locating over 700,000 lost phones, with approximately 50,000 recovered in October alone.

The authorities states that the app is vital to tackle the “significant endangerment” of mobile network cybersecurity from cloned or spoofed IMEI numbers, which are used for illicit activities and system abuse.

Apple's Position

Apple's iOS runs on an approximate 4.5% of the 735 million smartphones in India, with the vast majority using Android, as per industry analysis. While Apple includes its own first-party applications on its devices, its internal guidelines are said to forbid the inclusion of any government app before the purchase of a smartphone.

“Apple has historically declined such mandates from authorities,” noted Tarun Pathak, a research director at Counterpoint.

“It’s likely to aim for a negotiated solution: instead of a forced inclusion, they might discuss and ask for an option to encourage users towards downloading the app.”

Requests for response from Apple, Google, Samsung, and Xiaomi went unresponded. India’s telecoms ministry also remained silent.

The Role of the IMEI and the App's Function

The IMEI, or International Mobile Equipment Identity, is a unique identification number unique to each handset. It is primarily used by operators to block network access for phones reported as lost.

The government application is primarily designed to help users track and track missing phones across all mobile carriers, using a national registry. It also allows them to identify, and disconnect, illegal mobile connections.

Notable Adoption and Results

With more than 5 million installs since its inception, the software has reportedly helped disable over 3.7 million stolen or lost mobile phones. Moreover, over 30 million fraudulent connections have also been disconnected through its use.

The government asserts that the software helps preventing cyberthreats and assists in the locating and disabling of lost or stolen phones, thereby helping police in tracing devices and preventing cloned devices out of the illicit trade.