In 90 day’s time, all smartphone makers must pre-load the app which can make and manage phone calls, send messages, access the camera, call and message logs, photos and files
India, so often described as the world’s largest democracy, is about to take unprecedented action concerning the privacy of its 735 million smartphone users. An order passed last week and published yesterday gives all smartphone makers 90 days to ensure all new devices come preloaded with the government’s Sanchar Saathi cybersecurity app.
The government says the app’s “functionalities cannot be disabled or restricted” and that it is necessary to help citizens verify the authenticity of handsets and enable them to report any suspected misuse of telecom resources “for cyber frauds” and ensure “telecom cyber security”.
Certainly, nobody is denying that telcos and their customers are being subjected to all kinds of cyberattacks and fraud on an unprecedented level. What is in question is the means of defending citizens: the app’s privacy terms and conditions allow it to make and manage phone calls and send messages from users’ phones, as well as access their call and message logs, their camera, photos and files.
Phones in use must also comply
The app was launched at the start of 2025 and allows users to check their handset’s unique International Mobile Equipment Identity (IEMI) – the equivalent of a serial number. According to India’s Department of Telecommunications, mobile handsets with duplicate or falsified IMEI numbers pose “serious endangerment” to telecoms’ cybersecurity.
The app also means stolen phones can be tracked and the government said 700,000 lost smartphones have been found since Sanchar Saathi’s launch for voluntary use at the start of the year. The Guardian notes that Russia is also using the dangers of stolen phones as the reason for increased cybersurveillance of its population. In August President Putin’s government issued a similar requirement for the state-backed messenger app, Max, to be pre-installed on phones.
Owners of smartphones already in use are to given three months to install the app on their devices.
Attack on privacy?
Naturally enough this has sparked a furore – the government has suddenly gaining the right to snoop on all smartphone owners and with no regard for privacy. The backlash finally prompted the Indian’s Minister of Communications, Jyotiradtiya Scindia, into explaining that the app is “a voluntary and democratic system” that mobile users can delete.
As the BBC and others have pointed out, it is not clear how they will exercise this option given that the government has said the functions “cannot be disabled or restricted”.
How will phonemakers react?
Smartphone makers are to “make an endeavour” to install the app via software updates for devices that have left the factory but are yet to be sold, the Indian government has said. It has also told the manufacturers to provide a compliance report with the order in 120 days’ time.
Reactions of smartphone makers are not yet public, but Apple in particular is known for pushing back against governmental efforts to gain access to iPhones and the activities carried on them. It has been a loggerheads with a number of regulators and has refused to comply some orders. iPhones accounted for about 4.5% of 735 million smartphones in use in India in summer this year according to Counterpoint Research.
