India Mandates Mobile Manufacturers to Preload Handsets with National Cybersecurity Application

In a significant decision, India's telecommunications authority has confidentially instructed mobile phone companies to pre-install all new phones with a national cybersecurity tool that must remain installed. This directive, which has been disclosed, is expected to antagonise leading technology firms like Apple and prompt concerns among consumer watchdogs.

A Worldwide Pattern in Digital Security Policy

To combat a recent surge of cybercrime and device misuse, India is joining governments across the globe. This move echoes recent regulations introduced in countries like Russia, which aim to curb the use of stolen phones for fraud and push state-backed tools.

What Manufacturers Are Bound by the Directive?

The latest order affects major smartphone companies active in the Indian market. This encompasses Apple, which has previously had disagreements with the telecom authority over comparable applications, as well as giants like Samsung, Vivo, Oppo, and Xiaomi.

Details of the Official Mandate

An directive dated 28 November provides smartphone companies a three-month window to ensure that the government's Sanchar Saathi app is pre-installed on all new devices. A notable provision is that consumers will not be able to remove the application.

For handsets already in the supply chain, companies are required to send the app via software upgrades. It is notable that this order was privately circulated and was dispatched privately to select manufacturers.

User Consent Apprehensions Voiced

However, legal specialists have expressed major worries regarding this decision. A lawyer specialising in technology law commented that India's action is a worrying development.

“The government practically eliminates user consent as a genuine choice,” said Mishi Choudhary, an expert working on digital advocacy matters.

Digital rights groups had previously questioned a similar requirement by Russia in August for a government-sponsored messenger app to be pre-installed on phones.

The Scale of the Indian Market

India, among the world's largest telephone markets, boasts over 1.2 billion subscribers. Government figures indicate that the Sanchar Saathi app, launched in January, has already assisted in locating over 700,000 lost phones, with an estimated 50,000 recovered in October by itself.

The authorities contends that the app is vital to fight the “significant endangerment” of mobile network cybersecurity from duplicate or spoofed IMEI numbers, which enable illicit activities and network misuse.

The Tech Giant's Position

Apple's iOS runs on an approximate 4.5% of the 735 million smartphones in India, with the vast majority using Android, according to industry analysis. While Apple includes its own first-party apps on its devices, its company guidelines are said to forbid the installation of any government application before the purchase of a smartphone.

“Apple has in the past declined such demands from governments,” said Tarun Pathak, a research director at Counterpoint.

“It’s expected to aim for a middle ground: rather than a forced inclusion, they might discuss and propose an option to prompt users towards downloading the application.”

Requests for response from Apple, Google, Samsung, and Xiaomi were unresponded. India’s telecoms ministry also offered no comment.

The Role of the IMEI and the Application's Purpose

The IMEI, or International Mobile Equipment Identity, is a 14- to 17-digit number unique to each mobile device. It is typically used by carriers to cut off network access for phones reported as lost.

The Sanchar Saathi application is mainly designed to enable users track and locate missing smartphones across all telecom networks, using a national registry. It also allows them to spot, and terminate, unauthorised mobile connections.

Notable Usage and Results

With over 5 million installs since its release, the software has reportedly been used to block more than 3.7 million missing mobile phones. Additionally, more than 30 million fraudulent connections have also been disconnected through its use.

The government asserts that the app helps combating cyberthreats and helps in the locating and disabling of missing phones, thereby helping police in tracing handsets and keeping counterfeits out of the black market.