The Indian government has issued a directive that is sparking debate within the tech industry and among privacy watchdogs. It has ordered all smartphone manufacturers to mandatorily pre-install its Sanchar Saathi application on every device sold in the country. Officials state this move aims to bolster device cybersecurity and prevent the illegal tampering or spoofing of IMEI numbers.
Details of the Government Directive
The order, formally issued on November 21, provides a 90-day compliance window for device makers. Major global and domestic brands, including Apple, Samsung, Google, Motorola, Xiaomi, Oppo, and Vivo, are all covered under this mandate. Failure to adhere could result in penalties for the companies.
The directive, issued under the Telecommunications (Telecom Cyber Security) Rules, 2024, is comprehensive. It applies not only to phones manufactured locally but also to those imported into India, even if they are still in pre-sales transit. The government has specified that the Sanchar Saathi app must be "readily visible and accessible" during the initial device setup. Furthermore, manufacturers are barred from disabling or restricting any of the app's functionalities.
Official Rationale vs. Privacy Concerns
The Department of Telecommunications (DoT) promotes Sanchar Saathi as a citizen-centric initiative designed to empower mobile users and enhance their security. The primary stated goal is to combat the cloning and manipulation of the unique International Mobile Equipment Identity (IMEI) number, a critical identifier for mobile devices.
However, this move has raised significant alarm. Nikhil Pahwa, founder of the tech policy analysis firm Medianama, labeled the order as "bad news" for user privacy. He argues that a personal smartphone is a private space, and mandatory pre-installation of a government app constitutes an invasion of that space.
"It's where we have our most private conversations and exchange sensitive information," Pahwa said. "How do we know this app isn't used to access files and messages on our device? Or a future update won't do that?" He also pointed to the government exempting itself from large parts of the Data Protection Law as a reason for heightened suspicion.
Industry Implications and Next Steps
The directive places a new compliance burden on smartphone manufacturers operating in one of the world's largest markets. Companies now have until late February 2025 to integrate the app into their device software and production lines for the Indian market. The industry's formal response and any potential legal challenges are yet to be seen, but the conversation around device sovereignty, user choice, and state security is now firmly in the spotlight.
As the deadline approaches, all eyes will be on how device makers implement the order and whether the government provides more technical transparency about the Sanchar Saathi app's data access and operational protocols to alleviate privacy fears.
