India Orders Mobile Manufacturers to Include Devices with National Cybersecurity App

In a significant step, India's telecoms department has privately instructed mobile phone makers to pre-install all new handsets with a state-owned cybersecurity application that is non-removable. This directive, which has come to light, is expected to alarm major technology companies like Apple and raise questions among privacy advocates.

An International Pattern in Digital Security Policy

Addressing a rising tide of digital scams and phone theft, The Indian authorities is aligning with authorities worldwide. This move mirrors comparable measures enacted in nations like Russia, which aim to curb the use of lost phones for illicit activities and encourage state-backed service apps.

What Manufacturers Are Impacted by the Directive?

The recent mandate affects major mobile phone makers active in the domestic market. These include Apple, which has previously clashed with the telecom authority over similar apps, as well as leaders like Samsung, Vivo, Oppo, and Xiaomi.

Details of the Government Mandate

An directive dated 28 November gives phone companies a three-month window to ensure that the government's Sanchar Saathi app is pre-installed on all new devices. A notable stipulation is that owners will not be able to remove the software.

For devices currently in the retail pipeline, companies are instructed to push the app via system patches. It is notable that this directive was privately circulated and was dispatched privately to specific companies.

Privacy Worries Expressed

However, legal specialists have flagged serious worries regarding this move. A legal expert specialising in technology law stated that India's directive is a worrying development.

“The government practically erodes user consent as a genuine choice,” said Mishi Choudhary, an expert working on digital rights matters.

Consumer organisations had earlier questioned a similar mandate by Russia in August for a government-sponsored messenger called Max to be included on phones.

The Size of the Indian Market

India, one of the world's biggest telephone markets, boasts over 1.2 billion connections. Government statistics show that the cybersecurity app, introduced in January, has already assisted in tracking down over 700,000 stolen phones, with approximately 50,000 found in October alone.

The government contends that the software is vital to combat the “grave endangerment” of mobile network cybersecurity from fake or spoofed IMEI numbers, which are used for illicit activities and system misuse.

Apple's Stance

Apple's iOS runs on an estimated 4.5% of the 735 million mobile phones in India, with the vast majority using Android, as per market research. While Apple pre-installs its own first-party applications on its devices, its company policies reportedly forbid the inclusion of any third-party application before the purchase of a device.

“Apple has historically declined these kinds of requests from governments,” noted Tarun Pathak, a analyst at Counterpoint.

“It’s expected to aim for a middle ground: rather than a compulsory pre-install, they might negotiate and ask for an option to encourage users towards downloading the application.”

Queries for comment from Apple, Google, Samsung, and Xiaomi were unresponded. India’s telecoms department also did not respond.

Understanding the IMEI and the App's Purpose

The IMEI, or International Mobile Equipment Identity, is a unique identification number unique to each handset. It is most commonly used by operators to cut off cellular access for phones reported as lost.

The government application is primarily designed to help users block and locate lost or stolen phones across all telecom networks, using a central database. It also allows them to detect, and terminate, illegal mobile connections.

Notable Usage and Outcomes

With over 5 million downloads since its launch, the software has already helped disable over 3.7 million stolen or lost mobile phones. Moreover, over 30 million illegal connections have also been blocked through its use.

The government states that the tool aids in preventing cyberthreats and helps in the tracking and blocking of lost or stolen phones, thereby helping police in recovering devices and keeping counterfeits out of the black market.