India Pushes Cyber Safety With Mandatory Pre-Installed App on Smartphones

TLDRs;

• India mandates Sanchar Saathi app pre-installed on all new phones within 90 days.
• App allows users to block stolen phones and report suspicious calls easily.
• OEMs face tight deadlines with unclear enforcement and liability rules for compliance.
• Regtech and EMM vendors may provide tools for app deployment and audit tracking.

India’s Department of Telecommunications (DoT) has issued a directive requiring smartphone manufacturers to pre-install the government’s Sanchar Saathi app on all new devices sold in the country.

Announced on November 28, the order gives manufacturers 90 days to comply. The app, which focuses on telecom cybersecurity, allows users to report suspicious calls, verify International Mobile Equipment Identity (IMEI) numbers, and block stolen phones through a central registry.

The move represents a significant step by Indian authorities to tackle growing telecom security risks, including scams and fraudulent activity related to duplicated or spoofed IMEI numbers.

Under the new rule, users will not be able to remove the app, ensuring that all devices have a baseline level of cyber safety protection.

Tight Deadlines Challenge OEMs

The 90-day compliance window presents logistical challenges for smartphone makers. Manufacturers must integrate the app into their firmware, secure carrier approvals, and manage regional variations of devices.

In addition, the government requires the app to be pushed to units already in the supply chain through over-the-air updates.

However, details around enforcement remain vague. Unlike other telecom rules where fines and penalties are clearly defined, the Sanchar Saathi pre-install mandate does not specify who would be held liable in case of non-compliance, whether the OEM, distributor, or retailer.

Questions also remain regarding devices already sold at retail and how companies such as Apple, with their walled-garden ecosystem, can comply with a non-removable app requirement.

Opportunities for Enterprise Mobility and Regtech Vendors

Industry experts suggest that enterprise mobility management (EMM) and regulatory technology (regtech) vendors could play a crucial role in supporting manufacturers and distributors.

Tools connected to India’s Central Equipment Identity Register (CEIR) can streamline app installation, provide compliance logs, and ensure proper IMEI verification before device activation.

For refurbishers and distributors handling second-hand devices, these toolkits could install the app on all devices in the supply chain while maintaining audit trails to demonstrate compliance.

Regtech vendors could also offer Software-as-a-Service dashboards that consolidate compliance metrics across multiple distribution channels, helping early adopters prepare for any future enforcement measures.

Addressing Telecom Security Challenges

The Sanchar Saathi app is part of a broader government effort to secure India’s telecom ecosystem. By enabling users to block stolen devices and report suspicious activity, the app strengthens existing measures to counter fraud and protect subscribers.

Officials hope the initiative will reduce financial and privacy risks associated with cloned devices and unauthorized caller ID manipulation.

Despite its promise, questions around enforcement, liability, and implementation remain. OEMs will need to act quickly to meet the 90-day deadline, while government agencies may have to clarify compliance rules and penalties.

Meanwhile, industry stakeholders, including EMM providers and system integrators, are preparing solutions to facilitate a smoother rollout.

The post India Pushes Cyber Safety With Mandatory Pre-Installed App on Smartphones appeared first on CoinCentral.