Centre mandates pre-installation of Sanchar Saathi app on all phones, sparks privacy debate

The Union government has directed all smartphone manufacturers to pre-install the Sanchar Saathi app on new devices and push it to existing phones through software updates. Companies including Apple, Samsung and Xiaomi have been given 90 days to comply, with compliance reports due within 120 days. The unprecedented directive has led to widespread debate on social media, with concerns raised over privacy, digital autonomy and government oversight.

What the government says

According to a press note issued by the Press Information Bureau (PIB), the decision aims to improve user safety.
“In order to safeguard the citizens from buying non-genuine handsets, enable easy reporting of suspected misuse of telecom resources and increase the effectiveness of the Sanchar Saathi initiative, the DoT has issued these directions,” the statement read.

The app, introduced as part of the Centre’s efforts to combat cyber fraud, helps users track lost or stolen phones and identify fraudulent SIM cards. However, the concern arises from the fact that the app cannot be uninstalled or disabled once pre-installed.

Privacy concerns grow

Digital rights groups and technology analysts say the order places India in a uniquely intrusive position among democracies. While many countries have strong cybersecurity mechanisms, none require citizens to keep a government app permanently installed on their phone.

Critics argue that even if the app itself is safe, the compulsory nature of the mandate raises questions about user consent and device independence. Supporters of the move point to rising cybercrime, SIM fraud and spoofed calls—challenges that often demand proactive measures.

How democracies around the world handle cybercrime

A comparison with global practices highlights why India’s decision has stirred debate:

United States

• No mandatory government apps on phones.
• Telecom operators are required to implement STIR/SHAKEN, a digital call-authentication system to prevent spoofing.
• Agencies like the FBI (CyWatch) and CISA coordinate cybersecurity operations and issue advisories.
• Monitoring remains targeted—not universal.

United Kingdom

• No preinstalled apps.
• The Online Safety Act 2023 requires tech companies to prevent fraudulent ads and harmful content.
• Responsibility lies with platforms, not end-users.

European Union

• Mandates strong device-level security, not app installation.
• The Cyber Resilience Act requires devices to offer mandatory security updates for at least five years.
• The EUDI Wallet, an identity app, is available but entirely voluntary.
• Heavy penalties for platforms that fail to address scams.

Singapore

• Offers a voluntary scam-filtering app, ScamShield.
• Citizens are encouraged, not compelled, to use it.

South Korea – A rare democratic exception

• Mandated SmartSheriff for minors’ phones (not adults).
• Served as a parental control tool, not a national surveillance system.
• Withdrawn in 2015 due to security flaws and public criticism.

Where compulsory apps exist: Russia

The only notable global parallel is Russia, where the government has a list of 19 mandatory apps—including the Gosuslugi ID app—that must be pre-installed on smartphones. A new “super app” called MAX is designed to replace WhatsApp and Telegram.

Observers point out that India’s directive echoes these policies more closely than those found in democratic countries.

Debate intensifies in India

Civil liberties groups warn that India risks setting a precedent that may lead to deeper surveillance if safeguards are not clearly defined. Tech industry leaders have also expressed concern about potential complications in software updates, user backlash and international compliance obligations.

The government maintains that the Sanchar Saathi mandate is rooted in user protection, saying it aims to reduce cybercrime and curb mobile-related fraud. Officials argue that the app’s features—particularly the ability to block stolen devices—are critical at a time when digital scams are rising.

What lies ahead

With the 90-day implementation window now active, smartphone companies are working to assess the technical and regulatory implications. Legal experts say challenges may emerge regarding user consent, constitutional rights and data protection norms.

As India navigates the balance between digital security and personal privacy, the Sanchar Saathi directive is expected to remain at the centre of public debate in the weeks ahead.