In a move poised to significantly impact the smartphone industry, the Indian government has mandated that all smartphone manufacturers pre-install the "Sanchar Saathi" cybersecurity application on new devices sold in the country. This directive, issued by the Department of Telecommunications (DoT) on November 28, 2025, requires compliance within 90 days. The government is also requiring that the app be installed on devices already in the supply chain via software updates.
The "Sanchar Saathi" app, meaning "communication companion," aims to combat cyber fraud, phone theft, and misuse of telecom resources. A key feature of the mandate is that the app cannot be uninstalled or disabled by users.
Features of Sanchar Saathi
The Sanchar Saathi platform, initially a web-based service, is now transitioning into a system-level application with deep integration into device architecture. The app combines security features designed to address different threat vectors within the Indian telecom ecosystem. Key functionalities include:
- Reporting Mechanism (Chakshu): Enables users to report suspicious communications, such as fraudulent calls, SMS, or WhatsApp interactions, directly to law enforcement. This real-time reporting feeds into law enforcement databases, enabling rapid responses to emerging scam patterns.
- Stolen Device Blocking: Connects to India’s Central Equipment Identity Register (CEIR) to blacklist the IMEI number of reported stolen devices, rendering them unable to connect to mobile networks. This neutralizes stolen devices and reduces their resale value.
- Connection Verification Tool: Allows users to check the number of mobile connections registered under their name, helping them detect fraudulent SIM card registrations.
- IMEI Verification: Allows users to check their handset's unique International Mobile Equipment Identity (IMEI) to verify the authenticity of the device.
- Spam Reporting: Allows users to report suspected fraud, spam, and malicious web links received through calls, SMS, or WhatsApp. It can also report international calls with the Indian country code (+91) used for fraud.
Government Rationale
Indian authorities cite the alarming rise in digital fraud cases as justification for this measure. With over 1.2 billion telecom subscribers, India faces challenges from criminals exploiting stolen devices and fraudsters operating under fake identities. The government frames Sanchar Saathi as a protective shield to safeguard citizens' digital security. The Ministry of Communications stated that the pre-installation is required to protect citizens from buying non-genuine handsets and enable easy reporting of suspected misuse of telecom resources. The government also stated that mobile handsets with duplicate or spoofed IMEI numbers pose a serious threat to telecom cybersecurity.
Impact and Concerns
The mandate has sparked debate regarding user privacy and potential conflicts with smartphone manufacturers' policies. Some experts suggest the move could erode user privacy and consent, potentially paving the way for increased government access to user data. It is expected that Apple, known for its strict policies against pre-installing third-party apps, may resist the directive.
Despite concerns, the government highlights the app's success in blocking stolen devices and fraudulent connections. Since its launch, Sanchar Saathi has reportedly facilitated the recovery of over 700,000 lost phones and blocked millions of stolen devices and fraudulent connections.
Global Context
India's move mirrors similar mandates in other countries, such as Russia, which requires pre-installation of government-approved apps on smart devices.
