MC EXCLUSIVE Eutelsat OneWeb yet to get security clearance for satellite broadband as Starlink conducts demo in Mumbai

.

Bharti Enterprises-backed Eutelsat OneWeb is yet to receive security clearance from authorities despite having conducted demonstrations earlier this year, even as a similar exercise is currently underway for Elon Musk-owned Starlink in Mumbai.

“OneWeb had given the security test-related demonstrations some time back but has yet to receive any approval. However, after the demo, certain clarifications and more information were sought by the authorities, which the company provided. But there’s no update on the security clearance,” a source told Moneycontrol on condition of anonymity.

OneWeb was the first satcom company to receive the GMPCS (global mobile personal communication by satellite) licence from the DoT, which authorises companies to operate satellite-based communications services in India, in April 2022.

Sources said that while OneWeb had earlier met most of the security requirements, it was asked to revalidate its compliance under the Department of Telecommunications’ (DoT) updated security guidelines introduced in May this year.

"Without the security clearance, OneWeb's commercial launch will be delayed even if the government decides to make spectrum commercially available. All GMPCS license holders are required to demonstrate satellite-based services security to law enforcement agencies (LEAs),” the person added.

Eutelsat OneWeb, backed by Airtel’s parent Bharti Enterprises, had requested additional time from the government to fully comply with India’s stringent security norms. In response, the Department of Telecommunications (DoT) in June granted the company a six-month extension—until November—to continue using provisional spectrum and complete the security compliance process mandated in May 2025.

According to officials, Eutelsat OneWeb had met about 80% of the DoT’s security requirements, but the remaining conditions pose significant technological challenges. These include establishing network control and monitoring centres within India and ensuring that satellite telemetry—covering the on-ground management and monitoring of satellites through transmitted data—is handled domestically.

The Indian government mandates that all telemetry and control operations for satellites serving Indian users must be conducted from within the country to safeguard national security and data sovereignty.

The Department of Telecommunications (DoT) and the Telecom Regulatory Authority of India (Trai) are still finalising the guidelines and pricing framework for spectrum allocation to satellite communication (satcom) services.

Also Read- DoT tightens satellite security rules as Starlink, Kuiper seek entry into India

A query sent to Eutelsat OneWeb did not elicit any response.

Currently, the government has approved the applications of Bharti Enterprises-backed Eutelsat OneWeb, Jio, and Elon Musk-owned Starlink, while Amazon’s Kuiper and Globalstar are still awaiting regulatory clearances.

Tata Group-owned Nelco Ltd has also received a letter of intent (LoI) from the DoT to resell satellite internet services to consumers by partnering with satcom companies such as Starlink, OneWeb, Kuiper, and Jio Satellite.

Nelco currently operates capacities on multiple geosynchronous (GEO) satellites, including those from Luxembourg’s SES, Korea’s KT-SAT, and several Indian satellites. Recently, it partnered with Eutelsat to deliver OneWeb’s low-earth orbit satellite connectivity services across India. “Nelco has to fulfill some formalities before it is issued the GMPCS VNO licence from the DoT. It is likely within a month,” a second person said.

In a recent interview with Moneycontrol,  Shivaji Chatterjee, CEO and MD of Hughes Communications India, a distributor of OneWeb’s satellite services in the country, raised concerns about stringent cybersecurity guidelines for global LEO players that operate centralised, borderless networks.

“For a global constellation provider, the guidelines are stringent because you have built your network to be a global network. You build your software to be globally managed. You build your NOC to be centrally controlled… But you can't have a network suddenly separated so easily,” he said in an interview in July this year.

Starlink is demonstrating its satellite broadband service to law enforcement agencies (LEAs) in Mumbai on October 30-31, allowing authorities to test lawful interception and security mechanisms. SpaceX, the parent of Starlink, has already set up three ground stations in Mumbai, which will serve as Starlink’s India hub.

Starlink has also kicked off its first hiring drive in India and is recruiting for several finance and accounting positions—including payments manager, accounting manager, senior treasury analyst, and tax manager—as part of its initial hiring phase. All roles are based in Bengaluru, which will serve as Starlink’s operational hub in India, Moneycontrol reported on October 31.

In May this year, the DoT introduced stringent new security guidelines for satellite-based internet providers, incorporated into Chapter XII of the Unified License (UL) Agreement for GMPCS (Global Mobile Personal Communication by Satellite) services.

Under the framework, GMPCS license holders must obtain security clearance for each gateway or hub location in India. These gateways—critical links between satellites and local telecom networks—must have robust monitoring and lawful interception systems before commercial services can begin.

“Essential functionalities like lawful interception, user data traffic routing, and network control facilities shall be located in India,” the DoT said in the guidelines.

All core infrastructure, including monitoring and data routing systems, must be housed entirely within the country. Providers must also be capable of restricting or suspending services in specific areas during emergencies or on orders from security agencies.

Additional requirements include geo-fencing to prevent signal spillover into neighbouring countries and full data routing through Indian gateways. The government has also mandated at least 20% indigenisation of ground infrastructure within five years of commercial launch to boost domestic manufacturing and reduce reliance on foreign technology.