Global smartphone makers like Apple, Xiaomi and others are still evaluating the directive and are expected to push back over feasibility and implementation challenges, arguing that the Department of Telecommunications issued the order without prior consultation. This comes even as homegrown player Lava International has agreed to fully comply with the DoT’s mandate to preinstall the Sanchar Saathi cybersecurity app on all new smartphones sold in India.
The DoT’s mandate is poised to trigger a fresh showdown with Apple, which has historically resisted such directives.
Apple — along with Samsung, Vivo, Oppo and Xiaomi — is covered under the new order, but the company’s internal policies bar the preinstallation of any government or third-party app on iPhones before sale, a source with direct knowledge said.
The tech giant has previously clashed with India’s telecom regulator over a government-developed anti-spam app, making another confrontation likely.
The app, which lets users flag scam calls, report fraudulent messages, and track or block stolen devices, must also be pushed to existing phones through a compulsory software update. Importantly, users will not be allowed to uninstall it.
According to sources, all major handset makers — including Apple, Samsung, Xiaomi, Oppo and Vivo — have received the DoT directive, and the industry is now preparing to formally push back, citing feasibility and implementation challenges.
“App availability should be through the app store, and then it’s the customer’s choice. Why mandate it? The DoT did not consult the industry or any handset maker before issuing this order. It sets the wrong precedent — tomorrow, other departments could issue similar directives that may simply not be feasible,” a senior industry executive told Moneycontrol on condition of anonymity.
Smartphone brands have been given three months to integrate Sanchar Saathi into all new units and ensure the app is visible during device setup. Companies must also roll it out via software updates to devices already manufactured and currently in the sales pipeline.
“Data security and consumer privacy are extremely important to us. We welcome the government’s initiative to mandate certified cybersecurity apps, which reflects our shared commitment to protecting users in today’s digital world. Lava fully supports and will comply with the directive,” said Sumit Singh, Product Head, Lava International Ltd, in a statement to Moneycontrol.
Singh added that the company remains committed to its no-bloatware policy across price segments. “We shall continue to implement robust measures to safeguard user privacy and deliver a clean, secure and seamless experience,” he said.
Queries sent to Apple, Samsung, Vivo, Oppo, Realme, and Nothing didn't elicit any response.
The mandate flows from the Telecom Cyber Security (TCS) Rules, which empower the government to issue instructions to makers of IMEI-bearing devices, particularly in cases involving tampered or spoofed identifiers. Duplicate or spoofed IMEI numbers, the government warned, pose a major threat by allowing the same identifier to appear on multiple devices simultaneously, complicating enforcement.
India’s large second-hand smartphone market has also faced rising fraud involving stolen or blacklisted phones being resold, often leaving unsuspecting buyers exposed to losses or inadvertently linked to criminal activity. Sanchar Saathi lets users verify whether a device’s IMEI is blocked before purchase.
Discover the latest Business News, Sensex, and Nifty updates. Obtain Personal Finance insights, tax queries, and expert opinions on Moneycontrol or download the Moneycontrol App to stay updated!
