Overview
- DoT has privately directed smartphone manufacturers to preload the Sanchar Saathi cyber‑safety app on all new devices, make it non‑removable, and deliver it to in‑market phones via software updates.
- Companies have about three months to implement the preinstall order, with reports describing a 90‑day compliance window and a requirement covering upcoming device shipments.
- Under separate Nov. 28 directions, messaging platforms must enforce continuous SIM binding within 90 days and auto‑log out web or desktop sessions at least every six hours, with compliance reports due in 120 days under the Telecommunication Cybersecurity Amendment Rules, 2025.
- The government says the measures aim to curb cross‑border scams and IMEI spoofing, pointing to Sanchar Saathi’s use in blocking large numbers of fraudulent connections and aiding recoveries of stolen phones.
- Industry pushback is expected, with IAMAI having opposed the TIUE framework, Apple reported as likely to resist mandatory preinstalls, and experts warning of privacy, practicality, and multi‑device or eSIM complications.