Overview
- DoT directed on November 28 that apps such as WhatsApp, Telegram, Signal, Snapchat and others must function only when the KYC-linked SIM used at registration is active in the device, with web sessions auto-logging out every six hours.
- Platforms have 90 days to implement the controls and 120 days to report compliance, with QR code re-login required for web and desktop sessions.
- COAI and major telecom operators welcomed the mandate, saying tighter linkage between user, number and device could help reduce spam, fraud and cross-border scams.
- Broadband India Forum urged a pause and formal consultations, arguing the directive exceeds the Telecom Act’s remit over OTT services and risks disrupting legitimate use cases.
- Technical specialists told MediaNama that iOS and Android restrict access to SIM identifiers, making true SIM binding unworkable without OS-level support and pointing to operator-led options such as GSMA Mobile Connect.