Sanchar Saathi FAQs: Worried about privacy and permissions? Govt clarifies

The government, amid the growing debate on the recent directive regarding the Sanchar Saathi app and the obligatory pre-installation for cell phone makers, has provided comprehensive explanations to dispel the doubts on matters of privacy, legality, permissions, and consumer choice.

Below is a comprehensive Q&A summarising the official responses:

1) The order reportedly instructs smartphone manufacturers to pre-install Sanchar Saathi on all new handsets in 7b, how does this reconcile with the statement of the minister that “the app is optional and can be deleted”?

Response:

i. 7 (b) of the said directive dated 28.11.25 intent is to ensure that the pre-installed Sanchar Saathi application by the manufacturer is readily visible and accessible to the end users at the time of first use or device setup, and that its functionalities are not disabled or restricted by the manufacturer.

ii. The phrase “ensure that the pre-installed Sanchar Saathi application is readily visible and accessible … and that its functionalities are not disabled or restricted” is a direction to manufacturers, not a restriction on users.

iii. It simply means manufacturers must not hide, cripple or pre‑install a non-functional version of the app and later claim compliance. Nowhere has it been mentioned in the above clause that the Sanchar Saathi App cannot be deleted by the end user. It is up to the citizen whether they want to enable and register the Sanchar Saathi Mobile App or want to delete it.

iv. Users remain free to uninstall or delete the Sanchar Saathi if they do not wish to use it, as clearly clarified by the government and the Hon’ble Communications Minister.

The Sanchar Saathi app has limited access to phone data, and that too only to the extent the citizen permits it in each “interaction of reporting fraud” through the permissions granted as below:

i. Basic permissions for registration of app:

– Make & manage phone calls: App uses this to check the active SIM in the phone before starting the registration process, as given below through SMS. The app does not use this for anything else that may be enabled by this permission.

– Send SMS: App uses this to complete user registration. This is a one-time SMS, similar to OTP verification processes used by banking apps, UPI applications, and communication platforms. The app does not use this for anything else that may be enabled by this permission.

These permissions enable the following functionalities of the app:

– Know how many mobile connections are in your name

– Report spoofed international calls which show up as +91xxxx but originate from abroad

ii. Advanced permissions for other features of the app:

The following permissions (only when granted by the user) will allow the user, through the app, to have access to

– Camera to take a picture and upload (such as IMEI number printed on the box) as chosen by the user (for checking the genuineness of the handset).

– Send a captured screenshot of the fraud call or SMS (as chosen by the user as evidence of receiving the fraud call/SMS).

These permissions enable the following functionalities of the app:

– Check the genuineness of the mobile handset

– Block your stolen handset (from another phone/portal)

– Report fraud from “specific received phone call number” as chosen by the user

– Report fraud through “specific SMS” as chosen by the user

The app is designed not to have any access to contacts, other apps, location, microphone, or Bluetooth. The app also does not have access to any other private functionalities/data of the user that is specifically not permitted by the user in “every interaction of reporting fraud” of the user with the App.

The app does not harvest any other data on its own based on permissions granted. Further, citizens have the choice to remove any permission at any time or deregister any mobile number registered on the App and also to uninstall the App.

The app is checked by both Android and iOS for any security vulnerabilities before it is allowed on their platforms. Based on security checks, both have already allowed the App on their platforms. The app is published on these platforms and downloaded by 1.4 crore Citizens, and reports around 2000 fraud calls and SMS per day. Over 6 lakh citizens registered for this app today (till 6 pm) and reposed faith in this initiative.

No. Sanchar Saathi App never takes access to the microphone, location, Bluetooth, or operating system-level access. The Sanchar Saathi app has limited access to phone data, and that too only to the extent the citizen permits it in each “interaction of reporting fraud” through the permissions granted.

i. Basic permissions for registration of the app:

-Make & manage phone calls: App uses this to check the active SIM in the phone before starting the registration process, as given below through SMS. The app does not use this for anything else that may be enabled by this permission.

-Send SMS: App uses this to complete user registration. This is a one-time SMS, similar to OTP verification processes used by banking apps, UPI applications, and communication platforms. The app does not use this for anything else that may be enabled by this permission. The following permissions (only when granted by the user) will allow the user, through the app, to have access to

• Camera to take a picture and upload (such as IMEI number printed on the box) as chosen by the user (for checking the genuineness of the handset).

• Send a captured screenshot of the fraud call or SMS (as chosen by the user as evidence of receiving the fraud call/SMS).

The app is designed not to have any access to contacts, other apps, location, Bluetooth, microphone or any other private data of the user that is specifically not permitted by the user in “every interaction of reporting fraud” of the user with the App. The app does not harvest any other data on its own based on permissions granted. Further, citizens have the choice to remove any permission at any time or deregister any mobile number registered on the App and also to uninstall the App

Yes, this is legally and constitutionally sound. The directions have been issued under the Telecom Cybersecurity Rules 2024 (as amended) framed under the Telecommunications Act 2023.

There are no privacy or surveillance risks associated with Sanchar Saathi. There are only benefits from this App. Sanchar Saathi provides citizen-centric services, including suspected fraud reporting, blocking your lost/ stolen mobile handset, checking mobile connections in your name and reporting unauthorised ones, checking the genuineness of your mobile handset and trusted contact details.

Sanchar Saathi has delivered measurable results as under:

i. More than 1.43 crores mobile connections disconnected, chosen as ‘not my number’ by citizens.

ii. 26 lakh lost/stolen handsets traced and 7.23 lakh recovered.

iii. Based on 6.48 lakh inputs of citizens, 40.96 lakh mobile connections were disconnected. 6.2 lakh fraud-linked IMEIs blocked

iv. Rs 475 crore in financial losses were prevented through the Financial Fraud Risk Indicator (FRI) based on the reporting of citizens. FRI is generated through the various parameters. One important parameter is citizens’ reporting on Sanchar Saathi about suspected fraud.

Most aware users already recognise many fraud calls and simply ignore or cut them, which protects them but does nothing to stop the same fraudster from targeting less-informed citizens.

By making it easy to report such suspected fraud communications in a few taps from the call log, Sanchar Saathi allows those who understand the risk to actively protect those who do not, enabling authorities and telecom operators to identify patterns, block offending numbers, disable fake connections and deter repeat offenders.