ABSTRACT
The Telecommunications Act, 2023, marks a pivotal overhaul of India’s regulatory framework governing digital communication. Touted as a progressive step toward enhancing national security and simplifying licensing regimes, the Act has also reignited debates around privacy, surveillance, and freedom of expression. This paper explores the tension between state security imperatives and constitutionally guaranteed civil liberties within the framework of the new legislation. It examines key provisions granting the government broad powers of interception, content blocking, and licensing control, and analyzes whether existing safeguards are adequate to prevent abuse. By comparing India’s approach with international legal standards in democracies like the United States and the United Kingdom, the research highlights both the Act’s merits and its potential threats to democratic freedoms. The paper concludes by proposing structural reforms and judicial safeguards to ensure that the pursuit of national security does not come at the cost of fundamental rights.
KEYWORDS
Telecommunications Act 2023 , Right to Privacy , Freedom of Expression , National Security ,Surveillance and Regulatory Framework
INTRODUCTION
The enactment of the Telecommunications Act, 2023, represents one of the most ambitious legal transformations of India’s digital and communication infrastructure in recent decades. Repealing colonial-era statutes such as the Indian Telegraph Act, 1885, and the Indian Wireless Telegraphy Act, 1933, the new law aims to consolidate and modernize the regulatory regime in light of rapidly evolving technologies and national security concerns. However, as with any statute that expands state powers, the Act raises urgent questions about its implications on the constitutional rights to privacy and freedom of speech.
The tension between national security and civil liberties is not new in Indian jurisprudence. Landmark judgments such as K.S. Puttaswamy v. Union of India (2017) have underscored the centrality of privacy as a fundamental right, and courts have repeatedly emphasized the need for proportionality, legality, and procedural safeguards. Against this backdrop, the Telecommunications Act, 2023, grants the executive sweeping powers to intercept communications, block content, and regulate service providers, often on vague grounds such as “public safety” or “national security.” Such provisions must be carefully scrutinized, particularly when India lacks a standalone data protection law and comprehensive oversight mechanisms.
This research critically analyzes the balance struck by the Telecommunications Act, 2023, between state imperatives and constitutional protections. It aims to dissect the legal framework, assess its alignment with international norms, and explore whether the safeguards embedded within are adequate to prevent abuse. Given India’s growing digital footprint and its commitment to being a data-driven economy, how the law is implemented will have far-reaching consequences—not only for individual rights but also for democratic discourse and economic innovation.
The paper proceeds in six parts. It begins by outlining the key provisions of the Act. It then examines how the law intersects with the right to privacy and freedom of expression. A comparative analysis with the legal frameworks in the U.S. and U.K. provides global context. The latter sections critique ambiguities within the Act and propose concrete reforms to reconcile the state’s security needs with constitutional guarantees.
RESEARCH METHODOLOGY
This research employs a doctrinal (legal) research methodology, primarily relying on qualitative analysis of statutes, judicial decisions, secondary literature, and policy documents. The focus is on interpreting and critically evaluating the Telecommunications Act, 2023, particularly in the context of its implications on national security, privacy rights, and freedom of expression.
REVIEW OF LITERATURE
The Telecommunications Act, 2023, is designed to replace archaic legislation and bring coherence to India’s fragmented regulatory framework in light of technological convergence and digital transformation. While its stated objectives include ensuring accessible, secure, and reliable telecommunication services, several provisions directly engage with issues of state power, surveillance, and civil liberties.
One of the most consequential features of the Act is the expanded power of interception and surveillance under Section 20. It authorizes the Central or State Government to intercept, detain, or disclose any message or class of messages in the interest of national security, public order, or prevention of incitement to offenses. Although interception powers existed earlier under the Telegraph Act, 1885, the new Act reasserts them without introducing any substantive improvement in transparency or independent oversight.
The Act also empowers the government under Section 21 to block, suspend, or prohibit transmission or reception of messages or telecommunications, particularly during emergencies or situations posing a threat to national interest. These clauses are notably broad and vague, often referring to undefined terms like “public safety” or “friendly relations with foreign states,” raising concerns about potential overreach.
Moreover, Section 3 of the Act establishes a licensing regime for all entities providing telecommunication services, including Over-The-Top (OTT) platforms, which were previously unregulated in this regard. Although this move is presented as an effort to ensure uniformity and legal certainty, critics argue that bringing OTT communication apps under licensing opens the door for stricter state control and surveillance over internet-based communications.
Section 24 and Section 25 introduce data retention and access provisions, mandating telecommunication service providers to store user data and provide it to the government upon request. While such provisions are justified as necessary for national security and criminal investigations, they raise serious privacy concerns, particularly in the absence of a robust personal data protection framework.
Another critical area is the emergency powers granted under Section 19, which allow the government to assume control over telecommunication services during a public emergency or in the interest of public safety. While such measures may be justifiable during crises, the Act lacks clear guidelines or temporal limits for their use, potentially enabling prolonged or disproportionate use of such powers.
On paper, the Act includes generic references to the necessity of acting “in accordance with law” and “subject to safeguards,” but these are not sufficiently detailed or institutionalized. There is no mandatory judicial or parliamentary oversight mechanism specified in the Act, and citizens are left with limited recourse in the event of misuse.
In sum, the Act consolidates sweeping executive powers without corresponding checks and balances. While national security and modernization are valid objectives, the statutory framework as it stands invites scrutiny for its opacity, lack of accountability, and insufficient procedural safeguards to protect civil liberties.
Subjecting these services to the same licensing obligations as traditional telecom operators could compel them to alter encryption protocols or share user metadata—effectively weakening end-to-end privacy.
This concern is not hypothetical. In 2021, WhatsApp challenged the IT Rules, 2021 in the Delhi High Court, arguing that the traceability requirement violated users’ right to privacy by breaking encryption. The new Telecommunications Act does not directly impose traceability but, by requiring licenses for OTTs, potentially enables similar demands in the future through executive rulemaking.
Furthermore, such regulation without adequate legal clarity may force platforms to self-censor or exit the market, stifling innovation and digital expression. The net result is a chilling effect where speech is curbed not through direct bans but via regulatory burdens and the threat of criminal liability.
Balancing the Tension: The Missing Oversight
A significant shortfall in the Act is the lack of institutional safeguards. There is no dedicated oversight body, no parliamentary scrutiny mechanism, and no requirement for judicial sanction before invasive powers are exercised. This is inconsistent with the principles laid out by the Supreme Court in Puttaswamy, where the need for “meaningful oversight” was reiterated to prevent arbitrariness.
Even in cases where oversight exists on paper—such as review committees for interception orders under Rule 419A of the Indian Telegraph Rules—it is dominated by the executive. Independent and judicial oversight is critical not only to prevent misuse but to ensure public confidence in the system.
IV. Comparative Analysis with Other Democracies
Examining the Telecommunications Act, 2023, in light of similar legislation from other democratic jurisdictions offers valuable insights into how nations balance national security with individual freedoms. This section draws comparisons with the United States and the United Kingdom—two democracies that have long grappled with similar tensions.
United States: FISA, the Patriot Act, and the Fourth Amendment
In the U.S., the primary legal framework governing surveillance is the Foreign Intelligence Surveillance Act (FISA), supplemented post-9/11 by the USA PATRIOT Act. These laws give intelligence agencies expansive powers to surveil communications, especially involving foreign nationals. However, such powers are not without constraints.
FISA established a secret court—the Foreign Intelligence Surveillance Court (FISC)—which reviews and approves surveillance requests. While criticized for its opacity, FISC provides a judicial check that India’s regime lacks. Moreover, the Fourth Amendment to the U.S. Constitution requires that surveillance and data seizure be “reasonable” and based on probable cause—a legal standard that reinforces individual privacy.
Importantly, following Edward Snowden’s 2013 disclosures about mass surveillance, civil society and judicial pushback led to legislative reform. The USA FREEDOM Act of 2015 curtailed the bulk collection of phone records and introduced greater transparency in FISC decisions. These changes underscore how institutional oversight and public accountability are integral to preserving rights even in a high-security context.
By contrast, India’s Telecommunications Act lacks judicial sanction, transparency requirements, and legislative review, placing vast unchecked power in the hands of the executive.
United Kingdom: The Investigatory Powers Act, 2016
The U.K.’s Investigatory Powers Act, often dubbed the “Snooper’s Charter,” authorizes a wide range of surveillance tactics, including interception, bulk data collection, and equipment interference. However, it embeds a crucial “double lock” mechanism: any warrant for surveillance must be approved by both the Secretary of State and an independent Judicial Commissioner.
Further, the Investigatory Powers Commissioner’s Office (IPCO) conducts audits, handles complaints, and publishes annual reports detailing how surveillance powers are used. This structure provides robust checks against abuse, maintaining a careful equilibrium between national security and privacy.
The U.K. law also includes the Privacy Consideration Principle, which mandates that any surveillance must give due regard to the potential intrusion into privacy and must be proportionate to the threat. Notably, bulk powers can only be used for serious crimes or threats to national security—clear, narrowly defined terms that contrast with India’s vague and expansive language like “public interest.”
The Indian framework neither incorporates such dual authorisation nor mandates post-facto reporting or public accountability, leaving citizens with minimal recourse against misuse.
Comparative Takeaways and Global Norms
India’s approach, as per the 2023 Act, is more opaque and executive-centric compared to the legal safeguards present in the U.S. and U.K. systems. The absence of an independent regulatory body, judicial review, and statutory limits on data retention are areas where the Indian model diverges from global best practices.
These comparisons suggest that India’s Telecommunications Act could benefit significantly from structural reform. By incorporating judicial scrutiny, clear definitions, independent oversight, and public transparency, the Act could better harmonize national security with the rule of law.
V. Legal and Ethical Concerns: Democratic Participation, Chilling Effect, and Ambiguities
The Telecommunications Act, 2023, raises significant legal and ethical questions related to the impact on democratic engagement, civil liberties, and the foundational principles of due process and constitutional morality. This section delves into these concerns under three key themes: democratic participation, chilling effect on freedom of expression, and legal ambiguities.
1. Democratic Participation and Online Discourse
In a digital democracy, the right to communicate freely, access information, and participate in public discourse is foundational. The Act’s provisions—such as content blocking, interception without judicial review, and vague emergency powers—can significantly curb this space.
Mass interception may deter journalists, activists, and whistleblowers from expressing critical views.
Platform liability for unlawful content without clear thresholds can result in over-censorship by intermediaries, further narrowing the range of public discussion.
2. Chilling Effect and the Right to Freedom of Expression
A major concern raised by legal scholars and digital rights activists is the potential chilling effect—where citizens, fearing surveillance or reprisals, refrain from lawful speech and association. The Supreme Court in K.S. Puttaswamy v. Union of India (2017) emphasized that the right to privacy is not merely about secrecy but also autonomy and the right to dissent.
The Act’s vague terms like “public safety” and “emergency” allow the state to block or intercept content with wide discretion. This creates a situation where:
Citizens may fear that any communication could be intercepted.
Platforms might over-comply with takedown requests to avoid legal liability.
This undermines the essence of Article 19(1)(a) of the Indian Constitution.
3. Legal Ambiguities and Risk of Arbitrary Action
Ambiguities within the Act increase the risk of arbitrary, inconsistent, or even politically motivated enforcement. These include:
Undefined Terms: “Public emergency,” “integrity of India,” and “national interest” are not clearly delineated.
Unspecified Oversight: No clear mention of independent review boards or mechanisms to check the proportionality or necessity of surveillance orders.
Parallel Regulations: Potential overlaps and conflicts with other laws such as the IT Act, 2000, and the Digital Personal Data Protection Act, 2023, create confusion for both telecom providers and citizens.
Judicial Perspective and Constitutional Concerns
While the Act has not yet been challenged before the courts, several of its provisions may violate Article 14 (equality before law), Article 19 (freedom of speech), and Article 21 (right to privacy). Past judgments like PUCL v. Union of India (1997) laid down procedural safeguards for wiretapping, which the current Act does not explicitly honor.
Moreover, absence of a data protection impact assessment or requirement for public consultation before making key regulatory decisions undermines the spirit of participatory legislation.
Encourage civil society and academic participation in digital policy-making.
This aligns with the constitutional ideal of participatory democracy and avoids top-down authoritarian tendencies.
VI. SUGGESTIONS AND CONCLUSION
The Telecommunications Act, 2023, marks a significant shift in India’s regulatory approach toward digital communication, yet its national security-centric framework demands robust reforms to preserve constitutional values. A forward-looking, rights-respecting model must be built on transparency, accountability, and technological neutrality. This section outlines practical reforms and legal safeguards to recalibrate the balance between national security and fundamental rights.
1. Introduce Judicial and Parliamentary Oversight Mechanisms
The most urgent reform is to introduce independent oversight, particularly for surveillance, interception, and content takedown orders.
Recommendations:
Judicial Authorization: All interception or blocking orders must receive prior approval from a retired High Court judge or a judicial body.
Parliamentary Committees: A bipartisan parliamentary standing committee on digital rights and national security should review the exercise of emergency powers.
This would ensure checks and balances, similar to the UK’s Investigatory Powers Tribunal or the US FISA Court.
2. Narrow and Clearly Define Key Terms
Vague and discretionary terms in the Act must be amended to provide precision and limit overreach.
Suggestions:
Replace “public safety” with “specific, imminent threat to national security,” and define it narrowly.
Define “emergency” with examples and thresholds to avoid executive overuse.
Clarify “national interest” and ensure it includes proportionality tests.
Such amendments would fulfill the doctrine of proportionality laid out in Modern Dental College v. State of M.P. (2016) and reinforce due process.
3. Independent Redress Mechanisms for Citizens
Citizens currently lack any direct remedy if their privacy or freedom of speech is violated under the Act.
Proposed Reforms:
Establish a Telecom Rights Ombudsman under the Department of Telecommunications to address user grievances.
Make interception and blocking orders subject to post-facto judicial review.
Notify affected individuals (where national security permits) of interception or content removal.
This aligns with global standards like the General Data Protection Regulation (GDPR) which mandates transparency and redress.
4. Ensure Data Protection and Privacy Safeguards
The Act must align with the Digital Personal Data Protection Act, 2023, ensuring that:
All user data collected by telecom operators is minimally stored, encrypted, and shared only under lawful orders.
End-to-end encryption is protected, and any decryption request must follow a legal, narrow, and time-bound protocol.
5. Protect OTTs and Promote Technological Neutrality
The Act’s extension to OTT platforms like WhatsApp, Zoom, and Signal raises concerns about innovation stifling and mass surveillance.
Way Forward:
Treat OTTs under a separate, light-touch framework to avoid over-regulation.
Avoid imposing traditional telecom-style licensing burdens that threaten platform viability and encryption standards.
Encourage self-regulation, backed by transparency audits and user consent mechanisms.
6. Encourage Comparative Legal Learning
India must learn from global models:
Adapting such models can bolster both national credibility and citizen trust.
7. Foster Public Engagement and Legislative Transparency
Finally, the legislative process itself needs reform:
All future digital laws should undergo pre-legislative consultation.
Draft rules under the Act should be published for public comments with adequate time for feedback.
REFERENCES
1) Books:
- Basu, D.D. (2022). Commentary on the Constitution of India. 9th ed. Gurgaon: LexisNexis.
- West, R. (2022). Freedom of Expression and National Security in Comparative Perspective. Oxford: Oxford University Press.
2) Research Articles:
- Malik, S. (2024). “Digital Surveillance and the Indian State”. Economic and Political Weekly, 59(3), pp. 12–16.
3) Case Laws:
- Justice K.S. Puttaswamy (Retd.) v. Union of India (2017) 10 SCC 1.
- Modern Dental College and Research Centre v. State of M.P. (2016) 7 SCC 353.
4) Statute/Constitution:
- The Telecommunications Act, 2023 (India).
- The Digital Personal Data Protection Act, 2023 (India).
- Indian Constitution, Articles 19 and 21.
- UK Investigatory Powers Act 2016.
- United States Foreign Intelligence Surveillance Act (FISA), 1978, 50 U.S.C. § 1801 et seq.
- Regulation (EU) 2016/679, General Data Protection Regulation, 2016 O.J. (L 119) 1.
5) Online Website/Blogs/PDF:
- Rajya Sabha Secretariat. (2023). Legislative Brief on The Telecommunications Bill, 2023. New Delhi: PRS Legislative Research.
- Internet Freedom Foundation. (2023). Analysis of the Telecommunications Act, 2023. [online] Available at: https://internetfreedom.in [Accessed 14 Apr. 2025].
- Dvara Research. (2023). Preliminary Comments on the Telecommunications Act, 2023. [online] Available at: https://dvara.com [Accessed 13 Apr. 2025].
- Privacy International. (2023). Surveillance Laws and Oversight: A Comparative Analysis. [online] Available at: https://privacyinternational.org [Accessed 14 Apr. 2025].
- Krishnan, K. (2023). “Why India’s New Telecom Act Could Be a Privacy Nightmare”. The Hindu, 21 Dec. [online] Available at: https://thehindu.com [Accessed 12 Apr. 2025].
- Ghosh, A. (2023). “OTT Platforms Under Scrutiny: Telecom Act’s Real Target?” Scroll.in, 22 Dec. [online] Available at: https://scroll.in [Accessed 14 Apr. 2025].
AUTHOR :
ANSH YASHASWI
SYMBIOSIS LAW SCHOOL , HYDERABAD