Lorenzo H. Gomez’s Post

The Telecom Regulatory Authority of India (TRAI) on 23-Feb-2024 has advised the #governmentofindia (GOI) to make caller identification (caller ID) a mandatory feature across all domestic cell phone networks Airtel, Vodafone, Reliance Jio etc. This is a welcome step by #TRAI. Viewing the Calling Name Representation (CNAP) of the person calling allows the call receiver to identify the caller and decide whether or not to pick the phone call. This feature will bring an end to the menace of spam and scam calls in India. Commonly used apps such as Truecaller, help identify the unknown person calling. But the problem without the CNAP feature is that such apps viz. Truecaller use crowd-sourced data applications, which are not always reliable. In India’s #DPDPAct2023 (yet to be made effective) the protection of privacy of a person is paramount, and the term #personaldata defined as "any data about an individual who is identifiable by or in relation to such data" will include all personal identification information such as name, address, phone numbers, Aadhaar, PAN card, Passport, etc. The Telcos would be flouting the #DPDPAct if they share any person’s phone numbers to a third party without taking prior #consent. Given that the rules of DPDP Act are yet to be notified, the procedure for seeking such consent is unclear but a recommended procedure should cover (1) describe nature and purpose of collecting data, (2) manner of exercising the rights of cell phone subscriber and (3) process of filing complaints with the (proposed) #DataProtectionBoardofIndia (DPBI). Internationally too, “personal data” includes telephone number, credit card number, bank account number, customer’s national identity number, address etc. which is generally included under the term “any information” as per #EU’s #GeneralDataProtectionRegulation (GDPR). In 2023, Indian Telcos had objected to implementation of CNAP citing (i) consent mechanism will be cumbersome and (ii) other technical issues such as increase in call set-up time and impact of latency, non-compatibility of handsets etc. But TRAI has not accepted these arguments on account of large number of victims of phishing, scams, spams etc. in India.

Airtel Hits Back: Denies Data Breach Allegations, Calls Accusations a Desperate Attempt to Tarnish Reputation Jammu: 05July- The alleged data breach includes 375 million customer details updated until June 2024, which Airtel India strongly denied. Airtel India has strongly denied claims of a data breach, which alleged that the data of 375 million Airtel India users was put up for sale on the dark web. According to Dark Web Informer on X (formerly Twitter), an unauthentic data hacker named xenZen is allegedly selling data belonging to Airtel India customers. Alleged Data Breach The alleged data breach includes 375 million customer details updated until June 2024. The breach, claimed to have occurred in June 2024, includes data fields such as mobile number, name, date of birth, father's name, local address, permanent address, alternate number, email ID, gender, nationality, connection type, SIM activation date, Aadhaar, photo ID proof details, and address proof details. This data, belonging to Airtel India customers, is being sold for USD 50,000 in XMR. Dark Web Informer posted screenshots from a community called BreachForums, where an account has posted about the sale of the latest Airtel India customer database. Incidentally, the seller also claimed to be behind the recent Indian Ministry of External Affairs data leak. Airtel India's Response There has been report alleging that Airtel customer data has been compromised. This is nothing short of a desperate attempt to tarnish Airtel’s reputation by vested interests. We have done a thorough investigation and can confirm that there has been no breach whatsoever from Airtel systems

Navigating the Spam Quagmire: Telecom Regulatory Authority of India(TRAI)'s Struggle Against Unwanted Communications In our interconnected world, #unsolicitedcommunications have become a pervasive concern. Despite the Telecom Regulatory Authority of India(TRAI) earnest efforts, the tide of #spam and #scams remains unchecked. TRAI's strategies, such as Distributed Ledger Technology (#dlt ) for tracking, #ai for pattern recognition, and the 'Do Not Disturb' (#dnd ) app, have yet to deliver the anticipated impact. The DLT system, designed to authenticate commercial communications, faces implementation challenges, with #telemarketer finding ways around it. The DND app, while a step in the right direction, hasn't seen widespread adoption, limiting its effectiveness. Moreover, the cunning adaptation of spammers, who continuously evolve their methods, outpaces regulatory measures. This ongoing battle highlights a significant gap between policy and practice. It underscores the need for a more dynamic approach that can adapt to the ever-changing landscape of #digitalcommunications . Collaboration with tech innovators, stringent enforcement, and public awareness campaigns are critical to bolster TRAI's arsenal against this digital menace. As stakeholders in this digital ecosystem, it's imperative we support TRAI's initiatives while advocating for robust, adaptive solutions that can finally bring an end to the spam scourge. #businessmessaging #a2psms #ucc #cpaas #cloudcommunications

Pushing data to the edges is necessary, users should have total ownership and control of their data. The next successful ventures will be the ones who understand that building networks of users is the new oil, not owning their data. It sounds counter intuitive in a Web2.0 mindset, but you can build valuable services even if you don’t own your users data. This is what blockchains provide, in particular those focused on data protection like Midnight.

Proofs instead of data. In the verifiable data economy PII will not be stored in the clear. Here's why this matters: likely the failure of a telecom operator to secure the insane amount of personal data collected over time, now some 815M Indian citizens have no recourse and the entirety of their personal data is exposed. #verifiablecredentials #verifiableidentity #verifiabledataeconomy

With services and products being readily available at our fingertips, it is evident that consumers seek convenience today. However, with a growing reliance on digital services and consistent headlines on data breaches, Indian consumers are concerned about their data security too. Read more at: https://go.f5.net/yeuaj7

🌐 **Why is Sending ILDO SMS to India More Expensive?** The common question about the cost disparity between Domestic and ILDO SMS. Regulatory bodies worldwide are focused on combating spam, fraud, and protecting consumer interests, which complicates the SMS landscape. In India, international SMS can cost 35-40 times more than domestic SMS. Telco operators classify messages based on their origin, transit, and termination within India, impacting pricing. This classification often leads to higher costs for businesses operating globally. Telcos invest heavily in infrastructure and fraud prevention, which justifies their pricing strategies. However, customers serving Indian end consumers are questioning these additional costs. As OTT apps enter the fray, the debate continues to evolve, potentially reshaping the SMS pricing landscape. Stay tuned as we navigate these complexities and strive to deliver cost-effective communication solutions. #CustomerEngagement #SMSMarketing #DigitalTransformation #Exotel

Navigating digital transformation and innovation in IT/ITES sector: Anup Purohit, CIO, Wipro - DATAQUEST: Navigating digital transformation and innovation in IT/ITES sector: Anup Purohit, CIO, Wipro  DATAQUEST #CyberSecurity #InfoSec #SecurityInsights

Airtel experienced one of the worst data breach in 2018 Some employees illegally accessed customer banking details like accounts and Aadhaar. Apollo Pharmacy felt the heat as well. A third-party company handling orders for them accidentally made the medical records of millions public. Even Facebook wasn’t spared. A firm got user data shared on Facebook and misused it for political advertising without user consent during elections. Our private lives were almost public until August 9th, 2023. The DPDP Bill made sure there was an end to it. How? By setting up some serious obligations on these data controllers. - They must have additional security safeguards and accountability for all data-related actions - They must conduct regular audits, DPO, and DPIAs. - Make sure there are no cross-border data transfers. Exceptions are applicable on certain conditions If they fail to do so, they are staring at fines. How much? Up to 250 crore if anyone is careless with our private information. This shows the serious intent to secure citizen privacy while using modern services. I believe- with this added security, people can now enjoy online facilities with comfort. And with tight security, progress will supercharge even better.