Mobile applications enhance the functionality of mobile handsets. They also allow the use of mobile phones for purposes much beyond the traditional ones. However, mobile applications have their own set of security and legal challenges. Mobile applications are also required to comply with laws of different jurisdictions. Mobile applications are also potential source of civil liberties violation in cyberspace as they frequently violate privacy rights in the information age.
Many mobile based application and software providers are exploring the areas like m-health, telemedicine, e-commerce, mobile payment, online payment, cyber security, cloud computing, online gaming including poker, online pharmacies, Bitcoins exchanges, etc. For instance, Apple is planning to launch mobile payment service through Touch ID. In order to ensure that Apple complies with laws of different jurisdictions, Apple has also removed the blockchain application from its store. Similarly, Twitter is also planning to use its platform to enter e-commerce market world over.
These ventures have made the websites and application developers liable under the laws of different jurisdictions simultaneously. The conflict of laws in cyberspace has also complicated the penal liability of these application providers in different jurisdictions. If the application developers are based in India and they wish to raise funds from foreign investors, these application providers must also take care of cyber law due diligence requirements (PDF) as prescribed by Indian laws. Besides, the foreign investors investing in Indian applications would also conduct their own cyber law due diligence to ensure that Indian applications are in compliance with Indian laws.
Presently India and foreign application developers are in direct violation of various Indian laws and corresponding regulations. These include cyber law due diligence, internet intermediary liabilities, encryption related violations, cloud related violations, data protection and privacy regulations (PDF), etc. Most of them are not even aware about the encryption laws of India that have to be complied with.
There are mobile applications that accesses and uses mobile phone owner’s data, information, SMS, contact details, phone books, etc without owner’s permission. Further, there are many application providers that store such information and data outside India on foreign servers. Many time these data and information includes private, sensitive and crucial information that are not authorised to be viewed and used by such application providers.
The cyber litigations against foreign websites and application providers would increase in India in the near future. It is in the long term interest of Indian and foreign application providers to ensure techno legal compliances so that they are not prosecuted in India.