Telegram Changes Privacy Policy, Agrees to Share User Data for Criminal Investigations

Introduction

In a significant shift in its privacy policy, the messaging platform Telegram has announced that it will start sharing user data with authorities to aid in criminal investigations. Known for its strict stance on user privacy, this policy reversal marks a notable departure from the company's past operations. The platform, once regarded as a haven for privacy-conscious users, is now responding to increasing concerns over the use of Telegram by cybercriminals and other bad actors.

Telegram's New Privacy Policy:

Telegram's new stance means that the messaging platform will now comply with valid legal requests to disclose user data. Under the revised policy, Telegram will provide users' IP addresses and phone numbers to authorities in cases of criminal investigations. This includes activities like cybercrime, drug trafficking, and even more severe offenses such as child exploitation.

Telegram's CEO, Pavel Durov, confirmed the change in a statement, emphasizing the platform's commitment to fighting illegal activities. "We've made it clear that IP addresses and phone numbers of those who violate our rules can be disclosed to relevant authorities in response to valid legal requests," said Durov.

This move aligns with efforts to tackle illegal activity on the platform, which has been criticized for facilitating anonymity and shielding bad actors. Previously, data sharing was limited to cases involving terror suspects, but the scope has now expanded.

Implications for User Privacy:

The update to Telegram’s Terms of Service and Privacy Policy highlights the fine balance between protecting user privacy and combating criminal misuse of the platform. Telegram has always been regarded as a privacy-focused platform, offering features such as end-to-end encryption and the ability to create anonymous accounts. However, its perceived lack of regulation has also made it an attractive tool for criminal networks.

With this change, Telegram has committed to increasing transparency and reporting. The company said it will include any data disclosures in periodic transparency reports, giving users a clearer view of when and why their data might be shared. The platform will also continue to collect metadata such as IP addresses and device information to address misuse.

Combating Cybercrime and Abuse:

Telegram has taken additional steps to curb illegal activity by improving its search features and developing a bot to report illegal content. Users can now flag problematic content through the new @SearchReport bot, which ensures human review and the removal of illicit material.

This comes as part of broader efforts to remove illegal and harmful content from search results. The company is attempting to rein in rampant cybercrime on the platform, which includes activities like money laundering and the spread of illegal goods.

Why the Change?

Telegram's decision to reverse its privacy policy is partly driven by legal pressures. Recently, CEO Pavel Durov faced arrest in France over allegations that the platform enabled illegal activities by turning a blind eye to cybercrime. While Durov has since been released on bail, this legal case has prompted the platform to rethink its privacy stance.

Moreover, governments worldwide, including Ukraine, have raised concerns about the use of Telegram in facilitating criminal activities, including those that threaten national security. Ukraine recently banned Telegram use among government officials and critical infrastructure workers, citing security risks posed by the app's anonymity.

Conclusion:

Telegram’s decision to share user data with authorities represents a fundamental shift for the platform. While the company remains committed to privacy, this change reflects the need for stricter regulation in light of growing cybercrime concerns. For users, the move underscores the importance of understanding their digital footprint and taking steps to protect their data. As platforms face pressure to balance privacy with security, online risk evaluation, dark web surveillance, and brand protection have never been more critical.

About Foresiet!

Foresiet is the pioneering force in digital security solutions, offering the first integrated Digital Risk Protection SaaS platform. With 24x7x365 dark web monitoring and proactive threat intelligence, Foresiet safeguards against data breaches and intellectual property theft. Our robust suite includes brand protection, takedown services, and supply chain assessment, enhancing your organization's defense mechanisms. Attack surface management is a key component of our approach, ensuring comprehensive protection across all vulnerable points. Compliance is assured through adherence to ISO27001, NIST, GDPR, PCI, SOX, HIPAA, SAMA, CITC, and Third Party regulations. Additionally, our advanced antiphishing shield provides unparalleled protection against malicious emails. Trust Foresiet to empower your organization to navigate the digital landscape securely and confidently.