Telegram announces major changes to data-sharing policies after CEO’s arrest
A keyboard is placed in front of a displayed Telegram logo in this illustration taken February 21, 2023. (Reuters Photos)
Telegram, the encrypted messaging platform known for its strong privacy protections, announced a major shift in its privacy policy on Monday, now allowing the app to share users’ IP addresses and phone numbers with judicial authorities in criminal investigations. The changes come after Telegram’s CEO, Pavel Durov, was arrested in France last month over allegations that the platform facilitated illegal activities, including drug trafficking and the distribution of child sexual abuse material (CSAM).
Durov, who posted the news of the policy update on Telegram, said the move was necessary to find the right balance between privacy and security. “Establishing the right balance between privacy and security is not easy,” Durov said. Previously, Telegram had only agreed to share user data in cases of suspected terrorism. The new terms expand this to cover any criminal investigation.
The platform’s changes follow pressure from French authorities, who detained Durov in August, accusing his company of failing to prevent the misuse of Telegram by criminals. Telegram has long been the target of criticism for being a haven for illegal activities due to its end-to-end encryption and minimal data collection policies.
In his post, Durov defended the company’s stance on privacy, while acknowledging that surging numbers of users had made it easier for bad actors to exploit the platform. “We’ve already started that process internally,” Durov said, promising further updates soon.
Durov, a billionaire Russian-born entrepreneur who holds French citizenship, was released on €5M bail but is required to remain in France while the investigation continues. The CEO has denied the charges, describing the French legal actions as a misapplication of outdated laws. “Using laws from the pre-smartphone era to charge a CEO with crimes committed by third parties on the platform he manages is a misguided approach,” Durov argued in a September 5 post.
Shift from anonymity to compliance
Telegram, based in the United Arab Emirates where Durov also holds citizenship, has long prided itself on its strong privacy policies, which have attracted hundreds of millions of users globally. The app offers end-to-end encryption, allowing only the sender and recipient to access messages.
However, critics argue that Telegram has become a favored platform for criminal organizations engaging in illegal activities such as money laundering and sex trafficking. The app’s previous stance on government data requests was firm, only cooperating when court orders were legally binding within the relevant jurisdiction.
The recent privacy update marks a significant shift. Telegram has quietly removed language from its frequently asked questions (FAQ) page, which previously stated that the company would not process certain government data requests.
Telegram’s legal battle and broader implications
The French investigation into Telegram could set a precedent for how governments handle tech platforms that provide encrypted messaging. While Durov maintains that Telegram is not an “anarchic paradise,” he has pledged to enhance the platform’s defenses against criminal abuse.
The case has revived a long-standing debate about tech companies’ responsibilities in policing illegal activity on their platforms versus protecting user privacy. As Telegram navigates this controversy, its recent changes may signal a broader trend toward compliance with law enforcement, even for platforms built on promises of privacy.
