The Telecom Regulatory Authority of India (TRAI), in collaboration with the Reserve Bank of India (RBI) and major banks, has launched a pilot project to digitize how companies collect and verify consumer consent. This move comes after a flood of complaints from people receiving spam calls and texts without giving clear permission.
Many companies claim they got customer consent through unclear or offline methods, but often this consent is not traceable or valid. As a result, people’s phone numbers are shared without permission, leading to spam and even potential fraud.
TRAI’s 2018 rules say businesses can only send promotional messages if they have clear and recorded consent, even if the number is not registered on the Do Not Disturb (DND) list. But proving that consent has always been tricky — until now.
What’s Changing
With this new initiative, TRAI is introducing a digital consent registry. Now, businesses must upload and verify customer consent digitally through systems run by telecom service providers (TSPs). This process will make it easier to confirm valid consents and block spam messages from unauthorized sources.
Focus on Banks First
The pilot began on June 13, 2025, focusing on the banking sector first, given its sensitivity to fraud and financial scams. The project will be tested under TRAI’s Regulatory Sandbox, where the framework’s technical and legal aspects will be examined before rolling it out to other industries like e-commerce and fintech.
Building a Safer Digital Future
TRAI says this move is part of its broader mission to protect consumers, improve trust, and make consent meaningful. By digitizing the system, they hope to reduce spam, boost transparency, and create a safer digital environment for everyone.