Ministry of Digital Development Proposes Extending Data Retention for Spoofed Calls to One Year

The Ministry of Digital Development (MinTsifry) has proposed increasing the retention period for data on calls made using spoofed numbers to one year. Previously, the proposed retention period was six months. Mobile operators are concerned that they will once again be responsible for covering the associated costs.

According to a draft government resolution revised by the Ministry, as reported by “Kommersant,” the document sets requirements for the Roskomnadzor system that monitors operators’ blocking of calls with spoofed numbers. Under the new initiative, information about such calls will be stored for one year instead of six months. The regulation is expected to take effect in 2023 and remain in force for six years.

The system will be operated by the Main Radio Frequency Center (GRChTs), a subsidiary of Roskomnadzor. The Ministry of Digital Development, Roskomnadzor, telecom operators, and law enforcement agencies will have access to the system.

How the System Will Work

• Verification nodes will be installed on communication networks, which will be used by GRChTs.
• The system will collect data on phone numbers (including those used for call forwarding), call dates and times, and message transmissions.

Telecom operators are worried about the additional expenses required to install the necessary equipment. According to a source in the telecommunications industry cited by “Kommersant,” the latest version of the draft contains contradictions regarding who is responsible for storing information about verification results. Whether operators will bear these costs depends on the final version of the regulation, and this remains unclear due to the current inconsistencies in the document.

MegaFon has also stated that extending the data retention period will lead to extra costs for operators. The company has already appealed to Roskomnadzor to reduce the retention period. Tele2 noted that even six months of data retention is excessive if the system is properly configured. Rostelecom, MTS, Skartel (Yota brand), and VimpelCom (Beeline brand) declined to comment. GRChTs also did not respond to the newspaper’s inquiry.

Background and Industry Concerns

Amendments to the “On Communications” law, adopted a year ago, require operators to block calls and SMS messages from abroad that use spoofed numbers. Operators must connect to the system created by Roskomnadzor and transmit the necessary information. Failure to comply can result in fines of up to one million rubles.

Mobile companies have previously criticized the spoofed number blocking system. Operators question the effectiveness of the system’s architecture and are reluctant to pay for its implementation out of their own pockets.