Why the Old Ways Weren't Enough
For years, the primary weapon against spam was the National Do Not Disturb (DND) registry. Subscribers could opt-out of marketing calls, and in theory, telemarketers who violated this would face penalties. However, its effectiveness has been widely questioned,
with many registered users still receiving a flood of unsolicited calls and messages. Spammers found loopholes, using unregistered personal numbers to bypass the system, making enforcement a constant cat-and-mouse game. The system was largely complaint-driven, placing the burden on consumers to report violations. With billions of spam calls made, this reactive approach was simply overwhelmed.
The New Blueprint: Consent and AI
The new phase marks a fundamental shift from a passive DND list to a proactive, technology-led framework. The two main pillars of this strategy are the Digital Consent Acquisition (DCA) system and the mandatory use of Artificial Intelligence (AI) by telecom operators. The DCA, first mandated by the Telecom Regulatory Authority of India (TRAI) in 2023, creates a unified, blockchain-based platform to digitally record and verify a user's consent to receive commercial communications. This moves the responsibility of managing consent from individual marketers to a transparent, shared ledger that all telecom operators can access.
How Digital Consent Changes the Game
Under the old system, companies claimed they had your consent, but there was no way for your mobile operator to verify it. The DCA changes this entirely. Now, a business must seek your explicit permission through a specific short code (127xxx). This request must clearly state the company's name and the scope of the consent. Your approval is recorded on an unchangeable Distributed Ledger Technology (DLT), or blockchain, platform. Crucially, you can also revoke this consent at any time through a unified system, giving you direct control. Any commercial communication sent without this verifiable digital consent is automatically in violation of the rules.
AI Joins the Fight
Alongside the consent framework, TRAI has mandated that all telecom operators deploy AI and machine learning systems to proactively detect spam. Instead of waiting for user complaints, these AI systems analyze call patterns—like high volumes of short-duration calls from a single number—to identify suspected spammers in near real-time. Once an AI flags a number as suspicious, the operator must share this information with all other networks via the DLT platform within two hours. This rapid, system-wide sharing is designed to stop spammers before they can cause widespread disruption or fraud. If a number receives five or more complaints within ten days, it can be blocked.
A Two-Pronged Attack on Violators
The new regulations also come with sharper teeth. The focus is not just on blocking numbers but also on accountability. Both the telecom operator that issued the SIM card (originating provider) and the one on whose network the spam call is received (terminating provider) are now responsible for coordinating and taking action. Penalties for violators are severe, including disconnection of all telecom resources for repeat offenders and blacklisting for up to two years. In a recent move, TRAI is also seeking powers under the IT Act to take action against caller ID apps like Truecaller that incorrectly flag legitimate commercial numbers (from the 140 and 1600 series) as spam, ensuring that verified business communication is not accidentally silenced.


















