Sri Lanka’s plan to mandate re-registration of SIM cards issued before August 2019 signals a significant tightening of digital identity oversight, reflecting the Government’s broader effort to modernise telecommunications regulation and strengthen investigative capacity.
Under existing regulations introduced in 2019, mandatory subscriber verification applied only to new SIMs. Millions of earlier-issued numbers remain outside that regulatory net, with incomplete or unverifiable subscriber records. Authorities argue that this gap has impeded criminal investigations and court proceedings, particularly in cases involving cybercrime, fraud, and organised networks.
Yet implementing retroactive compliance presents operational and social challenges.
Telecommunications companies will be required to collect, verify, and securely store updated personal data potentially including national identity card details and proof of residence—for a vast subscriber base. Ensuring accuracy while preventing identity fraud during the re-registration process will test administrative systems.
More critically, the initiative expands the state’s centralised visibility over citizen communication identifiers. Although officials emphasise lawful investigative needs, privacy advocates question the absence of publicly detailed safeguards governing data access, retention limits, and oversight mechanisms.
Sri Lanka’s evolving data protection laws remain in early stages of enforcement. Without strong independent regulatory supervision, expanded SIM databases may heighten fears of profiling or political misuse particularly in a context where the new administration has launched multiple probes into financial and governance irregularities.
On the ground, subscribers face immediate hurdles. Individuals who obtained SIM cards years ago through resellers or informal arrangements may not possess matching documentation. Migrant workers, estate communities, and low-income citizens could face service disruptions if verification deadlines are strict.
Service suspension would extend beyond voice calls. Mobile numbers now anchor two-factor authentication for banking, digital payments, and government platforms. Any interruption risks excluding vulnerable populations from essential services.
The Government’s proposal also introduces registration pathways for minors aged 16-17 and simplifies issuance for foreign tourists measures aligned with digital economy expansion and tourism growth. However, expanding eligibility while tightening compliance underscores the complexity of balancing inclusion with regulation.
The broader question remains whether the re-registration drive strengthens security without undermining public confidence. Transparent communication, phased implementation, grievance mechanisms, and clear legal boundaries will be essential to prevent the initiative from being perceived as intrusive rather than protective.
Sri Lanka’s digital governance trajectory now hinges on whether enhanced oversight translates into improved security or diminished trust.
The post Legacy SIM Crackdown Tests Digital Trust Framework appeared first on LNW Lanka News Web.
