We have consistently argued that human beings must be associated with, and be accountable for, SIMs. The imperatives of the Budget Telecom Network Model cause companies (or more, the thousands of resellers who actually interact with customers) to give away SIMs without too many controls. Therefore, one must be judicious in enforcing the rules. We have been pointing to Pakistan as a model. Kenya, it appears, is exemplary of what not to do.
The Consumers Federation of Kenya (Cofek) has condemned a decision by the Communication Commission of Kenya (CCK) to fine subscribers KES300,000 (USD3,426) or jail them for three years for using unregistered SIM cards. CapitalFM.co.ke quotes Cofek secretary general Stephen Mutoro as suggesting that the only penalty customers should face for using unregistered SIM cards is disconnection from their service provider. Once disconnected, subscribers will have 90 days to recover their numbers, but Mutoro emphasised that the failure by providers to disconnect noncompliant customers should not be placed with the subscribers themselves.
7 Comments
Abu Saeed Khan
Here is more graphic description, “Kenya Cuts Off 1.3 Million Unregistered SIM Cards.”
Rohan Samarajiva
My response to an email that suggested I was wrong:
This is not a primary focus for us, though I have had to respond to media queries such as http://www.thesundayleader.lk/archive/20080803/issues-1.htm. The guy in the picture next to me was the man running national security during the war.
If you use the internal search on our website, you will get more, but the most coherent is a comment I made on a PK discussion (link was in blog post you referred to).
For a long time we were talking abt telecom regulation ignoring taxation. That is behind us now. Same needs to happen with security. I am beginning to move into this area.
It is not that I am unaware of the pros and cons of anonymity: http://www.lbo.lk/fullstory.php?nid=538826416. But the principle that a connection to the network must be associated with a human being is as difficult to challenge as is the principle that all motor vehicles must be so associated.
Rohan Samarajiva
The response to my response: “We’re certainly not opposed to identification policies in principle, but more to the manner in which they have been implemented and the lack of consideration for downsides by policymakers. For the same ministries that have universal access policies to be prematurely erecting new barriers seems quite counterintuitive. And while cars may need to be registered, one can still find plenty of anonymous ways to travel; the SIM registration policies don’t aim to leave any such options, I’m afraid.”
abdussamad
The PTA has banned the sale of SIMs from retail outlets. So how can you call Pakistan a model for dealing with unregistered SIMs?
Rohan Samarajiva
If you read the post carefully, you will see endorsement only of the availability of a database that can be checked by any customer to see how many SIMs are in his/her name.
salman baig
Firstly, sale at retailers has been stopped till they deploy biometric verification system. Secondly, is it really necessary to sale SIMs at retailers?. The regulators at least in the sub continent needs to understand that SIMs are not an FMCG product therefore strict controls needs to be established.
Rohan Samarajiva
What is wrong with treating voice or even data communication as a FMCG? This has been the reason we succeeded in connecting so many people so quickly to voice telephony.
Harnessing Data for Democratic Development in South and Southeast Asia: Sri Lanka Country Report
This report on data governance in Sri Lanka is part of the “Harnessing Data for Democratic Development in South and Southeast Asia” (D4DAsia) project, which aims, inter alia, to create and mobilize new knowledge about the tensions, gaps, and evolution of the data governance ecosystem, taking into account both formal and informal policies and practices. This report is also part of a broader comparative effort that includes case studies from India, Indonesia, Nepal, South Korea, Thailand, and the Philippines.
Indonesia Report Launch and Policy Dialogue on Data Governance
The Indonesia Report launch and policy dialogue on “Indonesia’s Strategy for Safeguarding Cross-Border Personal Data Transfers to the United States Without Compromising Sovereignty or Data Protection” took place on 28 October 2025 at Hotel Ashley, Wahid Hasyim, Central Jakarta. This timely discussion brought together policymakers, industry leaders, and researchers to examine how Indonesia can enable cross-border data flows while maintaining the principles of digital sovereignty and compliance with the Personal Data Protection (PDP) Law.
LIRNEasia’s Chair Professor Rohan Samarajiva at ADB’s SKOP on Cybersecurity and Data Protection for Digital Economy Development
On 15 October 2025, the Asian Development Bank’s Serendipity Knowledge Program (SKOP) hosted a high-level event on Digital Transformation, Cybersecurity, and Data Protection for Digital Economy Development in Sri Lanka. Professor Rohan Samarajiva, Chair of LIRNEasia, participated as a panelist in the discussion on the need for a security-first and privacy-respecting culture from schools to workplaces, including government institutions.
Links
User Login
Themes
Social
Twitter
Facebook
RSS Feed
Contact
9A 1/1, Balcombe Place
Colombo 08
Sri Lanka
+94 (0)11 267 1160
+94 (0)11 267 5212
info [at] lirneasia [dot] net
Copyright © 2025 LIRNEasia
a regional ICT policy and regulation think tank active across the Asia Pacific