Your Telco App Knows More About You Than You Realize – Here’s How to Protect Yourself
Your Telco App Knows More About You Than You Realize – Here’s How to Protect Yourself
Thought of bringing this topic today! coz, I feel this is something everyone should be aware of and ignore 🙂
Are Telco Apps in Sri Lanka Respecting Your Privacy?
These days, most of us use mobile apps from our telecom providers like Dialog, Mobitel, SLT, and Hutch to check balances, pay bills, and activate data packages to manage our connections easily. Thats how they want us to think and use their apps.
But there’s something we don’t often stop to think about:
What are these apps doing in the background? ever thought?
And more importantly, what kind of access do they really have?
What’s Actually Happening?
When you install these apps, they often ask for permissions like:
- Location access
- Contacts access
- SMS access
- Storage/media files
- Sometimes even the microphone or camera
Some of this might be needed for app features — like using your location to show nearby reload shops or detecting your mobile number automatically. But in many cases, these permissions are broader than they need to be.
And what’s more concerning is that certain employees within telco companies may still have internal access to user data, even if the company claims it follows strict privacy policies.
This Isn’t Just a Local Issue
To be fair, this isn’t something unique to Sri Lanka. Telcos and ISPs across the world are known to collect user data — browsing habits, app usage, even location info — either for analytics, marketing, or internal systems.
Here are a few examples from around the world:
- 🇺🇸 Verizon (USA) was fined $1.35 million by the FCC for tracking users with “supercookies” without their consent.
- 🇭🇰 In Hong Kong, it was revealed some telcos had shared user data with law enforcement without warrants, raising major privacy concerns.
- 🇮🇳 Jio and Airtel have also been criticized for excessive permissions requested in their mobile apps.
- 🛰️ Globally, it’s been proven that ISPs can track and sell your browsing data (like in this case involving Comcast and AT&T).
So no, it’s not just a Sri Lankan problem — but what makes it more concerning here is the limited regulation and low public awareness.
What Data Can They Actually Access?
Depending on the level of access and permissions:
- Your real-time location
- Your call and SMS history
- Your browsing activity (especially if you’re not using a VPN)
- Information from apps running in the background
- Even metadata from your photos and files
So, What Can We Do to Protect Our Privacy?
Here are some practical steps you can take — nothing too technical, but it will help you take back control:
✅ 1. Review App Permissions
Go to your phone settings and check which apps have access to:
- Location
- Contacts
- SMS
- Storage
If something doesn’t make sense, turn it off. You can always turn it back on when needed.
✅ 2. Use a VPN
A VPN (Virtual Private Network) encrypts your internet connection, so your ISP or telco can’t easily track the websites or apps you’re using.
Some trustworthy VPN options:
⚠️ Avoid free VPNs from unknown developers — they might do more harm than good.
✅ 3. Change Your DNS Settings
By default, your internet traffic goes through your telco’s DNS, which means they can see the sites you access.
You can change this to a privacy-focused DNS like:
- Cloudflare DNS →
1.1.1.1 - NextDNS → blocks trackers and gives you control
How to do this:
- On Android: Settings > Network & Internet > Private DNS → set to
1dot1dot1dot1.cloudflare-dns.comordns.nextdns.io - On iPhone: Use Cloudflare’s 1.1.1.1 app or configure DNS under Wi-Fi settings
✅ 4. Block Trackers with Tools
To block data leaks from apps silently tracking you, try:
- Blokada (Android) – open-source ad/tracker blocker
- NetGuard (Android) – firewall to control which apps use the internet
- Lockdown Privacy (iOS)
- NextDNS – customizable tracker/firewall-level filtering
✅ 5. Use Browsers That Respect Privacy
Most browsers don’t block trackers by default. These do:
They block trackers, force HTTPS, and keep you safer by default.
✅ 6. Use Secure Messaging & Auth Tools
Instead of using your SIM for two-factor authentication or SMS:
- Use Google Authenticator, Authy, or 1Password
- For private messaging, switch to Signal or Telegram
Final Thoughts
I’m not saying these telcos are actively spying on us, but the access is there, and the potential for misuse can’t be ignored. This is why being aware and making small privacy changes on your phone matters more than ever.
Even if we can’t control how data is handled internally, we can still reduce what’s shared. The more people start thinking about this, the more pressure there will be on companies to be transparent and fair.
If you’ve got tips, tools, or experiences to share, drop a comment below. Let’s make this a useful thread for everyone.