Telegram's Global Legal Troubles: Why Governments Are Cracking Down on the Encrypted Messaging App

Telegram, the widely-used encrypted messaging application, has become a flashpoint in the tension between digital privacy and government regulation. Once championed as a tool for dissidents and journalists operating under authoritarian regimes, the platform now finds itself under siege from governments across multiple continents, each citing different but overlapping grievances ranging from terrorism financing to fraud facilitation. The pattern of restrictions reveals a fundamental clash between the app's privacy-first design philosophy and governments' demands for visibility into user communications.

India's recent temporary ban demonstrates how Telegram's opacity creates vulnerabilities that can be exploited by bad actors with devastating consequences. In May, the country's National Testing Agency discovered that fraudsters had used encrypted Telegram channels to hawk fake leaked examination papers to medical college entrance exam candidates and their families, causing widespread panic among millions of students preparing for the competitive test. The government's decision to ban the platform until June 22 and subsequently reschedule the entire examination has ignited considerable backlash from young people who view the episode as symptomatic of systemic failures in examination administration. Telegram, which operates in one of its largest markets with over 150 million users in India, thus became collateral damage in a crisis of institutional credibility. Founder Pavel Durov countered that his company had already removed hundreds of India-related channels promoting exam materials and scams, arguing that collective punishment of ordinary users was both disproportionate and ineffective—a refrain that recurs throughout his company's global disputes.

The Russian experience illustrates how Telegram's encryption technology creates an irresolvable impasse between the platform and state actors. In 2018, Russian authorities moved to block the app after Telegram refused to grant security services access to encrypted communications, a stance that reflected Durov's fundamental design principles. Though Durov had already departed Russia in 2014, he maintained that the application's cryptographic architecture made compliance technically impossible rather than merely inconvenient. The initial blockade faced unexpected obstacles—Russian government agencies themselves relied heavily on Telegram for internal communication—leading Moscow to lift restrictions by 2020 after extracting promises to combat extremist content. This temporary detente collapsed during Russia's invasion of Ukraine, when the government attempted renewed suppression as part of a broader internet freedom crackdown. Durov alleged the real motive was forcing Russian citizens toward a state-controlled alternative explicitly engineered for surveillance and political control. Telegram remains effectively inaccessible in Russia today.

The Ukrainian dimension reveals Telegram's paradoxical role in conflict zones. Throughout Russia's war against Ukraine, the platform has served as a vital information channel for millions of Ukrainians seeking advance warning of Russian attacks and locating emergency supplies and medical assistance. Simultaneously, Ukrainian officials have grown concerned that Telegram's anonymity features enable Russian disinformation campaigns and espionage activities. In response, Kyiv banned military and government personnel from using the application on work devices, with some officials proposing transparency requirements forcing administrators of large anonymous channels to disclose their identities. This calculus—weighing Telegram's utility as an open communications lifeline against its potential as a vector for hostile information operations—encapsulates the strategic dilemmas facing democracies attempting to regulate the platform.

France's approach has been the most aggressive within Europe. When Pavel Durov landed in Paris in 2024, authorities arrested him and filed sweeping criminal charges related to his alleged failure to prevent illicit activities on Telegram, including child sexual exploitation, drug trafficking, and online hate crimes. The detention—with an initial prohibition on leaving France—represented an unprecedented escalation. Durov's subsequent relocation to Dubai raised questions about whether the dispute represented a clash between regulatory philosophies or a personal vendetta. France's position reflected mounting frustration with Telegram's perceived unresponsiveness to investigative requests and court orders. Other European nations took note: Norway's justice ministry issued guidance recommending state officials remove both Telegram and TikTok from work devices on national security grounds. The European Union's regulatory framework, while theoretically governing Telegram's operations within member states, has struggled to enforce compliance when the company maintains it cannot technically access user data to comply with orders.

Brazil's experience demonstrates how Telegram's opacity intersects with election integrity concerns. The country's Supreme Court banned the platform nationwide in 2022 on the eve of a presidential election, claiming that Telegram had ignored orders to disable accounts belonging to a Jair Bolsonaro supporter accused of spreading disinformation and threatening judges. Durov's apologetic explanation—that the company had inadvertently missed the court's emails—invited skepticism about whether an organisation of Telegram's scale genuinely operates without adequate legal compliance infrastructure. The ban was lifted once Telegram demonstrated cooperation, yet another episode in 2023 saw a new blockade after the platform allegedly failed to provide complete user data from neo-Nazi group chats. Telegram responded that it could not retrieve deleted data, a technically credible claim but one that highlighted the platform's limitations in assisting with law enforcement investigations.

The underlying tension driving these regulatory actions stems from a fundamental incompatibility between Telegram's operational model and modern governance requirements. Encrypted-by-default messaging systems inherently prevent the platform operator from accessing user communications, a feature that simultaneously protects dissidents from authoritarian surveillance and shields criminals from detection. Governments increasingly reject arguments that platform operators bear no responsibility for content or activity occurring on their networks. This shift reflects broader regulatory trends visible in the Digital Services Act and other frameworks treating platforms as publishers rather than neutral conduits. Telegram's consistent refrain—that it removes illegal content when notified and that holding platforms criminally responsible for user behaviour is absurd—clashes with a growing international consensus that digital platforms must proactively police their spaces.

For Malaysian readers and Southeast Asian observers, Telegram's global legal jeopardy carries particular significance given the region's heterogeneous regulatory environment and competing security imperatives. Several Southeast Asian governments have expressed interest in restricting encrypted platforms, citing terrorism financing, drug trafficking, and child exploitation concerns. Malaysia's historical approach has emphasised surveillance capabilities and cooperation with law enforcement, suggesting that Telegram's refusal to compromise its encryption standards would likely prove problematic in any substantive regulatory engagement. The platform's 150 million Indian users and substantial Southeast Asian user base mean that restrictions in one major market create pressure for harmonisation elsewhere, potentially fragmenting the borderless internet that encryption advocates cherish.

Telegram's difficulties also illuminate broader questions about regulatory jurisdiction in digitalised economies. Pavel Durov's arrest in France, despite Telegram's lack of legal presence in that country, exemplifies how nations increasingly assert extraterritorial authority over technology companies. His residence in Dubai—a jurisdiction notably permissive toward technology companies—raises questions about whether entrepreneurs can circumvent regulatory pressure through jurisdictional arbitrage. This dynamic may presage a future in which encryption-based communication platforms operate in carefully selected low-regulation jurisdictions, accessible globally but accountable to few. Alternatively, the mounting coordinated pressure from major democracies and emerging markets alike suggests that no company can indefinitely resist demands from France, India, Russia, Brazil and Ukraine simultaneously.

The trajectory of Telegram's regulatory entanglements suggests several possible futures. The platform could capitulate on encryption, implementing backdoor access that would satisfy governments but fundamentally compromise its privacy proposition and alienate its user base. It could fragment into regional versions with varying compliance levels, creating a Balkanised messaging ecosystem. Or it could maintain its current stance, accepting periodic bans while retaining user loyalty among those prioritising privacy over reliability. Each path involves trade-offs between privacy, security, compliance and usability that extend far beyond Telegram itself. As governments worldwide grapple with balancing legitimate security interests against digital rights, Telegram has inadvertently become a proxy battleground for these deeper questions about technological freedom and state power in the digital age.