In a troubling discovery highlighting risks to personal privacy, an investigation has revealed an illegal data market operating in Madhya Pradesh where private detective agencies are selling sensitive personal information. The data includes call records and bank balances, targeting individuals ranging from IAS officers and politicians to private citizens, with prices between ₹20,000 and ₹1.85 lakh.
The investigation shows that this underground network operates by exploiting system vulnerabilities and bypassing standard security protocols. The scale of the activity suggests a well-established ecosystem that monetises private data in the digital age.
Sting operations conducted on multiple agencies exposed the depth of the trade. Operators admitted to providing Call Detail Records (CDR), real-time location tracking and banking transaction details. They claimed to have insiders within telecom companies and banks who offer direct access to servers. One operator also stated having a family connection at a senior police level to facilitate such requests, adding that data can be obtained within 2–3 days. These revelations point to serious gaps in internal monitoring and employee verification within regulated sectors.
The investigation also uncovered a structured pricing system. One agency charged ₹1.20 lakh for 6 months of call records for 3 individuals, while another quoted ₹35,000 for similar data. Additional services included ₹15,000 for bank statement analysis and ₹10,000 for TDS and banking return details. Despite openly admitting that such data is illegal and cannot be used in court or reported to police, operators continued to offer these services. The demand appears to be driven by motives such as political surveillance, business rivalry and personal disputes.
Legal experts have raised serious concerns over these activities. S.V. Jagga stated that accessing CDRs without legal approval violates the Indian Telegraph Act and the IT Act, and also breaches the Right to Privacy under Article 21 of the Constitution. Offenders can face up to 3 years of imprisonment and fines ranging from ₹1 lakh to ₹2 crore.
Experts warn that without stricter enforcement and accountability across the entire chain, including insiders and agencies, such illegal operations may continue to grow. The findings highlight the urgent need for stronger safeguards to protect personal data.
Also read: Viksit Workforce for a Viksit Bharat
Do Follow: The Mainstream LinkedIn | The Mainstream Facebook | The Mainstream Youtube | The Mainstream Twitter
About us:
The Mainstream is a premier platform delivering the latest updates and informed perspectives across the technology business and cyber landscape. Built on research-driven, thought leadership and original intellectual property, The Mainstream also curates summits & conferences that convene decision makers to explore how technology reshapes industries and leadership. With a growing presence in India and globally across the Middle East, Africa, ASEAN, the USA, the UK and Australia, The Mainstream carries a vision to bring the latest happenings and insights to 8.2 billion people and to place technology at the centre of conversation for leaders navigating the future.
