Blog

How DigiLocker-based eAadhaar XML fits into Indian KYC stacks, where OTP still appears in the citizen consent journey, and common pitfalls for fintech and SaaS engineering teams.

How to send OTPs in Hindi, Tamil, Bengali, Marathi and other Indian languages: Unicode SMS segments, character costs, template tips, and when to use English instead.

How TRAI message scrubbing works in India: the PE, header, and template checks every SMS goes through, common failure codes, and how to debug delivery loss.

How UIDAI Aadhaar OTP works for Indian apps: KUA / Sub-AUA licensing, virtual ID flow, purpose limitation, allowed use-cases, and DPDP Act overlap.

How Indian apps that serve EU customers should handle GDPR for OTP flows: lawful basis, retention, transfers, joint controllers, and DPDP Act overlap.

How PCI-DSS applies to OTP and SMS workflows in Indian payment apps: scope, segregation, audit-trail expectations, and where OTP fits relative to RBI AFA.

How DLT template variables work in India: allowed character classes, length limits, common rejection reasons, and copy-paste-ready examples that pass the first time.

How the Digital Personal Data Protection Act 2023 affects OTP and SMS workflows: consent, purpose limitation, data minimisation, retention, and OTP-specific patterns.

RBI Additional Factor of Authentication guidelines summarised for OTP developers: scope, exemptions, alternative-factor allowances, and what changed in 2026.

SEBI 2FA rules summarised for stock-broking and trading-app developers: every-login enforcement, biometric alternatives, audit retention, and pitfalls to avoid.

IRDAI OTP rules for insurance apps in India: digital onboarding, claims, nominee changes, e-policy issuance, and audit-grade record-keeping requirements.

Step-by-step DLT registration walkthrough for Indian businesses: PE-ID, sender-ID, template approval, operator portals, costs, timelines and how to skip it entirely.

PE-ID (Principal Entity ID) registration explained: what it is, why it is required for SMS in India, how to register on each operator portal, and how a DLT-free provider absorbs it.

Summary of TRAI OTP and SMS rule changes in 2026: scrubbing tightening, sender-ID renewals, DLT enforcement, and what every Indian developer should update in their pipeline.

DND in SMS explained for developers: India’s national Do-Not-Disturb register, the categories, how DND interacts with OTP / transactional SMS, and what happens when you send to a DND number.

SMS sender ID explained: the 6-character header that tells users who sent the SMS, India DLT registration rules, transactional vs promotional sender IDs, and how to pick a good one.

Understand Header, PE, and promotional sender types, TRAI rules, and how DLT registration affects OTP delivery. Practical guidance for Indian apps and SaaS teams.

Key differences between transactional and promotional SMS in India. Header types, timing restrictions, DLT templates, DND rules, consent, routing, and costs explained.

How India's Digital Personal Data Protection Act affects OTP and SMS implementations. Phone numbers as personal data, consent, retention, and compliance checklist.

Latest TRAI SMS regulations for 2026 covering DLT enforcement, scrubbing, content templates, promotional timing, and consent rules. What developers need to know.

Learn how to write DLT SMS templates that get approved on the first attempt. Template types, variable syntax, rejection reasons, and operator-specific tips.

Understand TRAI's DLT registration mandate for SMS in India. Learn the process, portals, timelines, costs, and how to skip DLT entirely with StartMessaging.