Current Affairs Topics Archive
International Relations Economics Polity & Governance Environment & Ecology Science & Technology Internal Security Geography Social Issues Art & Culture Modern History

Russia opens criminal investigation against Telegram app founder Pavel Durov

February 24, 2026 5 min read International Relations Science & Technology GS2 (Governance data privacy cybersecurity) GS3 (IT regulation social media governance)
On This Page

What Happened

  • Russia opened a criminal investigation against Telegram founder and CEO Pavel Durov following his arrest by French authorities on August 24, 2024, at Paris-Le Bourget Airport.
  • French authorities indicted Durov on twelve charges, including complicity in drug trafficking, distribution of child sexual exploitation material, money laundering, and running an online platform that failed to prevent illicit activity.
  • Durov holds both French and Russian passports; Russia's investigation appears linked to geopolitical manoeuvring following the French arrest, with Russian diplomats accusing France of refusing to share information on the case.
  • France lifted all travel restrictions on Durov in November 2025, but the formal investigation by French authorities continues.
  • The Durov case has reignited global debate about whether platform owners bear criminal liability for user-generated content and the limits of encrypted messaging platforms' obligations to cooperate with law enforcement.

Static Topic Bridges

Intermediary Liability and Platform Governance

Intermediary liability refers to the legal responsibility of online platforms (intermediaries) for content posted by their users. There are two broad doctrinal approaches: the US model (Section 230 of the Communications Decency Act, 1996) which grants broad immunity to platforms for user-generated content; and the EU model which conditions immunity on the platform taking "expeditious" action to remove illegal content upon notice. In India, the Information Technology (Intermediary Guidelines and Digital Media Ethics Code) Rules, 2021 impose a graded liability regime — significant social media intermediaries (>5 million users) must appoint Grievance Officers, Nodal Officers, and Chief Compliance Officers, and comply with takedown orders within defined timelines or lose their safe harbour protection. Telegram's passive approach to moderation — citing encryption and user privacy — is at the heart of the French prosecution.

  • Section 230, US (1996): Broad platform immunity for user-generated content; platform not treated as publisher.
  • EU Digital Services Act (DSA, 2022): Imposes due-diligence obligations on Very Large Online Platforms (VLOPs) with 45M+ EU users; non-compliance attracts fines up to 6% of global turnover.
  • India IT Rules 2021: Grievance redressal, content traceability for encrypted platforms (significant intermediaries), 36-hour takedown deadline for flagged content.
  • Telegram: Not end-to-end encrypted by default (unlike Signal); only "Secret Chats" have E2EE; group chats stored on Telegram's servers.
  • Safe harbour: Legal protection for platforms that act as neutral conduits and promptly address illegal content.

Connection to this news: The French case against Durov tests whether platform CEOs bear personal criminal liability when their platforms knowingly fail to moderate illegal content — a precedent with global implications for intermediary liability doctrine.

Telegram: Architecture, Privacy Model, and Regulatory Exposure

Telegram, founded by Pavel Durov and his brother Nikolai in 2013, is a cloud-based messaging platform with over one billion users globally as of 2024. Unlike Signal (which uses end-to-end encryption by default for all messages), Telegram's standard one-on-one and group chats are server-encrypted (Telegram holds the keys) rather than end-to-end encrypted. Only "Secret Chats" use client-side E2EE. This architectural choice means Telegram has technical access to the content of most user messages — increasing both its capability and legal obligation to detect and remove illegal content, but also making it more attractive to surveillance-averse users who benefit from large group channels and cloud storage features. Durov's libertarian-leaning philosophy of minimal moderation has positioned Telegram as a refuge for extremist groups, criminal actors, and dissident political movements alike.

  • Founded: 2013 by Pavel Durov (Russia) and Nikolai Durov; headquarters in Dubai.
  • Users: 1 billion+ (2024); one of the world's largest messaging platforms.
  • Encryption: Server-encrypted by default (Telegram holds keys); E2EE only in "Secret Chats" (not group chats).
  • Signal: E2EE by default for all messages and group chats; open-source protocol; collects minimal metadata.
  • MTProto protocol: Telegram's proprietary encryption protocol; not independently audited to the same extent as Signal Protocol.
  • Moderation history: Telegram historically removed little content; adopted partial moderation policies post-2024 arrest.

Connection to this news: The French and Russian investigations both target Durov's deliberate design choice to minimise moderation — framing the CEO as personally responsible for the platform's role in facilitating criminal activity.

Digital Sovereignty and Cross-Border Jurisdiction in Cyberspace

Digital sovereignty refers to a state's right to control the digital infrastructure, data flows, and online activity within its territory. Conflicts arise when platforms operate across jurisdictions with incompatible legal requirements — what is permissible speech in one country may be criminal in another. The Durov case illustrates cross-border jurisdictional complexity: France asserts jurisdiction based on his presence on French soil; Russia asserts jurisdiction based on his citizenship and historical ties; Dubai (where Telegram is headquartered) has its own data-sharing obligations. For UPSC, this connects to India's ongoing debates about cross-border data flows under the Digital Personal Data Protection Act (DPDPA), 2023, requirements for law enforcement access to encrypted communications, and India's Internet Shutdowns and content-blocking orders under Section 69A of the IT Act.

  • Budapest Convention on Cybercrime (2001): International treaty on cross-border cooperation in cybercrime; India is not a signatory.
  • India's IT Act Section 69A: Central government can order blocking of online content for national security, sovereignty, or public order.
  • DPDPA 2023: India's data protection law; governs cross-border data transfer through "white-listed" countries.
  • Mutual Legal Assistance Treaties (MLATs): Bilateral frameworks for sharing evidence across borders in criminal cases.
  • EU General Data Protection Regulation (GDPR): Imposes strict data handling obligations; Telegram faces GDPR scrutiny.

Connection to this news: The Durov case is a landmark instance of a state (France) asserting extraterritorial criminal jurisdiction over a foreign-headquartered platform's CEO — a precedent relevant to India's own push for platform accountability.

Key Facts & Data

  • August 24, 2024: Pavel Durov arrested at Paris-Le Bourget Airport by French authorities.
  • 12 charges: Including complicity in drug trafficking, CSAM distribution, money laundering.
  • 1 billion+: Telegram's global user base as of 2024.
  • November 2025: France lifted all travel restrictions on Durov; French investigation continues.
  • Founded: 2013; Telegram HQ in Dubai.
  • Russia investigation: Opened following French arrest; Durov holds Russian and French passports.
  • E2EE default: Signal (yes); Telegram standard chats (no) — only "Secret Chats" are end-to-end encrypted.