The Home Ministry of Home Affairs (MHA) sent 91 takedown notices to X Corp between March 20, 2024 and November 7, 2025, pointing out over 1,100 URLs through the Centre’s Sahyog portal. This site was launched in March 2024 as a cybercrime tool. The biggest number in these notices was the offence of “disturbing public order”, which mentioned about 566 URLs, followed by 124 URLs related to content targeting political and public figures, the report mentioned.
Most spikes were reported during the poll period
The Indian Express reported that the clear spikes were noted during the April-May 2024 Lok Sabha election period, when 761 URLs were flagged. It said nine notices covering 198 URLs specifically cited provisions of the Representation of the People’s Act. One of the largest single notices, dated May 13, 2024, contained 115 URLs related to an allegedly doctored video described as “ spreading misinformation with the intention to influence the ongoing election electoral process.”
Operation Sindoor, Modi-Adani, Shah-linked content flagged
The report found that spikes were not only reported during the 2024 polls but also around Operation Sindoor in 2025. It mentioned that nine notices highlighting 21 URLs sought takedowns of allegedly manipulated content based on Prime Minister Narendra Modi, including two related to the digitally altered images of PM Modi and industrialist Gautam Adani. It also mentioned that MHA fixed six notices directing the takedown of 91 URLs for alleged manipulated content featuring Union Minister Amit Shah.
It also flagged three notices that were issued in April 2025, which asked for the takedown of 73 URLs promoting betting, and included links related to the Mahadev app. It stated that only one notice, dated December 17, 2024, identified child abuse material content that was posted by 16 accounts. The Indian Express also reported that five notices seeking takedown of 56 URLs cited threats to India’s “integrity, sovereignty and security”. After the Pahalgam terror attack, a notice dated April 28, 2025, cited Section 13 of the UAPA while flagging a URL alleged to be spreading threatening messages that could trigger unrest and pose a national security threat.
Following Operation Sindoor in May 2025, it said the MHA issued two notices seeking the removal of three URLs for content that was allegedly “critical of the Indian Army”. One of them also cited UAPA and Section 66F (cyber terrorism) of the IT Act for reportedly disseminating false information related to the India-Pakistan war.
The report further added that across the 20-month period, only 14 of the 91 notices alleged what is termed as criminal activity. The allegations were of promotion of betting apps, circulation of child abuse material, and impersonation of official handles that could result in financial fraud. It also highlighted takedown directions related to alleged manipulated or fake content involving senior leaders and public personalities. There were also some cases in which X pushed back and asked the authorities to re-access the specific URLs.
Court battles over the legal process of the takedown notices
Meanwhile, the legal fights over how takedowns are ordered are also ongoing. According to a PTI report, X Corp has challenged the Sahyog portal-linked process before the Karnataka High Court. IT argued that authorities are using Section 79 (3)(b) of the IT Act and related rules of force removals, instead of the Section 69 (A) framework that consists of procedural safeguards. X also cited the Supreme Court’s Shreya Singhal vs Union of India (2015) ruling in its argument.
X informed the court that it has received 29,118 government takedown requests between January and June 2025, and it has complied with 26,641, which is a 91.49% compliance rate. It also mentioned that Section 79 is meant for a “safe harbour” provision for intermediaries and not a separate way for blocking content.