Trivandrum International Airport, operated by the Adani Group, is demanding passport and boarding pass scans from travellers who simply want Wi-Fi access, raising serious concerns about data privacy and corporate overreach.
At Trivandrum International Airport, something unsettling happens when travellers need internet access. Under Adani Group's management, the airport requires passengers to scan their passports and boarding passes at Wi-Fi kiosks, a practice that defies global standards where airport connectivity is typically provided freely and with minimal data collection. The question is simple: why should travellers surrender their most sensitive personal information to a private corporation for a basic service that airports worldwide provide without such invasive requirements? Most international airports offer complimentary Wi-Fi with at most a simple email verification or phone number entry, never demanding passport scans that harvest biometric and travel data.
This becomes particularly alarming considering the operator involved. The Adani Group has faced serious allegations of corruption and bribery schemes, including the damning Hindenburg Research report that accused the conglomerate of stock manipulation and accounting fraud. While Adani denies these claims, the cloud of controversy remains. Handing over identity documents to a conglomerate with that kind of scrutiny hanging over it should give any traveller pause.
Passports contain biometric information, travel history, and citizenship details, essentially a complete identity package. Allowing a company facing serious questions to collect such data from thousands of daily travellers creates unprecedented security risks. In the wrong hands, this information could facilitate identity theft, enable surveillance, or compromise national security. The scale of data collection here is staggering. Every passenger passing through Trivandrum who wants to check email or message family is funnelled into a system that hoovers up their most personal details.
The justification for such data collection appears weak at best. While airports may cite security concerns, requiring passport scans for Wi-Fi represents an overreach that serves little practical benefit. Security agencies already have access to passenger manifests and travel documents through standard check-in and immigration processes. Creating an additional layer of data collection at the Wi-Fi kiosk adds no meaningful security value. If anything, centralised databases of passenger information sitting in private hands potentially create new vulnerabilities rather than solving existing ones. A single breach could expose the sensitive information of hundreds of thousands of travellers.
This situation highlights a troubling lack of regulatory oversight. Airport security and data protection should fall under strict government scrutiny, yet this invasive practice appears to have been implemented without adequate public consultation or challenge. India has been developing its own data protection framework, but enforcement remains inconsistent, and powerful corporate operators seem to operate with considerable latitude. The contrast with other major Indian airports is telling. Many airports across the country manage to provide connectivity without demanding biometric data, proving that Trivandrum's approach is a choice, not a necessity.
The government of India must act swiftly. At minimum, they should require Adani to immediately cease passport scanning for Wi-Fi access and implement a system aligned with global data protection standards. A thorough audit of what data has been collected so far, how it has been stored, who has had access to it, and whether it has been shared with any third parties is urgently needed. Transparency here is non-negotiable.
In this digital world, protecting citizens' data privacy cannot be left to corporations with questionable track records. The incident at Trivandrum Airport serves as a wake-up call for stronger privacy protections and greater oversight of how private companies handle the most sensitive personal information. Free Wi-Fi should never come at the cost of the fundamental right to privacy. Other airports managed by private operators will be watching how this plays out. If the practice goes unchallenged, it will not be long before similar data harvesting becomes standard across the country's travel infrastructure. That is a trajectory worth stopping now, before it becomes the norm.
