Cops seized a phone but missed every rule. Court says: that's a problem.

The police took the phone as evidence. They didn't turn it off, didn't remove the battery, and didn't seal it. The court's response? A stinging reminder that in the age of cyber crime, law enforcement is still fumbling with the basics.

Here is the question that hangs over the entire case: Can a mobile phone — a device that holds call logs, messages, location data, and metadata — be treated as reliable evidence if the officer who seized it never even bothered to switch it off?

When the phone was picked up, not secured

The facts begin with a routine seizure. In a criminal investigation, the Kerala Police took possession of a mobile phone belonging to the accused, Vijesh. The device was central to the case — it allegedly contained evidence of the crime. But what happened next was anything but routine.

The Investigating Officer (the officer in charge of the case) collected the phone. The officer did not record the device's status — whether it was on or off, what was displayed on the screen. He did not photograph any on-screen information at the time of seizure. He did not switch the device off. He did not remove the battery — a step that would have prevented remote data wiping, where someone could delete files from the phone over the internet. He did not seize any accessories: no cables, no chargers, no packaging. And he did not pack the phone in antistatic packaging before sending it to the digital forensics expert.

In short, the officer treated a smartphone — a device that can be wiped, altered, or tampered with remotely in seconds — as though it were a brick.

THE PLAY: Every seizure memo for a mobile phone must now include a checklist: switched off, battery removed, screen photographed, accessories seized, antistatic packaging used — or the evidence is vulnerable to challenge.

Why the defence smelled a problem

Vijesh's lawyer saw the gap immediately. The defence argued that the electronic evidence gathered from the phone was fundamentally flawed. The argument was not about what the phone contained — it was about whether anyone could trust that the data on the phone was the same data that existed at the time of seizure.

The prosecution, on the other hand, insisted that the evidence should be admitted. The Investigating Officer had collected the phone, they said, and that was enough. The data was there. The case could proceed.

The court was asked to decide a single question: When a police officer seizes a mobile phone, what must they do to ensure the evidence inside it remains trustworthy? And what happens when they do none of those things?

The Kerala High Court's blunt answer

The bench did not mince words. The courtroom fell silent as the judgment was read. The judge's voice carried the weight of the file — a file that felt thin, missing the documentation that should have accompanied a proper seizure. The court observed that none of the necessary procedures had been adopted by the Investigating Officer. The officer's first and foremost duty, the court said, was to secure the phone to prevent the "destruction/manipulation of data". That meant switching the device off, removing the battery, photographing the screen, and packing it properly — none of which had been done.

Then came the line that cut deepest. The court noted that cyber criminals are often "way ahead of the law enforcement officers". The gap between what criminals can do with technology and what police understand about it is not small — it is dangerous. The court added that officers need training in "best practices to tackle the criminal misuse of current and emerging technologies".

The logical conclusion was stark: such failures compromise the integrity and reliability of the digital evidence collected. If the phone could have been tampered with — even in theory — the evidence loses its value. The court highlighted that flaws committed by officers, such as in the instant case, may prove fatal to the prosecution.

Consider the implications. A cyber criminal, sitting miles away, could have wiped the phone's data remotely the moment it was seized but not switched off. The call logs, the messages, the location history — all gone in seconds. The metadata that could have placed the accused at the scene, the timestamps that could have proven or disproven an alibi, the contact list that might have revealed co-conspirators — all vulnerable to destruction because the officer did not remove the battery. The court's reasoning was rooted in this practical reality: once the phone is in police custody, the duty to preserve its contents begins immediately, not after it reaches the forensics lab.

The court also implied a checklist that every Investigating Officer should follow at the moment of seizure. First, record the device's status — is it on or off? What is displayed on the screen? Photograph that screen immediately. Second, switch the device off. Third, remove the battery if possible — this cuts off power and prevents remote commands from executing. Fourth, seize all accessories: the charger, the cable, the packaging, the SIM card tray. Fifth, pack the device in antistatic material to prevent electrostatic damage to the storage chip. Sixth, seal the package and document the chain of custody with signatures and timestamps. The officer in this case did none of these.

What this means for every criminal case involving a phone

For practitioners, the message is clear. The Vijesh judgment is not a technicality — it is a roadmap. Every Investigating Officer who seizes a mobile phone must now treat it as a crime scene in miniature. The device must be secured immediately. Its status must be documented. The battery must be removed. The phone must be packed in antistatic material. Accessories must be seized. And all of this must be done before the device ever reaches a forensics lab.

If these steps are skipped, the defence now has a ready-made argument: the evidence is unreliable. The prosecution may lose its case not because the accused was innocent, but because the officer did not know how to handle a smartphone. The smell of old paper in the courtroom, the weight of a judgment that could have been avoided — these are the consequences of a single procedural lapse.

The impact extends beyond this single case. Every criminal investigation that involves a mobile phone — and in modern India, that is nearly every investigation — must now reckon with this standard. The Kerala High Court's directive is a call for police forces across the state, and by implication across the country, to create and follow a "good practise guide for digital evidence". The failure to maintain forensic soundness — the chain of custody that proves evidence has not been tampered with — renders digital evidence vulnerable to challenge. And in a system where digital evidence is increasingly central to convictions, that vulnerability is a gap that the defence will exploit and the prosecution will struggle to close.

The judgment also raises deeper questions about police training. The court itself noted that officers need training in "best practices to tackle the criminal misuse of current and emerging technologies". This is not an isolated lapse — it reflects a systemic gap. Every police academy, every training module for Investigating Officers, must now incorporate digital evidence handling as a core competency. The days when a seizure meant bagging a physical object are over. A phone is not just a phone — it is a data repository, a communication log, a location tracker, and a potential crime scene. Treating it as anything less invites disaster.

For the defence bar, the judgment is a gift. Every case involving a mobile phone seizure now has a built-in challenge: was the device secured properly? If the answer is no — and in many cases, it will be — the evidence may be excluded. The burden shifts to the prosecution to prove that the chain of custody was maintained. And without documentation, without photographs, without a sealed package, that burden becomes nearly impossible to meet.

For the prosecution, the judgment is a warning. The days of casual seizures are over. Every Investigating Officer must now carry a mental checklist — or better, a physical one — and follow it without exception. The cost of a single missed step is the loss of evidence that could make or break a case.

The court ended where it began: with a phone that was never secured

The Kerala High Court's judgment in Vijesh v. State is a call for reform. It asks police forces across India to create and follow a "good practise guide for digital evidence". It confirms that failure to maintain forensic soundness — the chain of custody that proves evidence has not been tampered with — renders digital evidence vulnerable to challenge. And it reminds every officer, lawyer, and judge that in the race between cyber criminals and law enforcement, the gap is not closing. Not yet.

The phone that started it all — the one that was seized without being switched off, without its battery removed, without its screen photographed, without being packed in antistatic material — sits somewhere in a police storeroom. Its data may or may not be intact. But the lesson it has taught is clear: in the digital age, the smallest procedural lapse can undo the largest case. And the court, with a single judgment, has drawn a line that no Investigating Officer can afford to cross.