Trend report · gnews_meta_ig · 2026-06-01

New IT Rules Mandate Labelling for AI Content and Takedown Speed - India News Network

India's Ministry of Electronics and Information Technology rolled out amendments to the Information Technology (Intermediary Guidelines and Digital Media Ethics Code) Rules in early 2025, mandating that platforms label AI-generated content and ensure takedown timelines of under 72 hours for flagged material. For creators, brands, and publishers, this isn't abstract policy—it's a practical challenge: your content will be scanned, assessed, and potentially suppressed based on how platforms determine whether it was machine-made. Here's exactly what they're looking for in 2026, and the only method that reliably keeps your content out of the flagged queue.

The Detection Stack: What Platforms Actually Scan

Modern AI-content detection isn't a single tool—it's a layered pipeline that examines files at multiple levels. Platforms like Meta (Instagram's parent) and ByteDance (TikTok's parent) have deployed increasingly sophisticated scanners that extract and analyze metadata, embedded signatures, and compression artifacts. Here's what each layer checks:

1. C2PA (Coalition for Content Provenance and Authenticity)

The most consequential addition to detection pipelines. C2PA embeds cryptographically signed manifests directly into image and video files using JPEG's APP12 or PNG's tEXt chunks. When a tool like Adobe Firefly, DALL-E 3, or Midjourney generates content, it embeds a manifest structured like:

uadb_ManifestStore → c2pa.actions (HashedSHA256) → stds.schema-org.CreativeWork → author.tool.name

Instagram and TikTok both check for the presence of a JUMBF (JPEG Universal Metadata Box Format) signature in the file structure. If the scanner finds xmp.iim:OriginalTransformedDocument or c2pa.signature markers, the content receives an automatic "AI-Generated" tag regardless of visual quality. The manifest's signature includes a claim_generator field (e.g., "Adobe Firefly 2.0") that survives re-encoding up to ~30% quality reduction.

2. AI-Specific Metadata Fields

Beyond C2PA, platforms look for legacy XMP and EXIF fields that AI tools inject:

• xmp:CreatorTool — Direct field showing generation software (Stable Diffusion, Leonardo AI)
• dc:description — Often contains model prompts or version strings
• photoshop:URL — Present in older Midjourney exports
• exif:Software — Overwritten by tools like Runway, Pika, Sora to identify generation origin
• XMPToolkit namespaces — Any iX namespace injection signals non-camera provenance

Meta's detection explicitly checks for fields that no standard camera populates: a portrait photo with Generator=Adobe Firefly in its EXIF will be flagged on upload before visual analysis even runs.

3. Encoder Signatures and Compression Artifacts

AI-generated images carry compression signatures that trained classifiers recognize with 91–97% accuracy on mid-quality generations:

• HEVC NAL unit markers — Video files from Sora, Runway, Kling contain specific NAL header sequences
• DCT coefficient distributions — AI upscalers and generators produce quantization table patterns that differ from natural photos
• GAN fingerprint artifacts — Models like Stable Diffusion, SDXL, and Flux leave characteristic high-frequency noise patterns in the frequency domain
• Daala/VP9 compression signatures — Tools using these codecs leave detectable residuals in motion-compensated regions

Instagram Reels scanners analyze I-frame quantization tables during upload. A Reels video generated via Runway Gen-3 shows statistically distinct DCT distributions in the first 15 frames compared to captured footage.

4. Missing or Inconsistent EXIF/GPS Provenance

Perhaps the most underweighted signal: platforms compare the presence and consistency of capture metadata against behavioral signals:

• Missing GPS coordinates — A photo uploaded from New Delhi but containing no location EXIF raises provenance flags
• Inconsistent timestamps — File modified dates that predate or postdate the upload location's timezone by implausible margins
• No Camera Make/Model — Pure text posts with no device signature score differently than visual uploads with zero camera metadata
• Lens Serial Number absence — Modern cameras embed lens correction data; its absence on high-quality images triggers "not captured" scoring

TikTok's classifier weights missing GPS heavily for location-tagged content—a video posted with a location pin but lacking GPS EXIF is 2.3x more likely to enter manual review according to internal compliance documents cited in recent platform updates.

What Gets Flagged on Instagram vs. TikTok

The two platforms prioritize differently:

Instagram (Meta) — Prioritizes C2PA manifest detection and XMP field scanning. The platform implemented Content Credentials display (showing "AI" badges) after the 2024 Adobe partnership. Upload pipeline triggers on: Generator field presence, c2pa.claim_generator in manifest, and frequency-domain artifacts above 0.73 confidence threshold. Suppression is soft (label only) unless content is reposted after takedown request, in which case the account receives a strike.

TikTok (ByteDance) — Weights behavioral and metadata inconsistency more heavily. Primary triggers: missing original capture metadata, HEVC encoder markers, and face-swap detection in AI-modified portraits. TikTok's system flags content with ExifIFD:CreateDate > 24 hours before upload time without device transfer metadata. Aggressive suppression: reduced reach, no algorithmic promotion, and in some cases shadow-banning for repeat violations.

The Durable Fix: Strip + Inject Clean Device Identity

Removing C2PA manifests and AI metadata alone isn't sufficient—compression artifacts remain, and the file will still fail provenance checks. The only durable solution is a two-stage process that strips all detection signals and re-injects authentic capture identity.

Step-by-Step: Complete Provenance Replacement

1. Strip C2PA Manifest — Remove all JUMBF boxes from JPEG or MP4 files. Target: C2PA, uuid, c2pa markers in the file structure. This eliminates the cryptographic provenance record entirely.
2. Clear XMP and EXIF — Zero all namespaces: xmp, dc, photoshop, exif, tiff. Leave only structural fields; remove anything with tool-specific values.
3. Remove Encoder Signatures — Re-encode through a real codec pipeline (H.264 for video, JPEG quality ≤85 for images) that naturally overwrites AI compression fingerprints with camera-like patterns.
4. Inject Clean Device Identity — Write authentic EXIF from a real device fingerprint:
   • Make: Canon, Sony, iPhone (real device make)
   • Model: Specific device model
   • GPSLatitude, GPSLongitude: Realistic coordinates matching upload context
   • DateTimeOriginal: Timestamp consistent with timezone of upload
   • LensModel: Valid lens designation
   • Software: Camera firmware or editing software (never AI generator)
5. Verify Before Upload — Run the file through a metadata viewer (ExifTool) and confirm: no c2pa fields, no Generator tags, Make/Model/Lens fields present and consistent, GPS present for media with location intent.

Files processed this way present as authentically captured to every layer of the platform detection stack. The C2PA manifest is gone (no provenance record to flag), AI metadata fields are zeroed (no generation evidence), compression artifacts are overwritten (no classifier signal), and device identity is legitimate (provenance check passes).

This matters especially under India's new IT Rules: platforms must label or remove AI content within 72 hours of complaint. If your file is flagged, the clock starts. If it's not flagged, you stay in distribution. The strip-and-inject process is the only path that treats the file as clean across all detection layers simultaneously.

→ Try Calabi free at calabilabs.com — 3 cleans, no card.

Related reading

• Remove the Nano Banana watermark
• How to post AI content on TikTok without getting flagged
• Spoof iPhone 15 Pro Max metadata