We run a telecalling company and provide company-owned Android smartphones to employees. We need a secure, legal, and transparent Mobile Device Management (MDM) solution with an admin web/ backend to manage and monitor company devices. The solution must respect user privacy, require employee consent where applicable, and comply with Android Enterprise best practices. Key Requirements / Features: Device Enrollment & Management Support Android Enterprise (Device Owner enrollment for company-owned devices; Work Profile if needed). Easy onboarding (QR code or zero-touch enrollment options). Admin Web Portal / Backend Manage devices (list, status, last seen, model, OS version). Enforce security policies (screen lock, minimum OS version, passcode requirements). Remote actions: lock device, wipe device (factory or selective wipe), restart, push updates. Send company notifications/messages to devices (as app notifications or company SMS via a legal gateway). View device compliance reports and app inventory. App Control / Kiosk Mode Apps should not be displayed. Access to all apps, including WhatsApp and Gallery. Google protection is also provided. Ability to whitelist/blacklist apps. Option to set Kiosk / Single-app mode for specific roles (restrict phone to allowed apps). Disable installation from unknown sources / block Play Store where needed. Monitoring & Reporting (Privacy-conscious) App usage statistics (time spent in allowed apps, app install/uninstall events). Location tracking while device is in use (only if employees consent; set retention policy). Audit logs of admin actions. No covert access: Do NOT implement secret access to personal messages, WhatsApp chats, private gallery, or any functionality that reads user personal data without explicit, lawful consent. Security & Compliance Implement secure authentication for admin portal (2FA). Data encryption in transit & at rest for stored device metadata. Comply with applicable privacy laws (please propose retention periods, consent flows). User Experience Employee app on device to show device status, policy details, and to provide/withdraw consent where applicable. Clear admin messaging templates so employees receive company notifications as official messages (no spoofing). Documentation & Handover Full technical documentation, deployment guide, and admin user manual. Source code delivery (or configuration if using commercial EMM), CI/CD instructions. Testing & Support Deliver test plan and perform device tests across popular Android versions (Android 10–14+ recommended). Support period for bug fixes (define duration). Preferred Tech Stack (suggested): Android native (Kotlin) for device agent app (or make use of Android Enterprise APIs). Backend: Node.js/Express or Django/Flask (your choice) with PostgreSQL. Admin UI: React or Vue. Hosted on AWS/GCP/Azure (specify infra) with HTTPS and proper security groups. Deliverables: Android Device Agent app (source + signed APK). Admin Web Portal + Backend (source + deployment scripts). Documentation: architecture, deployment, user guides, test reports. Support for initial rollout (number of devices to be specified).