The Unique Identification Authority of India (UIDAI) on Tuesday issued a set of guidelines to Offline Verification Seeking Entities (OVSEs) highlighting usage hygiene issues, better safety mechanisms at user levels and ways to enhance residents’ trust while using Aadhaar voluntarily for lawful purposes.
"Entities have been informed to perform verification of Aadhaar after explicit consent of the Aadhaar number holder. These entities need to be courteous to residents and assure them about the security and confidentiality of their Aadhaar while conducting offline verification," said a statement from the UIDAI.
OVSEs have to maintain the log/record of the explicit consent received from residents for any future audit by UIDAI or any other legal agency thereof.
UIDAI has also asked OVSEs to verify Aadhaar via the QR Code present on all four forms of Aadhaar (Aadhaar letter, e-Aadhaar, m-Aadhaar and Aadhaar PVC card) instead of accepting Aadhaar in physical or electronic form, as a proof of identity.
Entities have been urged to ensure that no services are denied to any resident for refusing to or being unable to undergo offline verification of Aadhaar, provided the resident is able to identify himself/ herself through other viable alternatives. It has been underlined that OVSEs need to provide residents viable alternative means of identification in addition to Aadhaar, for rendering service.
Verification entities generally should not collect, use or store Aadhaar number of the resident after having conducted offline verification of Aadhaar, UIDAI has informed OVSEs. Post verification, if the OVSE finds it necessary for any reason, to store a copy of Aadhaar, the OVSE must ensure that the Aadhaar number is redacted/masked and irretrievable.
In case they notice any misuse of information, verification entities need to inform UIDAI and the resident concerned within 72 hours. UIDAI has cautioned OVSEs not to perform offline verification on behalf of any other entity or person and ensure full cooperation to the authority or law enforcement agencies in case of any investigation involving misuse of Aadhaar, the statement said.
Offline verification is the use of Aadhaar for carrying out identity verification and KYC processes locally, without connecting to the Central Identities Data Repository of UIDAI. The organisations conducting offline verification of an Aadhaar number holder for a lawful purpose are called OVSEs, the statement said.