Janjivan Bureau / New Delhi : In a bid to address privacy concerns, the Unique Identification Authority of India on Wednesday introduced ‘Virtual ID’—an identification that an Aadhaar-card holder could generate from its website instead of using the 12-digit identification number.
The new system—introduced days after renewed concerns over privacy after a report by The Tribune pointed to security breach in the UID system—will give users the option of not sharing their 12-digit Aadhaar number for purposes such as SIM verification.
The Virtual ID is a random 16-digit number strung with biometrics of the user that would give authorised agencies such as mobile companies limited details such as name, address and photograph—enough for any verification.
Officials said a user can generate as many Virtual IDs as he or she wants. The older ID gets automatically cancelled when a new one is generated.
The Unique Identification Authority of India (UIDAI) has also introduced the concept of ‘limited KYC’, under which it will only provide need-based or limited details of a user to an authorised agency that is providing a particular service, such as telecommunication companies.
The Virtual ID will be a temporary and revocable 16-digit random number mapped to a person’s Aadhaar number, and the Aadhaar-issuing body will start accepting it from March 1, 2018.
From June 1, 2018, it will be mandatory for all agencies that undertake authentication to accept the Virtual ID from their users.
Agencies that do not switch to the new system by the deadline will face financial disincentives.
“Aadhaar number holder can use Virtual ID in lieu of Aadhaar number whenever authentication or KYC services are performed. Authentication may be performed using the Virtual ID in a manner similar to using Aadhaar number,” a UIDAI circular said.
The move aims to strengthen the privacy and security of Aadhaar data. The development comes days after a report by this paper showed how demographic and personal details stored under Aadhaar could be leaked for a price.
Users can go to the UIDAI website to generate their Virtual ID, which will be valid for a defined period of time, or until the user decides to change it.
They can give this Virtual ID to service agencies along with the fingerprint at the time of authentication. Since the system generated Virtual ID will be mapped to an individual’s Aadhaar number itself at the back end, it will do away with the need for the user to share Aadhaar number for authentication.
It will also reduce the collection of Aadhaar numbers by various agencies.
According to the UIDAI, agencies that undertake authentication would not be allowed to generate the Virtual ID on behalf of Aadhaar holder.
The UIDAI is instructing all agencies using its authentication and eKYC services to ensure Aadhaar holders can provide the 16-digit Virtual ID instead of Aadhaar number within their application.
As many as 119 crore biometric identifiers have been issued so far and Aadhaar is required as an identity proof of residents by various government and non-government entities.
For instance, the government has made it mandatory for verifying bank account and PAN to weed out black money and bring unaccounted wealth to book. The same for SIM has been mandated to establish the identity of mobile phone users.