India’s Aadhaar has emerged as the world’s largest biometric identification system, with nearly 134 crore active users and over 17,000 crore authentication transactions completed so far, the government informed Parliament.
Minister of State for Electronics and IT Jitin Prasada shared the data in a written reply in the Lok Sabha.
Aadhaar Key to Digital Identity Verification
The Aadhaar system, operated by the Unique Identification Authority of India (UIDAI), plays a crucial role in enabling identity verification for service delivery across sectors.
The minister said UIDAI provides authentication services to authorized entities, allowing verification through:
- One-Time Password (OTP)
- Fingerprints
- Iris scans
- Facial recognition
- Demographic details
AI and Machine Learning Power Face Authentication
The Aadhaar-based facial authentication system is powered by Artificial Intelligence (AI) and machine learning technologies, ensuring accurate and efficient identity verification.
Only authorized organizations can access Aadhaar authentication services by registering as:
- Authentication User Agencies (AUAs)
- KYC User Agencies (KUAs)
in compliance with the provisions of the Aadhaar Act.
Strong Data Security and Privacy Measures
Highlighting data protection, the minister said that Aadhaar has been designed with robust privacy safeguards, including:
- Encryption of demographic data both at rest and in transit
- Legal restrictions on data collection, storage, and usage
Authentication logs are retained by AUAs and KUAs for two years, with additional storage of up to five years before deletion. Aadhaar holders can access these logs for grievance redressal.
Multi-Layered Audit Framework in Place
To ensure system integrity, UIDAI follows a three-tier audit framework, including:
- Self-compliance audits
- Annual information security audits
- Governance, Risk, Compliance, and Privacy (GRCP) audits
Standard operating procedures also mandate:
- User consent before authentication
- Purpose-specific use of data
- Secure storage practices
- Use of certified devices
- Prohibition on storing biometric data by entities
Data Stored Within India
The government reiterated that Aadhaar data is stored and processed within India, with strict safeguards in place to prevent any misuse or violation of norms.
