CG Pay News

No Breach or Compromise has taken place in UIDAI servers

by Leave a Comment

Aadhaar: CIDR and Servers are Completely Safe and Fully Secure

No Breach or Compromise has taken place in UIDAI servers. The CIDR and people’s Aadhaar and biometric data remain safe and secure

Unique Identification Authority of India
Press Statement

17th April 2019

New Delhi: Unique Identification Authority of India (UIDAI) has dismissed the news reports about alleged theft of data of 7.82 crore residents from UIDAI’s Central Identities Data Repository (CIDR) which has been published in a section of media in connection with the news relating to the FIR filed against IT Grid (India) on the basis of a complaint by Telangana Police.

UIDAI said that it’s CIDR and servers are completely safe and fully secure and no illegal access was made to its CIDR and no data has been stolen from its servers.

UIDAI has filed a complaint on the basis of a report from Special Investigation Team (SIT) of Telangana Police that IT Grid (India) Pvt. Ltd has allegedly obtained and stored Aadhaar numbers of large number of people in violation of the provisions of the Aadhaar Act. Nowhere in the report, the SIT has found any evidence to show that the Aadhaar number, name, address, etc., of the people have been obtained by stealing them from UIDAI servers.

UIDAI clarified that service providers usually collect Aadhaar number, name, address, etc., directly from individuals for providing services. They are required under the Aadhaar Act and Information Technology Act to use these sensitive information only for the purpose for which such information has been collected and are not allowed to share further without the consent of the Aadhaar holders. If they violate the provisions of Aadhaar Act in collection of Aadhaar numbers from people, their storage, usage, and sharing, they are liable to be prosecuted under the Aadhaar Act.

UIDAI said that through the FIR, the police has been requested by UIDAI to investigate as to for what purpose the Aadhaar numbers were collected from the people by IT Grid (India) and being stored and used by the company and whether any provisions of Aadhaar Act have been violated. The alleged incident has nothing to do with UIDAI’s data and servers.

UIDAI explained that the alleged illegal storage and misuse of Aadhaar numbers by IT Grid (India) Pvt. Ltd are being wrongly projected by a section of media as if Aadhaar servers have been compromised. It is akin to a case if a company is found to be unauthorisedly storing bank account numbers of people, can one claim that the bank servers have been compromised? The answer will be obviously no. The company which is unauthorisedly storing bank account numbers of people will face prosecutions under relevant banking and Information Technology and data protection laws. Same is being done against IT Grid (India) in this case.

UIDAI further clarified that mere possession and storage of Aadhaar numbers of people, though may be an offence under the Aadhaar Act under some circumstances, does not put the Aadhaar holders under any harm in any manner whatsoever because for assessing any Aadhaar based services, biometrics or One Time Password (OTP) is also required. Just like somebody merely knowing the credit card number cannot harm the credit card holder because for using it one requires PIN as a second factor authentication. Similarly, merely knowing Aadhaar number does not put the Aadhaar holder to any risk because for using it, biometric or OTP is required as second factor authentication.

UIDAI said that it is absolutely clear from the above that no breach or compromise has taken place in UIDAI servers. The CIDR and people’s Aadhaar and biometric data remain safe and secure. People should reject the fear mongering and false news being propagated by few vested interests in this regard.

View Press Statement

FAQ for Pensioners Regarding Digital Life Certificate (DLC)

by Leave a Comment

FAQ for Pensioners Regarding Digital Life Certificate (DLC)

Frequently asked questions for Pensioners regarding Jeevan Pramaan / Digital Life Certificate (DLC)

What is Jeevan Pramaan/Digital Life Certificate (DLC) ?
Jeevan Pramaan is a biometric enabled Aadhaar-based Digital Life Certificate for pensioners. Jeevan Pramaan i.e DLC is generated for individual pensioner using his/her Aadhaar number and Biometrics.

How is this different from traditional Life Certificate issued by Govt Officers/ Agencies?
For Jeevan Pramaan (DLC) the pensioner is not required to present himself/ herself personally before the Pension Disbursing Officer. DLC does not have to be submitted physically to the Pension Disbursing Agency ( Bank/Post Office etc ) as it is available to them digitally and. is automatically processed by the Pension Disbursing Agency. Also each DLC has a unique id called the Pramaan-Id.

Is the Pramaan ID / Jeevan Pramaan i.e DLC valid for life ?
The Pramaan ID/Jeevan Pramaan is not valid for life. The validity period of the certificate is as per rules specified by the Pension Sanctioning Authority. Once the validity period is over a new JeevanPramaan Certificate i.e a new Pramaan Id needs to be obtained.

Who is eligible for Jeevan Pramaan i.e Digital Life Certificate ?
A pensioner whose Pension Sanctioning Authority (PSA) is onboarded on to JeevanPramaan is eligible for Jeevan Pramaan. List of onboarded PSA, can be found under ‘Circulars’ tab on the https://jeevanpramaan.gov.in portal.

From where can I obtain a JeevanPramaan i.e Digital Life Certificate
You can obtain a DLC from
1. various Citizen Service Centre (CSC ) located across India
2. office of Pension Disbursing Agencies (PDA) such as Post Office, Banks, Treasury etc
3. It can also be generated from home/any location on a Windows PC/Laptop( ver 7 & above) or Android Mobile ( KitKat & above ), for more details click here

What is required, if I want to generate DLC on my PC/Laptop/Mobile
1. A STQC certified Biometric Device is required.
2. ‘RD Service’ of the Biometric Device being used should be installed on the PC/Laptop/mobile.
3. The ‘JeevanPramaan Application’ has to be installed on your PC/mobile. It can be downloaded from the ‘Download’ tab from https://jeevanpramaan.gov.in portal.
4. An Internet Connection is required.

How can I find a Citizen Service Centre (CSC) ?
You can search nearest CSC by clicking on ‘Locate a Centre’ on https://jeevanpramaan.gov.in portal or alternately you can send SMS to 7738299899. The SMS body must start with keyword “JPL” and after space write your pin-code. e.g. JPL 110003 and send it to 7738299899.

What information is required to be provided by a pensioner to generate the Jeevan Pramaan?
The Pensioner has to provide Aadhaar Number, Name, Mobile Number and self declared Pension Related Information like PPO Number, Pension Account number, Bank details, Name of Pension Sanctioning Authority, Pension Disbursing Authority, etc. The pensioner has to also provide his/her biometrics either Iris or Fingerprint. Note : Incorrect information may lead to rejection of the DLC by the authorities.

What is the procedure for generating a JeevanPramaan from a CSC/office of PDA?
1. Pensioner visits a CSC or office of PDA
2. He/She provides the required information to the operator. The operator feeds/enters this information into the system i.e JeevanPramaan Application
3.The pensioner has to then provide his/her biometrics by placing his/her finger on the finger print scanner or eye in front of the Iris scanner.
4. On successful aadhaar based biometric authentication, JeevanPramaan is generated with a unique id called Pramaan Id.
5. An acknowledgement message quoting the Pramaan Id is sent as an SMS to the mobile number provided by the pensioner.
Note – The JeevanPramaan/DLC thus generated is subject to approval of the Pension Sanctioning/Disbursing Authority as provided by the pensioner.

Do I have to submit the Jeevan Pramaan i.e DLC to my bank/post office etc?
No, You do not have to submit the DLC to the bank/post office/pension disbursing agency. The DLC is automatically available to them electronically.

Can I get my Digital Life Certificate i.e JeevanPramaan downloaded online, after it is generated?
Yes, once your praman-id is generated, you can download the Digital Life Certificate by following the link https://jeevanpramaan.gov.in/ppouser/login.

How can I know the status of my Digital Life Certificate, whether it has been accepted/rejected ?
You need to download the DLC from the https://jeevanpramaan.gov.in portal to know the status.

I have received SMS on my mobile that my JeevaanPramaan is rejected, what should I do?
Contact your Pension Disbursing Agency. JeevanPramaan is rejected in case wrong particulars are provided by pensioner while generating the DLC. It is recommended that a new JeevanPramaan i.e Pramaan-ID be generated by providing all correct information and biometrics.

Is Electronic Jeevan Pramaan i.e DLC a must for the pensioner?
JeevanPramaan i.e DLC is an add on facility to the already existing ways of submission of Life Certificate.

What is the procedure for getting Aadhaar Number?
Contact nearest Aadhaar Enrolment Centre in your city for getting a Aadhaar Number. You can find permanent Aadhaar Enrolment Centres from UIDAI website https://appointments.uidai.gov.in

Is this certificate valid?
Yes, Digital Life Certificate is a valid certificate and recognized under the IT Act. The system benefits the pensioner from having to go before the Pension disbursing Authority to prove that he/she is alive.

In Any Case Mobile Number Will Not Be Disconnected – DoT and UIDAI

by Leave a Comment

In Any Case Mobile Number Will Not Be Disconnected – DoT and UIDAI
Not a single mobile phone faces disconnect threat, says DoT

The Department of Telecommunications (DOT) and Unique Identification Authority of India (UIDAI) in a joint statement today clarified that a few news reports in the media which state that 50 Crore mobile numbers, almost half of the total mobiles in circulation, are at the risk of disconnection, are completely untrue and imaginary. The news report tries to create unnecessary panic among mobile users by claiming that “they stare a prospect of disconnection if SIM cards procured on the basis of Aadhaar verification are not backed up by a fresh identification”.

The joint statement clarifies that the Hon’ble Supreme Court in its judgement in Aadhaar case has nowhere directed that the mobile number which has been issued through Aadhaar eKYC has to be disconnected. Therefore, there is absolutely no reason for panic or fear at all. People should not believe in such rumours. The Court has also not asked to delete all the eKYC data of telecom customers after 6 months. What the apex Court has asked that UIDAI should not keep authentication log for more than 6 months. The restriction is on UIDAI and not on the telecom companies. Therefore, there is no need for telecom companies to delete authentication logs.

So in the light of the verdict if anybody wishes to get her/his Aadhaar eKYC replaced by the fresh KYC, s/he may request the service provider for delinking of her/his Aadhaar by submitting fresh OVDs as per earlier DOT Circulars on mobile KYC. But in any case his mobile number will not be disconnected.

The Joint Statement said that what Supreme Court has done is that it has prohibited issue of new SIM cards through Aadhaar eKYC authentication process due to lack of a law. There is no direction to deactivate the old mobile phones.

The statement said that in fact the Department of Telecom and UIDAI are in a process to bring out a completely hassle-free and digital process for issuing new SIM cards through a mobile App which will be fully compliant of the Supreme Court judgement in Aadhaar Case. In the proposed process, live photograph of the person with latitude, longitude, and time stamp will be captured. The photo of her ID such as Aadhaar card, voter ID, etc., will be captured. The SIM card agent will be authenticated through OTP and SIM card will be issued. This process will be completely hassle-free and digital.

The statement reiterates that there is no need to panic or get confused by the reports that have appeared in the media.

Source: PIB

Aadhaar Linkage: UIDAI provides various modes of authentication

by Leave a Comment

Aadhaar Linkage: UIDAI provides various modes of authentication

Aadhaar Linkage

Aadhaar Authentication using fingerprint depends upon number of factors viz. quality of fingerprint, network connectivity, placement of finger etc. However, few senior citizens, persons engaged in manual labour or individuals with specific disabilities may face difficulties in fingerprint authentication.

UIDAI provides various modes of authentication viz Demographic, Biometric (Finger Print + IRIS), OTP and Multi-factor authentication. The Service Provider may choose suitable mode(s) of authentication.

As per para 14(1)(i) of Aadhaar (Authentication) Regulation 2016, a requesting entity has to implement exception-handing mechanisms and back-up identity authentication mechanisms to ensure seamless provision of authentication services to Aadhaar number holders.

Further, DBT Mission, Cabinet Secretariat vide their letter dated 19.12.2017 has issued guidelines on exception handling for use of Aadhaar in benefit schemes of Government, which inter-alia has stipulated the following mechanism in respect of cases where Aadhaar authentication fails:

i.Departments and Bank Branches may make provisions for IRIS scanners along with fingerprint scanners, wherever feasible.

ii.In cases of failure due to lack of connectivity, offline authentication system such as QR code bases coupons, Mobile based OTP or TOTP may be explored.

iii.In all cases where online authentication is not feasible, the benefit/ service may be provided on the basis of possession of Aadhaar, after duly recording the transaction in register, to be reviewed and audited periodically.

Aadhaar Card as Id Proof

by Leave a Comment

Aadhaar Card as Id Proof

Ministry of Home Affairs
Aadhaar Card as Id Proof

‘Prisons’ is a State subject as per entry 4 of List II of the Seventh Schedule to the Constitution of India. The administration and management of prisons is primarily the responsibility of respective State Government. However, the Ministry of Home Affairs has advised all States and Union Territories (UTs) to make use of Aadhaar for identification of visitors to ensure that facilities are being availed by authorized individuals. The Ministry of Home Affairs has also advised all States and UTs that prison inmates should also be Aadhaar seeded so that various aspects of day to day prison administration like production before court, return to prison, transport, health facilities, interview, free legal aid, parole, temporary release mechanism, educational/vocational training, release from prison etc. can be regulated by use of Aadhaar. These advisories are also available on Ministry’s website viz. www.mha.gov.in

This was stated by the Minister of State for Home Affairs, Shri Hansraj Gangaram Ahirin a written reply to a question in the Lok Sabha today.

Inclusion of Aadhaar in respect of Small Savings Schemes

by Leave a Comment

Last Date for Linking Aadhaar with Small Savings Schemes

F.No. 01/03/2015-NS
Ministry of Finance
Department of Economic Affairs
(Budget Division)

North Block, New Delhi
Dated: 1st January, 2018

1. The Deputy General Manager (Banking)
Reserve Bank of India
Public Debt Office, Post Box No. 15
Dr. Raghavendra Rao Road, Civil Lines
Nagpur-440001.
2. Shri Sachin Kishore
Deputy Director General (FS)
Department of Posts
Dak Bhawan, Sansad Marg,
New Delhi.

Subject: Inclusion of Aadhaar in respect of Small Savings Schemes.
Sir,
I am directed to refer to notifications having G.S.R. No. 1241 (E), 1242(E), 1243(E) and 1244(E), dated 29.9.2017, vide which Aadhaar number was prescribed as the unique identifier for the purposes of establishing the identity of an account holder.

The depositor was required to submit Aadhaar number at the time of opening of account/purchasing certificates. Further, that every depositor who has not given his Aadhaar number at the time of application for such deposit was to submit his Aadhaar number on or before the 31st day of December, 2017.

2. It has now been decided to extend the last date for submission of ‘Aadhaar’ number from 31st December, 2017 to 31st March, 2018.

3. This may be brought to the knowledge of all concerned.

Yours faithfully
sd/-
(Padam Singh)
Regional Director (Sr.)

View order
Authority: www.dea.gov.in

Fraud in linkage of Aadhaar with bank accounts and SIM cards

by Leave a Comment

Fraud in linkage of Aadhaar with bank accounts and SIM cards

The Department has received 20 complaintsof bank frauds involving Rs.7.65 lakhs connected with linking Aadhaar with bank accounts since 2015,as per details at Annexure. However, for customer protection, zero liability of a customer is assured vide Reserve Bank of India’s (RBI)circular dated 6th July, 2017 in all cases of a third party breach where the deficiency lies neither with the bank nor with the customer but lies elsewhere in the system and the customer notifies the bank within three working days of receiving the communication from the bank regarding the unauthorized transaction.On being notified by the customer, the bank shall credit (shadow reversal) the amount involved in the unauthorized electronic transaction to the customer’s account within ten working days from the date of such notification by the customer.
Further, the guidelines inter-alia addresses the following areas for safeguarding the customers while handling the cases of unauthorized electronic banking transactions:

I. Strengthening of systems and procedures
II. Reporting of unauthorised transactions by customers to banks
III. Limited liability of a customer
IV. Reversal timeline for zero liability/ limited liability of customer
V. Board approved policy for customer protection
VI. Burden of proof on banks
VII. Reporting and monitoring requirements
(c): The Banks have their grievance redressal policy and internal Grievance Redressal Mechanism for resolution of grievances and customer complaints displayed on their respective websites. In case of alleged unauthorised transactions, the case is investigated and settled as per the Standard Operating Procedures (SOP).

Out of 1.26 lakh overall grievances, 1.20 lakh have been disposed of during the period 1st January, 2017 to 28th December, 2017, leading to a settlement percentage of 95%.

(d):In terms of amendments to provisions of Prevention of Money Laundering – (Maintenance of Records) Rules, 2005 issued vide Gazette Notification G.S.R 538(E) dated June 1, 2017, it is mandatory to obtain Aadhaar for linking all bank accounts, insurance, pension, mutual funds and SIM cardsfor individuals who are eligible to enrol for Aadhaar.

This was stated by the Minister Shri Nusain Dalwai in a written reply to question in the Lok Sabha on 2.1.2018.

Extension of deadline till 31.3.2018 for submission of Aadhaar number

by Leave a Comment

Extension of deadline till 31.3.2018 for submission of Aadhaar number

Extension of deadline till 31.3.18 for submission of Aadhaar number, and Permanent Account Number or Form 60 by client to the reporting entity

After considering various representations received and inputs received from Banks, it has been decided to notify 31st March, 2018 or six months from the date of commencement of account based relationship by the client, whichever is later, as the date of submission of the Aadhaar number, and Permanent Account Number or Form 60 by the clients to the reporting entity. Necessary notification in this regard has been issued.

It may be recalled that earlier Under the provisions of Prevention of Money-laundering (Maintenance of Records) Second Amendment Rules, 2017, published in the Extraordinary Gazette of India vide G.S.R. 538 (E) dated 01.06.2017, it was provided that

i) In case the client, eligible to be enrolled for Aadhaar and obtain a Permanent Account Number does not submit the Aadhaar number or the Permanent Account Number at the time of commencement of an account based relationship with a reporting entity, the client shall submit the same within a period of six months from the date of the commencement of the account based relationship. Provided that the clients, eligible to be enrolled for Aadhaar and obtain the Permanent Account Number, already having an account based relationship with reporting entities prior to date of this notification, the client shall submit the Aadhaar number and Permanent Account Number by 31st December, 2017.

(ii) In case the client fails to submit the Aadhaar number and Permanent Account Number within the aforesaid six months period, the said account shall cease to be operational till the time the Aadhaar number and Permanent Account Number is submitted by the client. Provided that in case client already having an account based relationship with reporting entities prior to date of this notification fails to submit the Aadhaar number and Permanent Account Number by 31st December, 2017, the said account shall cease to be operational till the time the Aadhaar number and Permanent Account Number is submitted by the client.

Source: PIB

CBDT extends date till 31.3.18 for linking of Aadhaar with PAN

by Leave a Comment

CBDT extends date till 31.3.18 for linking of Aadhaar with PAN

Press Information Bureau
Government of India
Ministry of Finance

08-December-2017 12:21 IST

CBDT extends date till 31.3.18 for linking of Aadhaar with PAN

Under the provisions of recently introduced section 139AA of the Income-tax Act, 1961 (the Act), with effect from 01.07.2017, all taxpayers having Aadhaar Number or Enrolment Number are required to link the same with Permanent Account Number (PAN). In view of the difficulties faced by some of the taxpayers in the process, the date for linking of Aadhaar with PAN was initially extended till 31st August, 2017 which was further extended upto 31st December, 2017.

It has come to notice that some of the taxpayers have not yet completed the linking of PAN with Aadhaar. Therefore, to facilitate the process of linking, it has been decided to further extend the time for linking of Aadhaar with PAN till 31.03.2018.

EPFO introduces a new facility for its members to link their respective UAN with Aadhaar online

by Leave a Comment

EPFO introduces a new facility for its members to link their respective UAN with Aadhaar online

On the eve of Deepawali, Employees’ Provident Fund Organisation (EPFO) is pleased to introduce a new facility for its esteemed members having Universal Account Number (UAN) and other relevant details to link their respective UAN with Aadhaar online. This, in turn, would facilitate the members, a better and speedy EPFO services.

The facility has been made available at EPFO’s website www.epfindia.gov.in >> Online Services >> e-KYC Portal>> LINK UAN AADHAAR.

Using the facility, EPFO members can online link their respective UAN with Aadhaar. While using the facility, the member will have to provide his/her UAN. An OTP will be sent to his/her mobile linked with UAN. After OTP verification, the member will have to provide his/her Aadhaar Number. Another OTP will be sent to his/her mobile/email linked with Aadhaar. After OTP verification, if UAN details are matched with Aadhaar details, then UAN will be linked with Aadhaar. After linking, the EPFO member may avail online EPFO services linked with Aadhaar.