No data breach from UIDAI’s data repository: RS Prasad

Strengthening of security of data is an ongoing process and all possible steps are being taken, said Ravi Shankar Prasad

GN Bureau | February 8, 2018


#RS Prasad   #UIDAI   #Lok Sabha   #Aadhaar   #Privacy  


The government maintains that there has been no breach of Aadhaar data.

“As on date, no incident of data breach has been reported from Central Identities Data Repository (CIDR) of Unique Identification Authority of India (UIDAI),” union minister Ravi Shankar Prasad informed parliament.

He said that UIDAI has a well-designed, multi-layered robust security system in place and the same is being constantly upgraded to maintain the highest level of data security and integrity. UIDAI has adequate legal, organizational and technological measures in place for the security of the data stored with UIDAI. Data Protection measures have also been mandated for the requesting entities and ecosystem partners to ensure the security of data.

Read: Aadhaar database: Not secure anymore?

The minister said that the government is fully alive to the need to maintain highest level of data security, privacy and is deploying the necessary technology and infrastructure. The architecture of Aadhaar ecosystem has been designed to ensure non-duplication, data integrity and other related management aspects of security & privacy in Aadhaar database. Additionally, various policies and procedures have been defined clearly which are reviewed and updated periodically, thereby, appropriately controlling and monitoring security of data.

Some of the security measures adopted by UIDAI are:

Information security policy has been established based on the ISO 27001:2013 standard. The policy covers all areas of Information Security such as Organization of Information Security, Asset management, Access control, Technical vulnerability management, Change management, Patch management, Encryption, Service continuity, Operations security, Communications security, Supplier security, Human resources security etc.

Chief Information Security officer has been appointed to drive Information security measures in UIDAI along with a dedicated security team to implement the various security processes and technology to ensure security of CIDR.

UIDAI-CIDR is ISO 27001:2013 certified since 2015 and since then undergoes through yearly surveillance audits from STQC.

GRCP-SP (Governance, Risk, Compliance, Performance service provider) has been appointed to perform periodic monitoring of the security of internal and external ecosystem.

The security audit of UIDAI is conducted by three separate entity viz. Internal, External (GRCP) and STQC on a periodic basis.

Periodic assessments are conducted for the ecosystem partners to ensure compliance on the Information Security policy.

Prasad went on to say that there are multiple layers of security at physical level in UIDAI Data Centres and is being managed by armed CISF personnel round the clock. Strengthening of security of data is an ongoing process and all possible steps are being taken in this regard.

The minister said that the Aadhaar Act, 2016 and subsequent regulations framed thereunder, have adequate safeguards. Sharing of information or seeding of Aadhaar information with the authorised agencies is governed as per the provisions of the Aadhaar Act 2016 which categorically states that no core biometric information, collected or created under the Aadhaar Act, shall be shared with anyone for any reason whatsoever; or used for any purpose other than generation of Aadhaar numbers and authentication under the Act. Also, Regulation 4(1) of the Aadhaar (Sharing of information) Regulations, 2016 provides that core biometric information collected or captured by a requesting entity from Aadhaar number holder at the time of authentication shall not be shared for any reason whatsoever.

He added that regulation 4(2) of the Aadhaar (Sharing of information) Regulations, 2016 provides that identity information available with a requesting entity shall not be used for any purpose other than that specified to the Aadhaar number holder at the time of submitting identity information for authentication and shall not be disclosed further without the prior consent of the Aadhaar number holder.

Any violation to the provisions of the Aadhaar Act, 2016 is a criminal offence.

Read: Aadhaar: On a sticky wicket

 

Comments

 

Other News

Budget creates the ground – now it’s time for these steps

On February 1, finance minister Nirmala Sitharaman announced the Union Budget. As Dr. Rajiv Kumar, the Pahle India Foundation chairman and former NITI Aayog vice chairman, succinctly summed up, “Budget 2023 is a consolidation of the gains over the years, and a positive step towards sustained economic

Should India look for another capital?

The Indian Metropolis: Deconstructing India’s Urban Spaces By Feroze Varun Gandhi Rupa, 840 pages, Rs 1,500 Feroze Varun Gandhi, a Member of Parliament from the BJP, has been a published poet. He is also a policy expert – he had published &

Railways’ freight earnings up by 16%

On mission mode, Indian Railways` Freight loading for first ten months of this financial year 2022-23 has crossed last year’s loading and earnings for the same month. On cumulative basis from April 2022 to January 2023, freight loading of 1243.46 MT was achieved against last year&rsquo

BMC announces Rs 52,619.07 crore budget

Mumbai’s municipal commissioner and administrator Iqbal Singh Chahal on Saturday announced a Budget of Rs 52,619.07 crore for 2023-2024, an increase of 20.67% over a revised budget estimate of Rs 43607.10 crore for 2022-23. The overall budget size has doubled in five years. In 2017-18

Making sense of the ‘crisis of political representation’

Imprints of the Populist Time By Ranabir Samaddar Orient BlackSwan, 352 pages, Rs. 1105 The crisis of liberal democracy in the neoliberal world—marked by massive l

Budget: Highlights

Union minister of finance and corporate affairs Nirmala Sitharaman presented the Union Budget 2023-24 in Parliament on Wednesday. The highlights of the Budget are as follows: PART A     Per capita income has more than doubled to Rs 1.97 lakh in around

Visionary Talk: Amitabh Gupta, Pune Police Commissioner with Kailashnath Adhikari, MD, Governance Now



Archives

Current Issue

Opinion

Facebook    Twitter    Google Plus    Linkedin    Subscribe Newsletter

Twitter