Rwanda plans to start issuing digital identity (ID) cards in the next three years.
The proposed IDs will not only provide for the identification of persons, but also their authentication, by using technologies like biometrics, QR codes or random number tokens.
The parliament has already adopted the relevance of the draft law regarding this development, and it is expected that in the near future, its bill will be analysed by the responsible standing committees of the Lower House.
ALSO READ: Rwanda’s population passes 13 million
In this article, The New Times, takes a look at six things you may need to know about the proposed digital ID.
Will involve the use of more biometrical data
The proposed digital ID will use more biometrical data, ranging from the traditional fingerprints to iris scans.
It will also entail general identification information including names, gender, date of birth, place of birth, marital status, email address and phone numbers if any, and so on.
In case some of the biometrical data required is not available, for example due to disability, only obtainable biometrics data will be captured.
Biometric data will be collected from children as young as five
According to the proposed law, when a child is at least five years old, their complete biometrics data will be captured for the digital ID. Once the child turns 16, their complete biometrics data will be re-collected, the proposed law says.
Can be authenticated online
Since the ID can be used for transactions and other services, it will be possible to authenticate it both online and offline.
"An entity requesting online authentication does so through secured connectivity,” the proposed law reads.
During online authentication, data including biometrics data or a random token number generated by the ID agency as a unique personal identifier, can be used to validate the identity of the user.
It observes data privacy, security measures
"The data in the digital ID registry are classified in a manner that allows safeguards for data privacy, security, access control, and change management,” the proposed law reads.
"The processing of data of a person registered in the SDID system and all related matters are done in accordance with relevant laws in relation to protection of personal data and privacy,” it adds.
You don’t need to carry your digital card
A person registered into the digital ID registry is not required to carry their card.
The digital ID number, the randomly generated token or biometrics of a person, as authenticated through the digital registry system, are valid and accepted, regardless of the absence of an ID card.
However, the presentation of a digital ID card to its number does not constitute sufficient proof of identity until proper authentication, which involves the use of biometrics, is established.
People can request for deactivation of their cards
The government agency in charge of the digital ID may deactivate its number on grounds including, a deactivation request by the holder.
A person whose digital ID number is deactivated surrenders his or her ID card to the agency. A deactivated number must not be assigned to another person, according to the proposed law, and a person with a deactivated number must not be given a new one, but rather will have the former one reactivated.