Section 15 in AADHAAR (AUTHENTICATION AND OFFLINE VERIFICATION) REGULATIONS, 2021
15. Use of Yes/ No authentication facility.—
(1)A requesting entity may use Yes/ No authentication facility provided by the Authority for verifying theidentity of an Aadhaar number holder for its own use or on behalf of other agencies.(2)A requesting entity may permit any other agency or entity to perform Yes/ No authentication by generatingand sharing a separate license key for every such entity through the portal or any other mechanism providedby the Authority to the said requesting entity. For the avoidance of doubt, it is clarified that such sharing oflicense key is only permissible for performing Yes/ No authentication, and is prohibited in case of e-KYCauthentication.(3)Such agency or entity:a. shall not further share the license key with any other person or entity for any purpose; andb. shall comply with all obligations relating to personal information of the Aadhaar number holder,data security and other relevant responsibilities that are applicable to requesting entities.(3A)AUAs/KUAs/Sub-AUAs/Sub-KUAs shall use their client application for Aadhaar authentication whichshall be digitally signed by the requesting entity.(4)It shall be the responsibility of the requesting entity to ensure that any entity or agency with which it hasshared a license key, complies with the provisions of the Act, regulations, processes, standards, guidelines,specifications and protocols of the Authority that are applicable to the requesting entity.(5)The requesting entity shall be jointly and severally liable, along with the entity or agency with which it hasshared a license key, for non-compliance with the regulations, processes, standards, guidelines and protocolsof the Authority.
