Authority; (b) shall not collect, use or store Aadhaar number or biometric information of any individual forany purpose or share offline Aadhaar data with
requesting entity.—
(1) A requesting entity shall ensure that: (a) the core biometric information collected from the Aadhaar number holder is not stored, shared orpublished ... purpose whatsoever, and no copy of the core biometric information is retained withit; (b) the core biometric information collected is not transmitted over a network
same shall be matched with the OTP generated by the Authority. (c) Biometric-based authentication: The Aadhaar number and biometric information submitted by an Aadhaar ... number holder are matched with the biometric information of the said Aadhaar number holder stored in the CIDR. This may be fingerprints-based or iris
AADHAAR (AUTHENTICATION AND OFFLINE VERIFICATION) REGULATIONS, 2021
7. Capturing of biometric information by requesting entity—
(1) A requesting entity shall capture the biometric information ... Aadhaar number holder using certified biometric devices as per the processes and specifications laid down by the Authority. (1a) All biometric devices used for authentication
Section 11 in AADHAAR (AUTHENTICATION AND OFFLINE VERIFICATION) REGULATIONS, 2021
11. Biometric locking.—
(1) The Authority may enable an Aadhaar number holder to permanently lock ... biometrics andtemporarily unlock it when needed for biometric authentication. (2) All biometric authentication against any such locked biometric records shall fail with a “No” answerwith
requesting entity which ismapped to Aadhaar number and necessary demographic and / or biometric information and/ or OTP fromthe Aadhaar number holder, the client application shall
provide digitally signed e-KYC data to the Aadhaar number holder through biometric or OTP authentication, subject to payment of such fees and processes
authentication facility, which may be carried out only using OTP and/ or biometric authentication modes as specified in regulation
