Frequently asked questions

What is OneID®?

OneID® allows you to quickly and securely prove your age or identity using data already verified by your mobile network or bank in just a few clicks, within seconds.

How does OneID® work?

The strong checks banks and mobile networks perform on the identity data provided by customers make them reliable data sources. The OneID® API securely connects to these reliable data sources and uses the open banking rails to share the identity information directly with the business. The information will only be shared with your permission and is never stored. 

In addition, OneID® also lets you use a photo ID to prove your age or identity.  

Where can I use OneID®?

The short answer is anywhere you see the OneID® logo. More and more places are adding OneID® all the time.

Why should I use OneID®?

OneID® protects your privacy and shares only the data required to access a service. For example, if only your age is needed by a website, OneID® shares only that data, maintaining your anonymity. You don’t need to scan your face or any documents, making it discreet, easy and instant.

How secure is OneID®?

OneID® has implemented three key features to ensure your data stays between you and the platform you consent to share your data with:

  • Double encrypting your data, so that no one other than the website you want to access, not even OneID, can view your data.
  • Securing your data on your device with the OneID® wallet. If you enable a passkey with Face ID or fingerprint, no one else can pretend to be you and use your device to access your online accounts.
  • Using the bank’s strong customer authentication, when using bank-verified data, to authenticate access to your age or identity details. 
Is OneID® government-certified and regulated?

Yes, we are certified as a reusable digital identity service provider under the UK Government's Digital Identity and Attributes  Trust Framework (DIATF). We are also approved and regulated by the Financial Conduct Authority as an Account Information Service Provider and are certified by the Age Check Certification Scheme (ACCS)- compliant with PAS1296:2018.

Which regulations are you complying with?

OneID® is a UK government-certified digital identity and age assurance service provider. It’s certified to provide ID checks for the Know Your Customer (KYC) process, anti-money laundering (AML) checks, Right to Work and Disclosure and Barring Services.

OneID®’s age verification measures meet the Online Safety Act’s requirements laid out by Ofcom. We also meet the interoperability, reusability and data orchestration requirements set out by the Data (Usage and Access) Bill. 

Are you storing any personal information about me?

We just transfer the data you consent to, to companies you trust. We do keep a tokenised record of your consent, but not the personal data itself.

Who are you sharing my personal data with?

No one other than you and the business you consent to share your data with can see the actual results of the check. Even OneID® only stores a tokenised record of the data exchange. OneID® never accumulates user data or shares it with anyone without your expressed consent during the verification process.

How is an individuals personal data protected by OneID®?

At OneID®, we put data privacy at the heart of our products and have designed OneID® to ensure that no personal data is ever stored when a consumer uses it. When they agree to share personal data we send it directly from the bank to the business. OneID® keeps a record of what data was sent but never the actual data itself. So when a consumer agrees to share their name and address we know that’s what was agreed, but we don’t keep a record of the data itself.

Where does OneID® store its data?

OneID® keeps a record of all transactions in Google Cloud Platform (GCP) in the UK regions. We never send data outside of the UK.

What personal information is shared with the business?

 Only the information required to gain access or sign up to a service is ever shared with the business, with your consent. So if the business just needs to know you are over 18, only that will be shared with them and not any other identifiers.

How long is my data stored, and can I request deletion?

OneID® does not hold any personal data about you, we do however keep your phone number as a unique identifier for your account. If you wish to delete your account you can contact us at askus@oneid.

What is the Privacy Notice associated with using OneID®?

You can find OneID®'s Privacy Notice here.

Do I have to create a OneID® account?

Registering for a OneID® account or a OneID® Wallet has two benefits:

  1. Links your data and device to you using your Face ID or fingerprint, meaning no one else can use your photo or ID document to pose as you.
  2. Instant access to any platform. Once you’ve verified your data (your age, for example) with one platform and saved it to your OneID® wallet, you can prove it in an instant with any business that uses OneID®.

But that said, creating a OneID® account is purely optional, and you can access online services using OneID®’s one-off journeys.

How long does it take to create a OneID® account or Wallet?

Creating a OneID® account takes just a few seconds and can be done in the same journey as you verify yourself.

It’s not a must to create an account to use OneID®. Anyone with a mobile phone or an online banking account can use OneID® to prove their details in seconds.

Do I need to verify my age or identity every time?

Certain regulations, like the UK’s Online Safety Act, require businesses to verify the age of their users every time they are on their platform. However, you can cut the verification time down to three seconds, if you have registered for a OneID® Wallet.

What verification methods are available?

OneID® gives you the flexibility to use five verification methods to prove your identity or age. These are: bank verification, mobile verification, government ID verification, global eID solutions, and OneID® Wallet. You can use any of these methods, as long as the website you want to access supports it.

Why do I need to log in to my bank online with OneID®?

OneID® lets you consent to securely share information between your bank and companies you trust. To access that information, we need to connect to your bank.

OneID® also lets you use your mobile number or a government-issued ID for specific instances, and as required by the service you want to access.

Why can't I see my bank listed on OneID®?

OneID® has partnered with many of the major UK banks, but not all banks are currently available. We are working hard to include other banks as soon as possible.

What is Open Banking?

Open Banking is a secure way for third parties to build applications and services using the UK financial system.

Do I pay a fee for using OneID®?

No. OneID® is free for consumers to use.

What does OneID® do to make sure it's accessible to everyone?

 OneID® continually works to identify the most widely accessible, reliable and secure data sources that people can use easily from anywhere. Our bank-based verification can be used by over 95% of UK adults. We also offer mobile verification and have been adding like-minded eID providers across Europe –increasing the ways and places in which people can access OneID®

Does OneID® have a Social Benefit Policy?

We passionately believe in the wider social benefits of OneID® and as such have a governance commitment to support and fund a Social Benefit Trust, with a progressively defined portion of profits promoting wider social benefit. The OneID® Social Benefit Trust has a governance remit to promote wider social benefit by charitable giving.

What are the benefits of signing up to the Trust Framework?

There are many benefits to signing up, such as only having to sign one contract to connect to the network established under OneID®. Please contact us to find out more.

What anti-fraud measures are in place?

OneID® only uses data sources that are mandated to conduct strong KYC checks on their customers, like banks and mobile networks. Enabling the reuse of this pre-verified data, which is closely monitored for irregular practices and fraud, minimises the possibility of using AI-generated synthetic ID and deepfakes to commit fraud.

In addition to this, OneID® does not create a honeypot of user data, which could be stolen and misused.

What happens if the check fails?

If you are unable to prove your age you will not be able to buy goods or access websites that are restricted to those that are over 18.

If you like our FAQs, join our newsletter below for regular updates on OneID

 

Subscribe to our newsletter oneid

Keen on finding out more about the universe of OneID?
Subscribe to our newsletter!