Question NW3097 to the Minister of Home Affairs
17 October 2023 - NW3097
Roos, Mr AC to ask the Minister of Home Affairs
(1) Whether the data contained in the biometric databases of the (a) Home Affairs National Identification System and (b) Automated Biometric Information System is end to end encrypted when accessed by banks and other clients; if not, why not; if so, what are the details of the security systems and standards that are implemented in this regard; (2) Whether it is possible for clients to receive any data such as (a) fingerprints, (b) photo, (c) identity number, (d) full name and/or (e) any other personal information in any format that can be stored in a data store of their own; if not, why not; if so, what are the relevant details?
Reply:
1. Yes, the data contained in the biometric databases of the (a) Home Affairs National Identification System and (b) Automated Biometric Information System is encrypted. The security systems and standards that are implemented are HTTPS using TLSv1.2 and entrust digital certificates.
2. No, the client cannot store any data on their own. They can only do verification against DHA based on the request of the client.
END