"Biometric identification" in accordance with the Online Identification Ordinance and FM GwG
According to the Online Identification Ordinance and FM GwG, "biometric identification" may be used for remote identification. In the POSident module, FOTOIDENT chip and ID Austria are available as standard remote identification methods for this purpose.
POS FOTOIDENT and ID Austria support self/auto-identification as required by the Online Identification Ordinance in Austria.
Auto-identification procedures are also permitted in the context of KYC identifications, provided they comply with certain specified processes and functionalities. For example, customers in the finance sector can be identified in a legally compliant manner if there is an obligation for legitimization in accordance with FM GwG, e.g. for new customer onboarding at banks.
For remote identification in Austria, "biometric identification" is required in order to be legally compliant.
According to the Online Identification Ordinance (BGBLA 2021 II 455, dated 02/11/2021), the POSportal function FOTOIDENT may be used for identification in accordance with FM GwG. FOTOIDENT chip is the combination of photo identification and the reading of an ID document with an NFC chip, as has been used for some time in passports and now in newer ID cards.
A circular letter has now officially confirmed that identification using ID Austria FM is also AMLA compliant.
Advantages of FOTOIDENT and ID Austria for legitimization in the context of FM GwG:
- FM GwG compliant (according to Online-IDV of 02.11.2021).
- The security of the procedure is greatly increased
- The speed and flexibility of photo identification is maintained.
It may also make sense to use a stronger self-identification procedure for particularly critical use cases, such as the transmission of health data, financially motivated fraud situations, etc.
How FOTOIDENT chip works:
In addition to a photo identification (ID photo, selfie portrait and security check), the user reads the chip of their ID document (e.g. passport) with the NFC reader of their smartphone. The read and signed chip data is validated by the POSportal platform at a public trusted service.
This is how identification with ID Austria works:
In addition to a photo identification (ID photo, selfie portrait and security check), the user authenticates himself with his ID Austria account. The read and signed data is validated by the TPS platform at a public trusted service.
Digital/electronic identity, also known as digital/electronic identification or digital/electronic identification, refers to digital proof of identity of citizens or organizations. The identity of the user can be established via the eIDAS portal or via ID cards with an eID function. In Austria in particular, the ID Austria (full version) enables legally compliant identification in accordance with FM GwG and a qualified electronic signature in accordance with eIDAS. However, other EU countries can also be provided with their specific eID, provided they are notified at the eIDAS eID node.