wordpress blog stats
Connect with us

Hi, what are you looking for?

IT Grids had Aadhaar data from other states too, including 2 crore records from Punjab: Reports

Aadhaar virtual id

The special investigation team (SIT) probing the IT Grids case has found that the company had Aadhaar records from “other southern states and a few states in north India” apart from 7.8 crore records from Andhra Pradesh and Telangana, The Hindu reports. These included at least 2 crore records from Punjab, per Telangana Today.

Earlier this month the Cyberabad police lodged an FIR against IT Grids Pvt Ltd, which operates the Telugu Desam Party’s Sevamitra app, after 7.8 crore Aadhaar records from Andhra Pradesh and Telangana were found on the firm’s hard disks. The FIR was based on a complaint filed by the UIDAI’s Hyderabad Regional Office. The complaint and the FIR noted that the IT Grids’ possession of extensive Aadhaar data likely meant that the data was sourced from either the Central Identities Data Repository (CIDR) or the State Resident Data Hub (SRDH). The investigation, which revealed the structure and size of the database and the fact that it contained Aadhaar Enrolment IDs (EIDs), further strengthened this suspicion.

However, UIDAI rejected this in a statement on April 17, contradicting the complaint filed by its own regional office. UIDAI said “the alleged incident has nothing to do with UIDAI’s data and servers”, which are “completely safe and fully secure”. It claimed the SIT had found no evidence to show that the data had been stolen from UIDAI servers, and that “the alleged illegal storage and misuse of Aadhaar numbers by IT Grids is being wrongly projected by a section of media as if Aadhaar servers have been compromised”. Whether or not UIDAI’s servers were compromised is a matter for investigators, but to say the case “has nothing to do with UIDAI data” contradicts the fact that the Aadhaar records of at least 9.8 crore people were indeed compromised, directly or indirectly. Meanwhile, UIDAI has launched a separate inquiry into the case through its Enforcement Directorate, which it constituted to inquire into issues related to data theft or breaches of the CIDR or SRDHs, reports Telangana Today.

Advertisement. Scroll to continue reading.

The SIT investigation also revealed that IT Grids was storing Aadhaar data on Amazon Web Services servers in the US, which violates Section 44 of the Aadhaar Act, we reported last week. Investigators “strongly suspected” that the firm illegally stored Aadhaar databases of a few others states apart from Telangana and Andhra Pradesh off-shore.

The charges against IT Grids

According to UIDAI’s complaint, IT Grids’ possession of the data and its storage on hard disks violated several provisions of the Aadhaar Act 2016 pertaining to sharing and usage of Aadhaar data under sections 38(g) and 38(h). The company was also booked under Section 40 (fine and imprisonment of up to 3 years for failing to inform Aadhaar holders of how their data was being used), Section 42 (fine and imprisonment of up to one year), Section 44 (contravention of the Act, committed outside India). IT Grids allegedly violated laws that bar UIDAI or any private agency handling CIDR data from revealing information stored on the CIDR. Under the Aadhaar Act, Aadhaar or biometric data can be used only to generate Aadhaar numbers or for authentication. The identity information and biometric data can be used for any other purpose only with the prior consent of the individual. Further, the complaint states, IT Grids’ “illegal access and possession” of Aadhaar data violates provisions of the IT Act, 2008, specifically Sec 72(A), Section 65 and Sec 66(8).

Written By

MediaNama’s mission is to help build a digital ecosystem which is open, fair, global and competitive.

Views

News

India and US come to terms on how to deal with the equalisation levy in light of the impending Global Tax Deal.

News

Find out how people’s health data is understood to have value and who can benefit from that value.

News

The US and other countries' retreat from a laissez-faire approach to regulating markets presents India with a rare opportunity.

News

When news that Walmart would soon accept cryptocurrency turned out to be fake, it also became a teachable moment.

News

The DSCI's guidelines are patient-centric and act as a data privacy roadmap for healthcare service providers.

You May Also Like

News

Google has released a Google Travel Trends Report which states that branded budget hotel search queries grew 179% year over year (YOY) in India, in...

Advert

135 job openings in over 60 companies are listed at our free Digital and Mobile Job Board: If you’re looking for a job, or...

News

Rajesh Kumar* doesn’t have many enemies in life. But, Uber, for which he drives a cab everyday, is starting to look like one, he...

News

By Aroon Deep and Aditya Chunduru You’re reading it here first: Twitter has complied with government requests to censor 52 tweets that mostly criticised...

MediaNama is the premier source of information and analysis on Technology Policy in India. More about MediaNama, and contact information, here.

© 2008-2021 Mixed Bag Media Pvt. Ltd. Developed By PixelVJ

Subscribe to our daily newsletter
Name:*
Your email address:*
*
Please enter all required fields Click to hide
Correct invalid entries Click to hide

© 2008-2021 Mixed Bag Media Pvt. Ltd. Developed By PixelVJ