Home  /  Daily Current Affairs  /  08-04-2022 / First Performance Review of UIDAI by CAG

First Performance Review of UIDAI by CAG

Posted on April 8, 2022 by admin1  459

In News 

  • The Comptroller and Auditor General (CAG) has pulled up the Unique Identification Authority of India (UIDAI) for “deficient data management” as data of Aadhaar card holders have not been matched with Aadhaar number even after 10 years in some cases.

Comptroller and Auditor General of India (CAG)

  • The Constitution of India provides for an independent office of the Comptroller and Auditor General of India (CAG).
  • He/she is the head of the Indian Audit and Accounts Department and is the guardian of the public purse and controls the entire financial system of the country at both the levels, the Centre and the States.
  • He shall be appointed by the President by warrant under his hand and seal.
  • It is his/her duty to uphold the Constitution of India and the laws of Parliament in the field of financial administration.

Major Issues highlighted by CAG 

  • Data-matching, errors: 
    • There are issues of data-matching, errors in authentication, and shortfall in archiving
    •  The data of Aadhaar card holders have not been matched with their Aadhaar number even after 10 years in some cases.
  • Authentication errors:
    • It has also criticised the absence of a system to analyse the factors leading to authentication errors, and said that even though UIDAI was maintaining one of the largest biometric databases in the world, it did not have a data archiving policy, which is considered “a vital storage management best practice”.
      • UIDAI provided Authentication services to banks, mobile operators and other agencies free of charge till March 2019, contrary to the provisions of their own Regulations, depriving revenue to the Government
  • Deduplication: 
    • The CAG registered instances of issuance of Aadhaars with the same biometric data to different individuals indicating flaws in the deduplication process and issue of Aadhaars on faulty biometrics and documents.
      • The ‘deduplication process’ remained vulnerable for generating multiple Aadhaar numbers and manual interventions had to be done to resolve the problem
  • Privacy and Safety concerns: 
  • The CAG has flagged that UIDAI has not ensured that the applications or devices used by agencies or companies for authentication “were not capable of storing the personal information of the residents, which put the privacy of residents at risk”.
  • The Authority had not ensured security and safety of data in Aadhaar vaults. They had not independently conducted any verification of compliance to the process involved.
  • Incomplete information:
    •  The UIDAI has not prescribed any specific proof, document, or process to confirm whether a person who is applying for Aadhaar has resided in India for the period specified by the Rules.
    • Therefore, “there is no assurance that all the Aadhaar holders in the country are ‘Residents’ as defined in the Aadhaar Act”
    • UIDAI generated Aadhaar numbers with incomplete information, which, along with the lack of proper documentation or poor quality biometrics, have resulted in multiple or duplicate Aadhaar cards being issued to the same person.
  • Delivery related issues: 
    • The UIDAI does not have adequate arrangements with the postal department, due to which a large number of Aadhaar cards were returned to the government after they could not be delivered to their intended recipients.

Suggestions /Recommendations 

  • The UIDAI should go beyond self-declaration, and “prescribe a procedure and required documentation other than self-declaration, in order to confirm and authenticate the residence status of applicants.
  • UIDAI needs to strengthen the Automated Biometric Identification System, so that generation of duplicate Aadhaar can be curbed at the initial stage itself.
  • UIDAI needs to establish alternate ways to determine the unique identity of children below five years.
  • UIDAI should frame a suitable data archival policy to mitigate the risk of vulnerability to data protection.
  • UIDAI may levy penalties on biometric service providers for deficiencies in their performance in respect of biometric de-duplication  and biometric authentication… agreements in this regard should be modified, if required.

About UIDAI 

  • UIDAI is a statutory authority established under the provisions of the Aadhaar (Targeted Delivery of Financial and Other Subsidies, Benefits and Services) Act, 2016 (“Aadhaar Act 2016”) on 12 July 2016 by the Government of India, under the Ministry of Electronics and Information Technology (MeitY).
  • It is responsible for Aadhaar enrolment and authentication, including operation and management of all stages of Aadhaar life cycle, developing the policy, procedure, and system for issuing Aadhaar numbers to individuals and performing authentication and the security of identity information and authentication records of individuals.
  •  The Aadhaar Act 2016 has been amended by the Aadhaar and Other Laws (Amendment) Act, 2019 .
    • As on 31st October 2021, the Authority has issued 131.68 crore Aadhaar numbers to the residents of India.
  • Objectives 
    • UIDAI was created to issue Unique Identification numbers (UID), named as “Aadhaar“, to all residents of India.
    •  The UID had to be (a) robust enough to eliminate duplicate and fake identities, and (b) verifiable and authenticable in an easy, cost-effective way. 
  • Vision
    • To empower residents of India with a unique identity and a digital platform to authenticate anytime, anywhere.
    • To provide for good governance, efficient, transparent and targeted delivery of subsidies, benefits and services, the expenditure for which is incurred from the Consolidated Fund of India or the Consolidated Fund of State to residents of India through assigning of unique identity numbers.
    • To develop policy, procedure and system for issuing Aadhaar number to residents of India, who request for the same by submitting their demographic information and biometric information by undergoing the process of enrolment.
    • To develop policy, procedure and systems for Aadhaar holders for updating and authenticating their digital identity.
    • To ensure security and confidentiality of identity information and authentication records of individuals.

Source :IE

 
Previous article AUKUS Alliance
Next article Atal Innovation Mission