Around 210 central and state government websites publicly displayed Aadhaar details such as names and addresses of some Aadhaar beneficiaries, the Unique Identification Authority of India has revealed in a reply to a RTI.
There has been a lot of controversy over the Aadhaar linkage since the Govt has asked banks and telecom companies to link Aadhaar with bank accounts and mobile numbers. A number of litigation have been filed in Supreme Court claiming that the Aadhar linkage is against the Right to Privacy. Also TV Mirror Now had reported serious flaws in Aadhaar System.
UIDAI said that it took note of the data leak and got the data removed from those websites. However It did not specify when the breach took place.
Aadhaar details have never been made public from/by UIDAI, it added. However, it was found that around 210 websites of central and state government departments including educational institutes were displaying the list of beneficiaries along with their name, address, other details and Aadhaar numbers for information of general public.
UIDAI issues a 12-digit unique identification number known as Aadhaar number which acts as a proof of identity and address anywhere in the country.
The central government is in the process of making Aadhaar mandatory for citizens to avail benefits of various social service schemes and has asked citizens to link Aadhaar number with bank accounts, PAN number and mobile numbers etc.
“UIDAI has a well-designed, multi-layer approach robust security system in place and the same is being constantly upgraded to maintain highest level of data security and integrity,” the RTI reply said.
The architecture of the Aadhaar system has been designed to ensure data security and privacy which is an integral part of the system from the preliminary design to the final stage, it said.
“UIDAI has a well-designed, multi-layer robust security system which is being constantly upgraded to maintain highest level of data security and integrity,” the RTI reply said.
Also the security audits are conducted regularly to strengthen security and privacy of data, the authority added.