1. About eID+

What is eID+?

eID+ is a smart-phone based digital identity solution developed by Procivis AG. Key identity information is authenticated by government authorities through a simple 3-step process. eID+ has been successfully tested and deployed with the Swiss authorities (Canton of Schaffhausen). A demo version is available on request.

What can I use eID+ for?

eID+ can be used as a secure and intuitive authentication tool for e-government and private sector services (e-banking, online shopping, etc.). It also allows to store official documents such as contracts or certificates (birth certificate, civil status certificate, criminal record, drivers license).

eID+ is an open API based platform upon which e-government services and applications can be built. Thus, the product can be used for a host of different applications including linkages to eHealth records, eKYC, eVisas, eBanking, eVoting, etc. based on the needs of the client.

Is eID+ running on blockchain?

Blockchain technology is evolving rapidly. Blockchain protocols, such as Ethereum, Neo or Hyperledger are almost all in a beta phase. Most governments have not yet setup their national blockchain infrastructure nor adapted national legislation which would allow to deploy a fully blockchain-powered digital identity solutions.

eID+ offers a pragmatic and evolutive solution to public and private sector entities interested in testing and gradually integrating blockchain technology in their digital identity management/ e-government.

The current version of eID+ offers the possibility to time-stamp the verified identity information and store it on blockchain as a cryptographic hash. In this way, the verified information is made tamper-proof. The solution also offers the possibility to store hashed records of official documents on a blockchain.

eID+ is compatible with all the major blockchain protocols (Ethereum, Neo, etc.). As blockchain technology evolves, eID+ will offer new blockchain features (such as electronic voting or transfer of digital assets, tokens and or currencies.).

Who can use eID+?

eID+ can be used by governments, NGOs and supranational organizations seeking to empower citizens with a privacy-respecting digital identity solution. The white-label solution can be easily customized (corporate identity, identity attributes required and functionalities such as digital signature, document management, etc.).

Is eID+ actually being used by governments?

Yes, eID+ is currently being used by the Swiss Canton of Schaffhausen. It offers access to approximately forty different e-government services.

I am a government representative and would like to deploy eID+. What are the next steps?

eID+ (and blockchain-technology) is no magic solution for e-government services. A clear use-case and scope definition are key for the successful deployment of eID+. Procivis AG has a highly experienced in-house team of business analysts, e-government, humanitarian/development and blockchain experts who can help you in critically evaluating and refining your business case. Please do reach out to us ([email protected])!

What are the advantage of eID+ compared to other digital identity solutions?

eID+ offers several distinct advantages:

Deployed and tested: Proven technology is combined with new and innovative elements (blockchain). Pilot projects are already under way and clients have been secured.

Government-authenticated: Government office authenticates ‘official data’ (name, date of birth, etc.) entered by user.

Cost effective and quick: White-label turn-key solution. Pilot version ready in 2-3 months. Working across public and private sectors.

User-owned data: Users decide which data they want to share and grant access to.

Mobile-phone based: No additional hardware/ cards required. Navigation similar to social media and e-banking.

Open APIs for innovation: Allows 3rd parties to build applications accessing eID+ data.

Blockchain-secured: Time-stamping and hashing of identity information in a tamper-proof manner.

Secure: Two-factor authentication and behavioural biometrics provide for highest level of security.

What is the difference between eID+ and SwissID?

SwissID is the name of the standardised digital identity for use across Switzerland offered by SwissSign AG. eID+ is a customizable white label solution which does not require a login and password. eID+ is also an open API based platform which allows third party innovators to build solutions and services upon, making it a foundation for an ecosystem of e-government and business services.

What is the difference between eID+ and VETRI?

eID+ is a tested and deployed solution aimed as a foundation for the delivery of e-government services and for trusted interactions between citizens, government authorities and private sector institutions.

VETRI is a fully self-sovereign digital identity solution which is currently being developed by Procivis AG and the VETRI Foundation. VETRI will consist of a mobile wallet for users to manage their digital identity and personal data as well as a web application (VETRI marketplace) for data consumers to buy and access that data. The proof of authenticity of the data stored on the VETRI wallet is stored as a hash on the blockchain, guaranteeing data consumers access to trustworthy user data. In the future, once VETRI has been launched, eID+ may be integrated into the VETRI ecosystem if requested by the client.

2. Data protection & security

What does ‘government approved data’ mean?

A user’s digital identity claims on eID+ are approved by the entity deploying the eID+ solution before a user can start using the eID+ app to access services. Usually these are government authorities, but depending on the use case, this may also be other entities such as humanitarian organizations.

Who can access my data?

The user enjoys granular control over the sharing of data and identity attributes on the eID+ ecosystem. Users may decide on a case-by-case basis what data is accessible and by whom through the application.

Can government authorities see which third-party services I am using?

The eID+ architecture is designed such that the usage of third-party services by users is not visible to the government.

What happens if I lose my mobile phone?

Like any other document you need to contact the authority office so that they can revoke the access granted to the lost ID. After that another identify can be issued following the standard procedure.

How does eID+ protect my data?

The eID+ app is secured with multi-factor authentication and biometrics. The user retains control over the identity attributes shared with service providers through the eID+ app. eID+ operates on a principle of sharing data on a “need to know” basis.

Is eID+ compatible with GDPR?

Yes. eID+ is pursuing the principle of “data protection by design and default”, required by the GDPR, by allowing users to store their personal data on their mobile devices, hence eliminating the danger of single point of failure of centralized servers. Users remain in full control over when and which information they wish to transmit at any time.

Can my account be hacked?

The eID+ app is secured with multi-factor authentication and biometrics. While in theory, one’s smartphone can be hacked, eID+ eliminates the risk of creating honeypots for hackers which allows them access to data about a large user base by limiting storage of sensitive data exclusively on the user’s device. Thus, the costs for hackers to break into one specific device may prove to be prohibitively high.