Aadhaar (Sharing of Information) Regulations, 2016 · II — Restrictions On Sharing Of Identity Information
Regulation 4 Sharing of information by a requesting entity
(1) Core biometric information collected or captured by a requesting entity from the Aadhaar number holder at the time of authentication shall not be stored except for buffered authentication as specified in the Aadhaar (Authentication and Offline Verification) Regulations, 2021, and shall not be shared with anyone for any reason whatsoever.
(2) The identity information available with a requesting entity:
(a) shall not be used by the requesting entity for any purpose other than that specified to the Aadhaar number holder at the time of submitting identity information for authentication; and
(b) shall not be disclosed further without the prior consent of the Aadhaar number holder.
(3) A requesting entity may share the authentication logs of an Aadhaar number holder with the concerned Aadhaar number holder upon his request or for grievance redressal and resolution of disputes or with the Authority for audit purposes, as specified in regulation 18 of the Aadhaar (Authentication and Offline Verification) Regulations, 2021.
Source: Wayback Machine snapshot of UIDAI's original publication.
(1) Core biometric information collected or captured by a requesting entity from the Aadhaar number holder at the time of authentication shall not be stored except for buffered authentication as specified in the Aadhaar (Authentication) Regulations, 2016, and shall not be shared with anyone for any reason whatsoever.
(2) The identity information available with a requesting entity:
(a) shall not be used by the requesting entity for any purpose other than that specified to the Aadhaar number holder at the time of submitting identity information for authentication; and
(b) shall not be disclosed further without the prior consent of the Aadhaar number holder.
(3) A requesting entity may share the authentication logs of an Aadhaar number holder with the concerned Aadhaar number holder upon his request or for grievance redressal and resolution of disputes or with the Authority for audit purposes, as specified in regulation 18 of the Aadhaar (Authentication) Regulations, 2016.