The Unique Identification Authority of India (UIDAI) has pressed for a criminal complaint against Qarth Technologies, an OLA promoted company and also it’s co-founder Abhinav Srivastava of developing a mobile application and obtaining details about the Indian Citizens enrolled with UIDAU for Aadhaar, without authentication. Engineer Abhinav, whose startup was taken up by Ola, has been named in the FIR for individually constructing an application which supposed to retrieve Aadhaar enrolment information with title, Aadhaar ID as input.
The Aadhaar project was already under criticism for infringing on the right to privacy of the citizens, and now numerous such instances where authority site leaked people’s 12-digit Aadhaar enrollment ID numbers have mounted concerns as these defects could allow it to remain vulnerable allowing, it’s misuse and crimes like identity theft.
The engineer, Abhinav Srivastava, was accused of illegally obtaining the Aadhaar database and sources state that how he did it might entail either the collusion of individuals who had authorised access or a hack. As per the FIR, accessing secure data from the Aadhaar database and leaking information is an offence under the Aadhaar (Targeted Delivery of Financial and other subsidies, Benefits and Services) Act 2016 and Information Technology Act, 2000.
Srivastava has been slapped with a FIR under sections of this Aadhaar act that outlaws distribution and access of Aadhaar information, and segments of the Information Technology behave like Section 66 of Information Technology Act, which deals with hacking !
UIDAI official said the database is very secure. This seems to have happened at the level of the Authentication User Agency or e-KYC User Agency. He also added, we encounter malpractice cases, where some false documents have been submitted. This is the first such technical case.