German eID.
Summary
eID is an electronic identity verification process that leverages German national electronic identity document capabilities to extract secure chip-based data through NFC readout technology.
Service Description
The IDnow eID verification module serves to prove the identity of natural persons (“users”) by means of an electronic proof of identity in accordance with § 18 of the German Identity Card Act (Personalausweisgesetz) by reading and transmitting relevant data from the electronic storage and processing medium (“chip“) of:
- The German National Electronic Identity Card (deutscher Personalausweis mit Online-Ausweisfunktion);
- The German Electronic Residence Permit Card in cheque card format (Aufenthaltstitel mit Online- Ausweisfunktion im Scheckkartenformat), and – optionally
- The EU/EEA Citizens Card in cheque card format (EU/EWR-Bürgerkarte mit Online-Ausweisfunktion)
(all together in the following “eID”); it allows the user, for example, to open new accounts.
In order to use the eID scope of functions to identify a user, a secure connection between the eID and IDnow is necessary. To establish this connection, the user must use a smartphone with NFC (Near Field Communication) interface to proceed with the process.
For the identification data to be transmitted and for the governmental authorization to read the chip to be verified, the user must enter his 6-digit personal PIN when prompted (note: the 5-digit transport PIN will need to be changed before first use). At no time will personal information such as the PIN, transport PIN or card data be stored in the app itself.
Key Capabilities
Product Configuration: Customers may configure the product in terms of:
Data Readout from eID Documents
For compliance purposes, IDnow eID uses a service provider (Diensteanbieter) in accordance with § 2 (3) German Identity Card Act, authorized by the Federal Administrative Office (Bundesverwaltungsamt) to request data by way of electronic proof of identity within the meaning of § 21 of the German Identity Card Act to carry out the electronic proof of identity.
- Data fields extracted in accordance with § 18 (3) of the German Identity Card Act:
- First name
- Last name
- Date of birth
- Place of birth
- Address
- Validity period
- Nationality
- Type of document
- Service- and card-specific identifier
Note: Only data visible on eID documents can be read out (except for the electronic fingerprint).
NFC (Near Field Communication) Technology
- Radio Frequency Identification (RFID) chip embedded in eID documents reads and transmits identification data
- NFC function communicates with eID chip via encrypted channel
- User holds eID document to mobile device following app-guided instructions
- Smartphone NFC interface acts as card reader (activation required)
- • NFC interface location: back of device (middle to upper area for most smartphones; upper area for iPhones)
Identification Documents
- Supported eID documents with activated online identification function:
- German National Electronic Identity Card (deutscher Personalausweis mit Online-Ausweisfunktion)
- German Electronic Residence Permit Card in cheque card format (Aufenthaltstitel mit Online-Ausweisfunktion im Scheckkartenformat)
- EU/EEA Citizens Card in cheque card format with online identification function (optional)
- Standard Data Retention and Deletion
- Standard data retention: chip-derived data and process records made available to Customer and unless otherwise agreed in writing; deleted from production system within 60 days and from backup within 30 days
- Extended data retention (optional): retention up to 90 days upon separate request
Optional Modules and Configurations
IDnow eSign (contract-signing)
Remote electronic signature process in accordance with eIDAS regulation supporting Qualified Electronic Signature (QES). Enables seamless digital signing of documents after required identity verification, with QES carrying the same legal weight as a handwritten signature.
Requirements
- Compatible only with pre-certified product configurations
- Document format: PDF only
- Evidence data storage required in accordance with eIDAS regulation
Personal data collected for QES certificate (minimum)
- Full name
- Identification number
Additional data points collected and stored (if available)
- Date of birth
- Place of birth
- Nationality
- Address (Street, Street Number, City, Zip Code, Country)
- Type of identity document
- Issuing country
- ID card number
- Validity date / Date of expiry of the document
- Date of issue of the document
- Language of identification
- Gender
- Mobile phone number
- Email address
- Colour of eyes
Archiving (optional as additional add-on)
Mandatory storage of evidence data required for QES certificate issuance can be outsourced to IDnow (additional fees may apply).
ID Document Picture Capture (including signature)
Additional image data capture from electronically read-out data points; captures ID document containing readable personal data including ID number and user image (not part of electronically read-out data set); captures user signature for future reference.
Service Hours
- General service hours: 00:00–24:00 CET, seven days a week
- Maintenance periods: excluded from Service Hours
- Automated chip readout: available 24/7 subject to technical availability
Compliance summary
eID readout offers chip-backed attributes to achieve high-assurance identity verification and can be combined with other modules to meet national eID and AML-specific requirements. Implementation depends on national rules and middleware availability.
