1. OneID Terms
1.1 "OneID" is the identity service from Digital Identity Net U.K. Limited ("we", "us", "our" or "DIN") that lets you prove who you are online, simply and securely, by connecting to your bank via Open Banking and giving consent to share your personal data held by your bank.
1.2 Each time that you use OneID, you agree to:
1.2.2 our Privacy Notice.
1.3 Please review these OneID Terms and the Privacy Notice carefully before you agree to them as they apply to all use of OneID. If you do not agree to them then you must not attempt to use OneID. We encourage you to frequently review these OneID Terms and the Privacy Notice as they are both subject to change.
1.4 Please also see our FAQ pages for more information on OneID.
2. The OneID Service
2.1 OneID is for personal and non-commercial use only, by those who:
2.1.1 are 16 years of age or older;
2.1.2 have not been suspended or removed from OneID or any of our other services or products; and
2.1.3 comply with these OneID Terms.
2.2 OneID allows you to:
2.2.1 send selected personal information from your bank to an online service provider (a "Relying Party"), such as a shop that you have chosen, for the purpose of proving your identity and/or your age.
2.3 To enable OneID to work, you instruct us (through using the service and giving your consent) to do the following on your behalf:
2.3.1 Securely connect with a bank that you use (your "Identity Service Provider"). When we do this, you will be redirected to your Identity Service Provider's website or mobile application for security and authentication purposes. Your bank log in credentials are not shared with us or anyone else;
2.3.2 Retrieve information held about you by that Identity Service Provider, usually for a specific account (your "Account") – this is normally your UK current account. You explicitly consent to us contacting your Identity Service Provider on your behalf to do this;
2.3.3 If your Identity Service Provider does not hold or provide us with all the relevant information, we may also obtain personal information from other trusted data sources such as credit reference agencies (“Attribute Service Providers”). You explicitly consent to us contacting the Attribute Service Provider on your behalf to do this; and
2.3.4 Send the selected information that we have successfully retrieved from your Identity Service Provider/Attribute Service Provider to the Relying Party. A list of the selected information will be shown to you through OneID before this happens – it will usually include your name, date of birth and address, and this may be supplemented by additional details if required by the Relying Party.
2.4 We rely upon a number of things to make OneID work properly:
2.4.1 We rely upon you being legally authorised to access each Account in respect of which you use OneID. You may not use OneID in respect of any Account you are not authorised to use;
2.4.2 We rely upon the information held with your Identity Service Provider and any Attribute Service Provider being accurate and up to date. We do not check the information for accuracy, legality or otherwise. It is your responsibility to check that the information is accurate and up to date, and you must contact your Identity Service Provider in the first instance to correct it if there are any errors; and
2.4.3 We rely upon your Identity Service Provider's, Attribute Service Providers’ and your chosen Relying Party's systems working properly, enabling us to securely connect, retrieve and send the selected information. The terms and conditions that apply to your Account(s) and to your relationship with/purchase from your chosen Relying Party will remain in effect with your Identity Service Provider and chosen Relying Party respectively. These OneID Terms do not change either of them.
Please note: We can't control these things. If there are problems caused by any of them then you will need to contact your Identity Service Provider (your bank) and, if relevant, the Relying Party (the seller/service provider you are trying to connect to) in the first instance to try to resolve the issue.
2.5 You may not be able to connect to your chosen Identity Service Provider through OneID – details of those that can be accessed are shown within the menu in OneID.
2.6 You acknowledge and accept that the Relying Party which receives your selected information through OneID may use it to make decisions about you. This should be described in the Relying Party's terms and conditions and/or their privacy notice. We cannot control, and are not responsible for, how the Relying Party uses your information or any goods, services, websites or other technology provided or operated by the Relying Party.
2.7 The use of, or integration into, OneID by any Relying Party, Identity Service Provider or Attribute Service Provider does not constitute or imply any endorsement, sponsorship or recommendation of them by DIN.
2.8 We try to ensure that OneID is available to you at all times, although we can't promise that it will always be available or work perfectly (for example, in the case of updates, maintenance, fraud, or a fault in the systems used to provide it). These events are sometimes outside of our control.
2.9 We may use third-party suppliers to support us in providing OneID. We take reasonable care in selecting our suppliers so as to protect your security and privacy.
2.10 We aim to make OneID easily accessible. If you have any difficulties when using it then please contact us – see section 11.1 below for how to do this.
3. Acceptable Use Restrictions
3.1 You must not:
3.1.1 use OneID in any unlawful way or in breach of these OneID Terms, or act fraudulently or maliciously (for example, by accessing other people's bank accounts or personal data through OneID);
3.1.2 infringe intellectual property rights in relation to OneID, or through your use of OneID;
3.1.3 use OneID in a way that could damage, disable, overburden, impair or compromise our systems or security or interfere with other persons (for example, we expect you to make fair and reasonable levels of use of OneID for your own personal, non-commercial purposes and not repeatedly and unnecessarily access our service using robots or other similar technologies);
3.1.4 attempt to alter or decipher any transmissions to or from the servers running any service (for example, by trying to break the encryption protecting those transmissions); and
3.1.5 attempt to reverse engineer, modify, hack, penetration test, fault find, analyse, tamper with, or in any way look to subvert the operation, code and/or functionality of OneID.
3.2 Unauthorised use of OneID will be a breach of these OneID Terms and may also violate the law.
4. Proprietary Rights and Licence
4.1 "OneID®" is a registered trade mark of Digital Identity Net U.K. Limited.
4.2 All trade marks, copyright, database rights and other intellectual property rights of any nature in OneID (including its icons, buttons, appearance and branding), together with the underlying software code, are owned by DIN or its licensors. 4.3 DIN grants you a non-exclusive and revocable right to use OneID but only for your personal (non-commercial) use in accordance with these OneID Terms whilst you are actively using OneID online. No other or wider right or licence is granted.
4.4 You will not, nor allow third parties on your behalf, to use or access OneID: (i) to make and distribute copies of OneID; (ii) to attempt to copy, reproduce, alter, modify, reverse engineer, disassemble, decompile, transfer, exchange or translate the OneID service or related code; (iii) to create derivative versions of OneID; (iv) to rent, lease, sub-license, loan, translate, merge, adapt, vary or modify OneID; (v) to make alterations to, or modifications of, OneID, or permit OneID to be combined with, or become incorporated in, any other programs or services; (vi) in connection with any data mining, robots or other data gathering or extraction methods; or (vii) for anything other than its intended purpose.
5. Data Protection
5.1 We will use and protect your personal information in accordance with our Privacy Notice.
5.2 In operating OneID we do not need, and will never have access to, your online banking credentials. Please never share those credentials with anyone claiming to be from DIN.
6. Operation of OneID
6.1 We operate OneID using a reasonable level of skill and care and we hope that you will enjoy using it. However, we cannot and do not promise that the information, content or materials displayed on OneID are accurate, sufficient or error-free. OneID is provided "as is" and "as available" without warranty of any kind.
6.2 To the maximum extent permitted by law, we disclaim all implied warranties in relation to OneID. Other than as expressly set out in these OneID Terms, neither DIN nor its suppliers or distributors makes any promises, either express or implied, about OneID. For example, we do not make any commitments about specific functions being maintained, reliability, availability or the ability to meet your needs.
7. Third Party Sites and Links
OneID may contain links to third-party websites, apps or other technology (such as those of your Identity Service Provider and chosen Relying Party and those of Attribute Service Providers) ("Third-party Sites"). Third-party Sites are not under our control, and we are not responsible for and do not endorse their content or their privacy notices (if any). You need to make your own judgement on any Third-party Sites, including the purchase and use of any products, services or technology accessible through them.
8. Refusing, Suspending and Stopping Use Of OneID
8.1 These OneID Terms (which you must agree to each time you use our service) set out the basis on which you are permitted to use OneID. You are in no way obliged to use OneID and you may choose not to use, or to stop using, OneID at any time.
8.2 We reserve the right to refuse, suspend or stop the use of all (or any part(s)) of OneID for you and/or any other user(s), at any time for business, security, operational, regulatory, legal or any other reason. We accept no liability for doing so.
8.3 We do not guarantee to continue to make OneID available in any particular form. We do not guarantee availability of any particular Identity Service Provider(s) or Relying Party(ies) on OneID as these may change from time to time. We have no obligation to resume provision of OneID if it is suspended or stopped for you or any other user(s).
9. No Charges
OneID is completely free for you to use. There is no subscription charge or price.
10.1 OneID has not been developed to meet your individual circumstances. It is your responsibility to ensure that it meets your needs.
10.2 You may not use OneID for commercial, business or resale purposes, and so we will have no liability to you for any loss of profit, loss of revenue, loss of business, business interruption, or loss of business opportunity. We also have no liability to you for any damage or alteration to your equipment including your devices as a result of the use of OneID.
10.3 We are not responsible for the actions of your Identity Service Provider, Attribute Service Providers or your chosen Relying Party. If you have any problems with any of them then it is your responsibility to resolve it with them directly. In particular, if you suspect an unauthorised or incorrectly initiated or executed payment transaction on any of your Accounts then you must notify your Identity Service Provider through the communications channel provided by them immediately (and, in any case, no later than 13 months after the debit date of each relevant transaction) to have it investigated and corrected.
10.4 We shall have no liability to you under or in connection with these OneID Terms or your use of OneID (whether in contract, tort (including negligence) or any other cause) except as set out in sections 10.5 and 10.6 below.
10.5 OneID is provided to you completely free of charge and we need to make sure that we can continue to grow it. As such, and subject to section 10.6, if we are liable to you in relation to OneID (regardless of the number of times that you use OneID) and:
10.5.1 it relates to us not having met our obligations under applicable law to protect your information and/or it relates to any obligation under the applicable law that we cannot exclude (or limit, to the extent that it cannot be limited), then we accept that liability in full as and to the extent required by the law; or
10.5.2 it relates to any other cause (regardless of the form of the action or timing) then we will not be liable to you for any such loss or damage that you personally suffer.
10.6 We are not responsible or liable if the relevant cause arises from your breach or action (such as your fraud or us following your instructions), events outside of our control, or the need to comply with our legal obligations. Nothing excludes or limits our liability for: death or personal injury caused by our negligence; our fraud or fraudulent misrepresentation; or, if we deliberately breach these OneID Terms in a major way that is designed to harm you. Your statutory rights are not affected.
10.7 You agree to reimburse us for all losses we incur as a result of your breach of, or failure to comply with, these OneID Terms or if we suffer any losses as a result of your use of OneID.
11. Questions, Problems & Complaints
11.1 As mentioned above, most issues arising should be addressed directly with your Identity Service Provider or chosen Relying Party in the first instance, but do please contact us at CustomerService@digiidnet.co.uk if you still have a question, problem or complaint about the OneID service. This gives us the opportunity to seek a suitable solution and improve the OneID service for you and other users. We aim to handle all questions, problems and complaints efficiently and quickly. You can find our Complaints Policy here for more information.
11.2 If after we have responded to your complaint you remain unhappy, you may be entitled to refer the complaint to the Financial Ombudsman Service if it relates to our regulated activity. The Financial Ombudsman Service is a free, independent service for resolving disputes between customers and companies like DIN which operate under the authority of the UK's Financial Conduct Authority. More information is available at www.financial-ombudsman.org.uk.
11.3 If you contact us, then please provide your preferred contact details to enable us to respond. When communicating with us (including by telephone) it is common for us to monitor and keep a record of that communication for quality and training purposes.
These OneID Terms and our Privacy Notice are drawn up in the English language. All written communications between you and us are to be in English.
12. Changes to these OneID Terms
We may change these OneID Terms at any time. If we do so we will publish the updated version online and update the "version" number below. The updated version is the one which you will see and have to agree to next time you want to use the OneID service. You can download a copy of these OneID Terms from here.
13. About Us & Our Regulator
DIN has its registered office at 29 Wood Street, Stratford-Upon-Avon, England, CV37 6JG and is registered with Companies House under number 11800511. We are a registered ‘Account Information Service Provider’ (AISP) with the Financial Conduct Authority (firm reference number 928911).
14. Other Important Terms
14.1 We may transfer our rights and obligations under these OneID Terms to another organisation, but this will not reduce your rights or those obligations. You may not transfer your rights or obligations to another person.
14.2 If we fail to insist that you perform any of your obligations, or if we do not enforce our rights against you, or if we delay in doing so, that will not mean that we have waived our rights against you and will not mean that you do not have to comply with those obligations. Any waiver would need to be given by us in writing.
14.3 Each of the conditions of these OneID Terms operates separately. If any court or competent authority decides that any of them are unlawful or unenforceable, the remaining conditions will remain in full force and effect.
14.4 Please note that these OneID Terms, their subject matter and formation, are governed by English law. You and we both agree that the courts of England and Wales will have non-exclusive jurisdiction. However, if you are a resident of Northern Ireland you may also bring proceedings in Northern Ireland, and if you are resident of Scotland, you may also bring proceedings in Scotland.