Terms of use for end users
Definitions
Digital identity: Digital data assigned to a user with which they can identify themselves to other users or systems in cyberspace.
eID.li: The national digital identity of the Principality of Liechtenstein for natural persons.
(eID.li) Holder: A natural person who is in possession of an eID.li.
eID.li app: Holders use the eID.li app on their mobile device to use the eID.li for digital identification and authentication. The eID.li app also contains digital copies of the holder's official documents, such as the mobile driver's license and more.
Digital proof: Proofs are copies of official documents, certificates or other evidence that are assigned to a person and stored in the eID.li app, such as the mobile driver's license. Notice that digital proofs and the eID.li login function are different and independent functions of the eID.li app.
Attribute: A property assigned to a person, e.g. name, date of birth, etc. The provider of attributes used in the eID.li is the National Administration, and their origin is secure and cannot be forged.
eID class: Depending on the nationality of a person and the identification procedure, the eID.li is assigned to one of three classes, A, B or C.
Overview
eID.li is a service provided by the National Administration of the Principality of Liechtenstein, allowing natural persons to have a national digital identity. The eID.li app consists of the login function to access electronic services as well as digital proofs, e.g. a mobile driver's license.
eID.li is used via the eID.li app on a mobile device. The eID.li app has been developed using state-of-the-art technology and protects the digital identity against unauthorized access and manipulation. In order to use eID.li, the holder must be in possession of a mobile device with the eID.li app installed and use a secret access password.
The personal data of the eID.li are the name, first name, date of birth and a unique personal identifier. The data originates from registers of the National Administration of the Principality of Liechtenstein, it is transferred to the relevant electronic service during login. For private providers of electronic services, the transfer of personal data must be explicitly approved by the user in the eID.li app.
The digital proofs are stored in encrypted form in a security element on the mobile device so that they can be displayed even if the internet connection is interrupted.
Registration of the eID.li app
eID.li is available to natural persons in Liechtenstein and abroad.
To become an eID.li holder, you must register with the Migration and Passport Office, either on site or online using video identification. In both cases, an official identification document, passport or ID card, must be presented, and the person must carry the mobile device with the eID.li app installed. Once the identification has been carried out, the Migration and Passport Office establishes a unique, unforgeable link between the person, the eID.li app and the digital identity, eID.li.
Change of personal details and marital status
The personal attributes that are submitted for identification in electronic services using the eID.li originate from electronic registers of the National Administration of the Principality of Liechtenstein and are only used for login to a service. The attributes are always up to date for persons with a residence status in the Principality of Liechtenstein, hence there is no obligation for the person to report changes of civil status, name, etc. to the administration.
eID.li holders residing abroad have an obligation to notify the Migration and Passport Office of any changes to their name, civil status, etc.
Only on a single mobile device
The eID.li app is bound to the mobile device that was used during the registration by cryptographic measures. This is why the eID.li app cannot be used on more than one mobile device.
Transfer to another mobile device
If the mobile device is lost, or the eID.li app broken, it cannot be restored using standard data recovery functions or tools. However, moving the eID.li to another device is possible if the user has access to the new mobile device and the previous one on which the eID.li currently resides. The individual steps for transferring the eID.li to the new mobile device are described in the eID.li app.
Blocking
The holder can request to have the eID.li blocked. They can do so on site or by telephone at the Migration and Passport Office using the contact information provided on the eID.li website. Blocking means that the eID.li app can no longer be used. A blocked eID.li can be unlocked. To unlock the eID.li, the holder must identify themselves at the Migration and Passport Office, either on site or online using video identification. The Migration and Passport Office may charge the eID.li holder for the service to unlock the eID.li.
If there is sufficient suspicion of misuse, identity theft or another security-related incident, the Migration and Passport Office can initiate the blocking on its own initiative.
Deletion
The holder can apply to the Migration and Passport Office to have their eID.li deleted. They can do this using the contact information provided on the eID.li website. Deletion means that all technical configuration and access data as well as all digital proofs in the eID.li app will be deleted for good, and the eID.li can no longer be used and. A deleted eID.li never again be restored.
The Migration and Passport Office will delete the eID.li if it was blocked for more than two years without interruption. The deletion will not be carried out as long as data in the system is required in an administrative procedure, e.g. as digital evidence in a forensic investigation.
Deletion of the eID.li is free of charge.
Security instructions
eID.li is a personal digital identity and may only be used by the eID.li holder. The holder must take precautions to prevent other persons from accessing the mobile device and in particular the eID.li app. The holder is prohibited from giving the eID.li to another person for use, e.g. by handing over the mobile device and disclosing the app's password.
Holders of an eID.li must adhere to the following security guidelines:
- The eID.li app may only be installed on a mobile device with an operating system officially supplied by the issuer. Installation and use on a mobile device with a manipulated operating system (rooting, jailbreaking) is prohibited.
- The mobile device must be locked with a PIN or password to prevent unauthorized persons from starting the eID.li app.
-
The password for starting the eID.li app must be kept secret.
-
The password for enabling identification or login must be kept secret.
-
Every time you identify yourself or log in with eID.li, you must ensure that you are prompted to enter the one-time code in a browser window whose Internet address starts with https://login.eid.li/ If a different Internet address is displayed in the browser, the one-time code must not be entered for security reasons.
Data protection
The data protection regulations of the National Administration of the Principality of Liechtenstein apply, which are in line with the General Data Protection Regulation (EU) 2016/679 of the European Union.
Cryptographic keys and technical information are managed in the eID.li app to guarantee a secure login process. To protect privacy and personal data from misuse, no personal data is stored in the eID.li app. All data managed and used in relation to the eID.li is stored on computers hosted by the National Administration of the Principality of Liechtenstein and in locations within the European Economic Area EEA.
Final provisions
These terms of use and the use of eID.li are subject to Liechtenstein law. By installing the eID.li app, users agree to the terms of use.