South Korea has eliminated a significant barrier to the usage of the FIDO protocol for passwordless authentication by confirming that it falls outside the scope of a requirement for user consent to process biometrics.

Members of the FIDO Alliance Korea Working Group (FKWG) submitted an official inquiry to the Korea Personal Information Protection Commission (KPIPC), which has responded by stating that the consent rules do not apply to biometric processes performed entirely on user-controlled devices. Since biometric data is not collected, stored or processed by the organization requesting FIDO authentication, the process does not qualify as processing personal information under the Personal Information Protection Act.


More

Identity Week: New FIDO Alliance and HID study reveals major gap between identity security confidence and reality

Research Reveals 94% of Enterprises Claim They Can Revoke Employee Access Within 24 Hours, Yet…

Read More →

Biometric Update: Passkey adoption stalls at scale despite strong interest, new study shows

The FIDO Alliance and HID have released new research showing a widening gap between enterprise confidence in identity security…

Read More →

HRTECH EDGE: Most Enterprises Think Identity Access Is Secure. New Research Suggests Otherwise

Enterprises may be more confident about identity security than they should be. A new report…

Read More →


Subscribe to the FIDO newsletter

Stay Connected, Stay Engaged

Receive the latest news, events, research and implementation guidance from the FIDO Alliance. Learn about digital identity and fast, phishing-resistant authentication with passkeys.