IDs in Apple Wallet: privacy and security overview

Learn how Apple protects the privacy and security of your personal information when you add and use an ID card in Apple Wallet.

Apple Wallet provides a convenient, secure way to add and present your ID card using just your iPhone or Apple Watch. The privacy and security features that are built in to your device — and that help make Apple Pay private and secure — help protect your identity and personal information.

  • When you use the Apple Wallet app to add your ID card, Apple uses a limited set of information to check for fraud. Depending on the type of ID, another limited set of information required to approve or deny adding your ID to Apple Wallet is shared with the issuing authority.

  • When you use the issuing authority's app to add your ID card, the information required to approve or deny adding your ID to Apple Wallet is shared only with the issuing authority. Apple doesn't have access to the shared information.

  • Once added to Apple Wallet, your lD information is encrypted on your device, so others, including Apple, can't access it unless you choose to present it. Your presentment history is encrypted and stored only on your device, and Apple doesn't retain any presentment information that can be tied back to you.

When you add a state-issued ID card via the Apple Wallet app

When you use the Apple Wallet app to add your state-issued ID card, you're asked to take a picture of the front and back of your ID card and take a Live Photo or selfie. You'll also be prompted to also complete a series of facial or head movements — for example, you might be asked to smile or turn your head to the right.

The images of your ID and your Live Photo or selfie are evaluated for quality and encrypted on your device. The recording of your head and facial movements is evaluated by your device and by Apple to help reduce the risk of someone trying to add your ID to their device, for example by using a photograph, video, or mask.

You’ll also be asked to perform a Face ID or Touch ID authentication to help ensure that only the person who added the ID to this iPhone can present it. This occurs strictly on device and isn’t sent to the issuing authority or Apple.

Information shared with the issuing authority

The issuing authority receives only information they need to approve or deny adding your ID to Apple Wallet:

  • Images of the front and back of your ID

  • Your Live Photo or selfie

  • Results of the analysis of the Live Photo or video of your head and facial movements, but not the video itself

  • Data read from the PDF417 barcode on your ID

  • A single-digit value, used to help prevent fraud, that’s based on your device use patterns, settings data, and information about your Apple Account

Aside from the data listed above, no other data from your device and no personal information about your Apple Account is shared with the issuing authority.

Information shared with Apple

Apple has temporary access to the following information during the ID set up and verification process:

  • A subset of data from the PDF417 barcode on your ID (name, address, date of birth)

  • Your Live Photo or selfie

  • The video of your head and facial movements

The subset of data from your ID is deleted from Apple servers right after sending your request to the issuing authority. Your Live Photo or selfie and the video of your movements are deleted from Apple servers shortly after the issuing authority approves or denies adding your ID to Apple Wallet.

When you add a Digital ID via the Apple Wallet app

When you use the Apple Wallet app to add a Digital ID, you're asked to use your iPhone to scan the photo page and read the NFC chip in your physical passport, complete a series of head or facial movements, and take a Live Photo or selfie.

The data read from your passport and your Live Photos or selfie are evaluated for quality and encrypted on your device. The recording of your head and facial movements is evaluated by your device and by Apple to help reduce the risk of someone trying to add your ID to their device, for example by using a photograph, video, or mask.

You'll also be asked to perform a Face ID or Touch ID authentication to ensure that only the person who added the ID to this iPhone can present it. This occurs strictly on device and isn't sent to Apple.

Information used by Apple to verify and issue your ID

Apple verifies your passport and issues your Digital ID. No one else receives your information during this process. Apple has temporary access to the following information during the ID setup and verification process:

  • Data read from the NFC chip in your passport (for example: name, date of birth, passport number, date of expiration)

  • Your Live Photo or selfie

  • The video of your head and facial movements

The data read from your passport is deleted from Apple servers right after your Digital ID is issued. Your Live Photo or selfie and the video of your movements are deleted from Apple servers shortly after your Digital ID is issued or if the verification process is unsuccessful.

When you add your ID card via the issuing authority's app

When you use the issuing authority’s app to add your ID card, the information required to approve or deny adding your ID to Apple Wallet is shared only between you and the issuing authority. Apple doesn’t have access to the shared data. No other data from your device and no personal information about your Apple Account is shared with the issuing authority.

You’ll also be asked to perform a Face ID or Touch ID authentication to help ensure that only the person who added the ID to this iPhone can present it. This occurs strictly on device and isn’t sent to the issuing authority or Apple.

When you present your ID card

If data from your ID card is requested when you present your ID, you can review:

  • The information being requested

  • Who is requesting it

  • If the data is being retained

When you present your ID in person:

  • After you authenticate using Face ID or Touch ID, your ID information is presented digitally through encrypted communication between your iPhone or Apple Watch and the identity reader.

  • You don’t need to unlock, show, or hand over your device.

  • If your device is locked when you present your ID, it stays locked after you present your ID.

Information about past presentments — including where, when, and what personal information you share — is encrypted and stored only on your device. Neither the issuing authority nor Apple can see your presentment history*.

When you present your Digital ID:

  • A DHS Compliance field is included in the information shared with identity readers to ensure compatibility with TSA checkpoints and other authorized readers.

  • This field is always set to true and will be shown in the consent sheet when you present your ID. You can also view this information in your presentment history.

  • Although the DHS Compliance field is set to true, your Digital ID is not a REAL ID document.

*When using Japan Public Key Infrastructure to present your My Number Card in Apple Wallet for access to government services such as Mynaportal and Convenience Store Certificates, public-key cryptography will be used and related governmental authorities will process your My Number Card data, including the fact that you presented your ID, only as necessary to provide the requested services. For more information, see related governmental authorities’ privacy policies.

When you agree to help improve ID verification

When you use the Apple Wallet app to add your ID card, you may be asked to share select demographic data (such as age range or sex) and the apparent skin tone from your selfie. This information is used to help Apple and the issuing authority ensure fairness in the identity verification process. If you agree to share this information, it's shared with Apple in a way that isn't associated with your identity.

Apple will analyze the data that you share, along with the issuing authority's decision about whether to issue you an ID card for Apple Wallet. This analysis helps determine if outcomes during the set up and approval process are different for groups of users.

Sharing your information is optional. If you agree to share, the information is collected in a way that helps preserve your privacy. No personally identifiable information will be collected, stored, or used by Apple or the issuing authority as part of this process.

  • For 90 days after you add your ID to Apple Wallet, Apple will collect from your device the attributes that you've agreed to share and retain the information as part of this process.

  • Before your information leaves your device, it's protected by differential privacy — a privacy-preserving mechanism that allows Apple to gather insights from patterns of groups of data.

  • After 90 days, the data from your device is no longer available to Apple.

You can opt out of sharing this data at any time during the 90-day collection period: Open the Settings app, then tap Privacy & Security. Tap Analytics & Improvements, then turn off Improve ID Verification.

Learn More

  • For more detailed information about how your data is managed when you add your ID in Apple Wallet, visit Identity & Privacy.

  • To learn more about advanced security features in Apple products, visit Apple platform security.

  • Information collected by Apple is always treated in accordance with Apple’s Privacy Policy.

Published Date: