3. Type and scope
The scope of data processing and use by Deutsche Post AG in connection with identification processes depends on the reasons for such processes, i.e., the intended or existing contractual relationship between you as the user and the business partner concerned, and the legal requirements calling for proof of identification, e.g., in accordance with the Geldwäschegesetz (Germany’s money laundering act), the Telekommunikationsgesetz (Germany’s telecommunications act), etc.
At most, Deutsche Post AG will (depending on the situation) collect the following user data when identifying a person with POSTIDENT.
1. ID card data
- Form of address
- Title/academic degree
- Last name
- First name (all first names)
- Name at birth
- Place of birth
- Date of birth
- Nationality
- Street and house number
- Zip code and town/city
- ID information such as type of ID, ID number, place of issue, date of issue, issuing authority, expiration date
- Mobile telephone
- Email address
During the identification process, you may receive an e-mail with a case number that can be used at any time to start the identification process. The user’s e-mail address is needed for this purpose. For some identification methods, a mobile telephone number will be needed to receive a TAN as an additional secure factor for two-factor authentication.
2. Driver’s license information
Users identifying themselves for providers of mobility services such as car sharing or car rental need a valid official driver’s license. During the identification process, Deutsche Post AG will collect the following additional data:
- License number
- Country of issue
- Expiration date
- Date of issue
- License categories (including date of issue, expiration date and any additional information)
3. Verification data
If the business partner requests identification compliant with certain legal requirements (e.g., Geldwäschegesetz (GwG - German money laundering act), Telekommunikationsgesetz (TKG German telecommunications act), eIDAS (electronic IDentification, Authentication and trust Services) Regulation and the like), this includes transmission of the ID information and, depending on the identification method, the verification data. Depending on the method, this can include:
- Photo or screenshot of user
- Photo or scan of ID document
- Photo or scan of driver’s license
- Recording (audio and video) of entire identification process
- Place and date of identification