Screen 9: Review + Face Match + e-Sign
This is the finish line. The customer has passed the blocking gate, and all their data is verified and ready. Now they need to do three final things: review the complete application, take a selfie for face matching against their Aadhaar photo, and sign the application digitally using an Aadhaar OTP (One-Time Password). When this screen is complete, the customer is done. They close the app and wait for their account to be activated — typically within 24-72 hours. Everything that follows (maker-checker review, KRA submission, exchange registration, depository account opening) happens entirely in the background.
Purpose: Final review, biometric verification, and legally binding eSign (electronic signature via Aadhaar OTP). User is done after this screen.
This screen has three distinct steps, presented sequentially. The customer cannot skip any of them. Each step serves a specific regulatory purpose.
3-Step Process
Section titled “3-Step Process”Step 1: Review Application
Section titled “Step 1: Review Application”Scroll-through review of the complete pre-filled application. All data from Screens 1-8 is presented in a read-only summary. User confirms everything is correct.
Step 2: Face Match
Section titled “Step 2: Face Match”Selfie capture compared against the Aadhaar photo from DigiLocker (Government of India’s digital document platform) using a biometric face matching service.
| Parameter | Requirement |
|---|---|
| Match threshold | High confidence match required |
| Liveness check | Must pass (anti-spoof) |
| Photo quality | Minimum resolution per service requirements |
Step 3: Aadhaar OTP e-Sign
Section titled “Step 3: Aadhaar OTP e-Sign”Digital signature on the complete application PDF per IT Act 2000, Section 3A. This is the legally binding moment — the customer’s Aadhaar-authenticated signature is embedded in the PDF along with a CCA-compliant (Controller of Certifying Authorities) digital certificate.
| Parameter | Detail |
|---|---|
| Auth mode | Aadhaar OTP |
| Hash | SHA-256 |
| Certificate | CCA-compliant DSC |
| Output | Signed PDF with embedded certificate |
VIPV Fallback Scenarios
Section titled “VIPV Fallback Scenarios”VIPV (Video In-Person Verification) is normally not needed in this flow because DigiLocker provides the IPV (In-Person Verification) exemption. However, there are two scenarios where it becomes necessary:
- The user opted out of nominations on Screen 7 and needs a video declaration
- DigiLocker was unavailable and manual Aadhaar verification was used, which does not qualify for the IPV exemption
In these cases, a SEBI VIPV-compliant and RBI V-CIP-compliant video verification must be conducted. The video recording must be stored for the period mandated by SEBI regulations.
OCR Fallback
Section titled “OCR Fallback”In rare cases where the DigiLocker flow was not used (e.g., DigiLocker downtime), document OCR (Optical Character Recognition) becomes necessary as a fallback for identity verification. The OCR service must support PAN, Aadhaar, Passport, Voter ID, Driving Licence, and cheque documents with tampering detection capabilities.
For vendor implementation options for eSign, face match, VIPV, and OCR, see Vendor Integrations.
The customer’s part of the journey is complete. But the system’s work is just beginning. What follows is the maker-checker review and the parallel batch pipelines that register the customer with every exchange and depository.