How can we trust about the data security?

NDID has achieved ISO 27001 certification and follows the principles of Data Security and Privacy by Design.

The platform ensures high-security standards through encrypted data transmission, with no centralized data storage. Personal information remains with the data-holding organizations and service providers, ensuring data stays under the control of authorized entities.

The system is designed using a decentralized model powered by blockchain technology, ensuring that National Digital ID Co., Ltd. (the system operator) cannot access customer data. Only transaction logs are maintained for security and audit purposes, emphasizing Privacy and Security by Design.

NDID Co., Ltd. is a joint venture among over 60 companies, including Thai commercial banks, securities companies, asset management firms, life and non-life insurance companies, electronic payment service providers, the Stock Exchange of Thailand, and Thailand Post. Each entity operates under regulatory supervision, ensuring compliance with data security laws and standards.