Overview#Digital Identity Acceptance Policy (DIAP) is simply the policy that a Relying Party MAY require before providing you with a digital service.
Digital Identity Acceptance Policy Example might look like this: Dear User:
- You MAY use a Digital Identity from Identity Provider (IDP) (Government Entity, jurisdictions, Organizational Entity, etc.) that we trust through Trust Frameworks that we recognize (eIDAS, PCTF, etc)
- You MAY use multiple digital identities to receive the same service; however, you will be ask to re-enrol for each Digital Identity that you use.
- When we enrol your Digital Identity, we will try our best to make sure it’s actually you - not someone else. On the outside chance that it might be someone else, please contact us immediately.
- You have the right to revoke your Digital Identity at any time. Should you decide to re-use this Digital Identity, you will need to re-enrol.
- If you have problems signing in, or need to update your Digital Identity information, please contact your Identity Provider (IDP).
The concept is an interesting one, but may muddy the legal discussions on Accountability and Responsibility. Is the Relying Party Accountable for the Digital Identity or is it the Identity Provider (IDP)?