Even if EasyID got hacked, your information would still be safe. EasyID stores each shareable piece of your data using an elaborate system of ‘wrapped’ encryption which means that, even if a hacker somehow gained access to our data centre, it’s extremely unlikely they could read anyone’s details. This is because, as well as global encryption and firewalls across the entire database, each shareable piece of your data is further encrypted with its own unique individual key, part of which is stored securely on your own mobile device. Without the corresponding key to decrypt it, your data would just appear as random gibberish to any hacker.
Think of it like a bank vault, with deposit boxes inside. In EasyID’s system, even if hackers broke into the vault, they still would not be able to open all the individual deposit boxes – they would need the keys from every users’ phone.
Carrying the analogy further, it’s worth pointing out that even we at Post Office and Yoti don’t have the keys to any of the individual deposit boxes inside our vault, nor do we know the random locations of each user’s boxes: only you can find and unlock your own boxes, with the key on your own phone.