What is PersonalID?

PersonalID is a new, secure way for users of the CommCare mobile app to log in to CommCare apps using their phone’s biometrics. It’s designed for users with their own phones and makes it faster and easier to access any CommCare app on the device—without having to type in their password. It allows users to use one, universal login to enter and access all of their CommCare applications, instead of different logins for different project spaces.

PersonalID does not collect or store the user’s biometric data, but rather relies on the identity management tools already configured on their phone.

Why Use PersonalID?

PersonalID enables users to quickly and easily connect to their CommCare project space using their biometrics information, making login easier and more secure.

PersonalID accounts are specific to an individual, rather than a project space or individual app login, so this set of features is only applicable for users who have their own phone number.

Who Should Use PersonalID?

Currently PersonalID is being utilized by several CommCare Connect projects. At this time, we do not recommend users set up a PersonalID, unless either working on a CommCare Connect project, or specifically recommended by your Dimagi point of contact.

Later in 2025 we plan on creating and releasing a generally available version of PersonalID for all CommCare and CommCare Connect users. At that time, we will recommend all users that have their own phone number set up a PersonalID.

Authenticating with PersonalID

Setting Up PersonalID

To access CommCare applications through phone biometric, users must first set up their PersonalID. This involves a configuration process that links PersonalID to their device's security features. Users must set up their PersonalID in the following scenarios:

The first time they use PersonalID
When they are using an existing PersonalID on a new phone
If they re-install the CommCare application from the Google Play Store on an existing, or new, phone
If they’ve logged out of PersonalID and are re-authenticating

Once the below setup steps are completed, users may access PersonalID via the biometrics authentication they configure during the initial setup of PersonalID.

Setting up PersonalID will require internet connectivity; after setup has been completed connectivity will no longer be required to access PersonalID.

Initial Setup

The user should open the CommCare Android application on their phone. Without logging in, they should click on the 3-dot icon on the top right of the screen. From the menu, they should select the “Sign up for PersonalID” option.

The user should then enter their phone number and agree to the Terms and Conditions for using PersonalID. This phone number should be the user’s own phone, and not one owned by someone else. After they select “Continue,” the user will receive a One-Time Passcode (OTP) via SMS message to the number they provided.

Biometrics Configuration

If the user does not have a fingerprint configured on their device, they will be prompted to configure one before moving forward. The user may configure either a fingerprint. One is required to use PersonalID; without configuring a fingerprint, the user will not be able to use PersonalID.

One-Time Passcode

On the next page, the user should enter the 6-digit OTP code that was sent to them via SMS. If they did not receive a 6-digit code via SMS, they can select “Didn’t receive your code?” to send a second code via SMS. Once the user has entered the code, they should select “Verify Code” to continue.

If the user would prefer to use a different phone number to associate with their PersonalID, they should select “Change” to start the setup workflow again with a different phone number.

Name

On the next page, the user should enter their full name as it appears on their government-issued identification. They should select “Continue” to proceed.

Backup Code

If this is the first time the user is creating their PersonalID, they will be prompted to create a 6-digit Backup Code. This will be used to access their PersonalID in the future from a new phone, or if they reinstall the CommCare application. It is important for the user to remember their Backup Code to retain access to their PersonalID. Once they have confirmed their Backup Code, they should continue on to adding a Photo to their profile, below.

It is important for the user to remember their backup code during their account setup. This will be used to recover their account when they log in to PersonalID from a new device. Users should store the backup code in a safe place, like a Password Manager

If the user has already created a Backup Code, on the next page they will see their Name and Photo, and be prompted to enter their Backup Code. Once they have successfully entered their backup code, they should select “Continue” to be directed to the PersonalID homescreen.

The user will have three tries to enter their Backup Code before their PersonalID is permanently locked.

If this picture and name do not match the user’s expected Name and Photo, they should select “This isn’t me” to create a new Backup Code.

Add a photo to your profile

Using their phone’s front camera, the user should take a photo of themselves to add to their PersonalID profile. This photo will serve as a visual reminder that they own this PersonalID, and will not be used for biometric access. After they have taken a photo, they should drag it into the center of the suggested circle and select “Continue” to complete their PersonalID setup.

The user’s PersonalID account has now been set up.

Using PersonalID to Login to CommCare

After setup, the user may use their on-device biometrics to unlock their PersonalID. The first time they access their CommCare applications after setting up their PersonalID, they will be given the option to attach them to their PersonalID account. If they proceed with this option, they will be able to securely access that CommCare application by just unlocking their PersonalID in the future.