Swiss identity management platform

"360 Identities brings multiple identity signals together. Our identity-centric solutions protect people, their devices and their data."

Fully automated identity proofing compliant with ETSI standards.

360 Identities is fast (< 1 minute) and fully automated ("self-service") without human interaction. It performs unattended remote digital ID proofing through biometric chip capture conforming to AMLA's RTS on Customer Due Diligence and FINMA Circular 2016/7 RZ32 - 39 ("Online identification").

Radio frequency identification (RFID) through NFC chip reading.

The Near Field Communication (NFC) protocol enables data exchange within a range of 4 cm and has the potential to become the new gold standard for remote identity proofing. While all EU passports are equipped with NFC chips, it is expected that by 2030, most European ID cards will have biometric chips as well.

Liveness detection with high confidence scores.

Instead of investing resources in AI-powered systems to detect fraud after it has occurred, block threat actors right at the identity verification stage. Combine document verification, biometric capture, and liveness detection to create a biometric anchor as a baseline across all devices and channels.

Under 1,000 identifications per year

CHF 4.00 per applicant

• Minimum: CHF 1,200 p.a.
• No monthly usage fee
  

Under 10,000 identifications per year

CHF 3.00 per applicant

• Minimum: CHF 3,000 p.a.
• No monthly usage fee
  

Over 10,000 identifications per year

CHF 2.00 per applicant

• Minimum: CHF 6,000 p.a.
• No monthly usage fee

Identity signal integrity

If it is indeed true that, in the social world, "personality is an unbroken series of successful gestures" (The Great Gatsby), then digital identity is a continuous series of successful authentications and verifications between machines.

Download 360 Identities for Android (here) or iOS (here)

Take a photo of your passport or identity card.

Hold your phone against passport to read its NFC chip.

Record a short selfie video for liveness verification.

Business logic

• Attribute and evidence collection: Extraction of identity attributes from the physical identity document’s visual inspection zone (VIZ) and machine readable zone (MRZ)
• Attribute and evidence validation: validate the freshness, reliability, and consistency of the collected identity attributes including, where available (e.g., via Interpol databases), the validity of the supporting identity document
• Validation of the electronic machine readable travel document's (eMRTD) country signing certificate through the ICAO PKD (Public Key Database) or other sources
• Binding to applicant: Liveness detection through a video selfie in order to verify that the user is the legitimate passport holder and not a bad actor using spoofs presented to the camera
  

Usability

• Desktop and mobile versions
• Clear UI: Intuitive interface for corporates and public authorities avoiding unnecessary complexity
• Language support: All workflows including emails in 4 languages (EN, DE, FR, IT)
• Technical Support Hotline: Support in EN, DE, FR, IT during office hours (+41 44 700 28 88)
• Productivity connectors: Integrated into 360 Signatures (here), 360 Documents (here) and the 360 CRM (here)
  

Regulatory

• Comply with Art. 5 AMLA ("Repetition of the verification of the identity of the customer"): "If doubt arises in the course of the business relationship as to the identity of the customer or of the beneficial owner, the verification of identity [...] must be repeated"
• Audit-proof retention of the signed documents and annexes for 10 years in accordance with OR Art. 958f
• Automated identity or age verification: One-time video ID check to qualify for QES signatures (operating hours: 24/7/365)

Security

• Secure login: Two-factor authentication (2FA) via Google and Microsoft Authenticators
• Data residency: All data is kept exclusively in Switzerland
• Privacy: Compliance with the Swiss Federal Act on Data Protection - FADP (here) and the EU's General Data Protection Regulation - GDPR (here)
• Full data portability: Art. 28 FADP and Art. 20 GDPR
• Information security: ISO 27001 certified data centres located in Switzerland in compliance with FINMA requirements
• Document retention policy: Uploaded identity documents and selfies are kept for 30 days and then deleted
• Ransomware protection: Regular 3-2-1 offline, offsite backup of your documents in Switzerland

Related Reading

Gary Archer, Judith Kahrer, Michał Trojanowski (2025) Cloud Native Data Security with OAuth (here)

Kévin Carta (2024) Biometric Data Injection Attacks on Facial Recognition used in Remote Identity Proofing (here)

ENISA (2021) Remote ID Proofing - Analysis of methods to carry out identity proofing remotely (here)

ENISA (2022) Remote Identity Proofing: Attacks & Countermeasueres (here)

ENISA (2024) Remote ID Proofing Good Practices (here)

ETSI (2025) ETSI TS 119 461 Electronic Signatures and Trust Infrastructures (ESI); Policy and security requirements for trust service components providing identity proofing of trust service subjects (here)

ETSI (2025) ETSI TS 119 431-1 Electronic Signatures and Trust Infrastructures (ESI); Policy and security requirements for trust service providers; Part 1: TSP services operating a remote QSCD / SCDev (here)

FINMA (2021) Circular 2016/7 Video and online identification. Due diligence requirements for client onboarding via digital channels (here)

FINMA (2026) FINMA publishes guidance on managing digital fraud risks (here)

ICAO (2021) Doc 9303 - Machine Readable Travel Documents (here)

Ev Kontsevoy, Sakshyam Shah, Peter Conrad (2023) Identity-Native Infrastructure Access Management (here)

Eve Maler (2026) Mastering Digital Identity (here)

NIST (2025) NIST SP 800-63 Digital Identity Guidelines (here)

Gilit Saporta, Shoshana Maraney (2022) Practical Fraud Prevention. Fraud and AML Analytics for Fintech and eCommerce (here)

André Tanner, Robert Iliev (2025) Kommentierung zu Art. 3 GwG (here)

Phillip J. Windley (2023) Learning Digital Identity (here)

Phil Windley (2026) Dynamic Authorization - Adaptive Access Control (here)