# O3.24 Make alternative mechanisms besides biometrics available

{% tabs %}
{% tab title="Principle" %}
[O3: Ensure data privacy by design](https://safedpi.gitbook.io/safeguards/universal-dpi-safeguards-framework/principles/operational-principles/o3-ensure-data-privacy-by-design)
{% endtab %}

{% tab title="Risk" %}

{% endtab %}

{% tab title="Life Cycle Stage" %}
[L2: Strategy & Design](https://safedpi.gitbook.io/safeguards/universal-dpi-safeguards-framework/life-cycle-stages)
{% endtab %}
{% endtabs %}

## Practices

> Biometric authentication shall not be a precondition for using DPI. 
>
> Setting up the system and onboarding users has to happen in a proportionate and efficient manner that takes into account the existance of civil registries. 
>
> Storage of biometrical information on a central server requires prior explicit consent from the user. 
>
> Biometrical information has to be specially protected.

## Resources

<table data-view="cards"><thead><tr><th></th><th></th><th></th></tr></thead><tbody><tr><td>References</td><td></td><td></td></tr></tbody></table>