Skip to content
English
Back to main site
  • There are no suggestions because the search field is empty.

How does our selfie re-auth process work?

One of our core commitments is making sure every PlaySafe ID belongs to the person who created it, and is still using it. To help protect accounts from unauthorised access and misuse, as well as to ensure account selling/trading isn’t possible, we've implemented selfie re-authentication. A quick check to confirm you're still the one behind your PlaySafe ID. 

How it works:
Selfie re-auth triggers automatically. This can be because of certain suspicious activity triggers, or it could be a random spot check.

When it triggers on your account:

  1. You'll be notified the next time you try to connect to a PlaySafe Protected environment via email.
  2. Simply log in to your PlaySafe ID account and you'll be immediately prompted to complete the re-auth.
  3. Take a quick selfie. That’s all that is required.
  4. Once confirmed, your PlaySafe ID unlocks and you're good to go.

How this is possible when we delete the data:
When a user first creates their PlaySafe ID, their selfie and document get deleted. The only thing that survives is a hashed biometric token. This is an irreversible and “random” series of numbers and letters that contains no data.

The cool thing about hashes is if the same inputs are put in, the same output comes out. So if it’s the same person, it will be the same hash, and we can unlock the account status. If it is a different person then the account remains locked.

As a reminder; it has to be the real live person taking the selfie, and this is the same technology used by the largest banks globally to ensure it’s the same person accessing their bank account. A haircut, a beard, etc, will not throw it off.

This zero-knowledge process we’ve developed with Entrust ensures that neither PlaySafe ID or Entrust store any of your selfies or documents, but we’re able to certify that someone can only ever get one PlaySafe ID, and it’s still the original person with access to it. 

Key things to know:

  • Re-auth can be based on suspicious activity or at random and can occur more than once over time. This is normal and applies to all accounts equally.
  • Your PlaySafe ID will remain locked for PlaySafe Protected environments until the re-auth is completed, so it's worth completing it as soon as you're prompted.
  • The re-auth isn’t a full check, it’s just a selfie from the original account holder.

For a step-by-step guide on how to complete the selfie re-auth process, check out our "how to re-auth" guide here.