UK Lenders Launch Open Standard Digital ID Framework to Eliminate KYC Document Friction

In a decisive shift to address these structural vulnerabilities, six of the UK’s largest financial institutions (Barclays, HSBC, Lloyds Banking Group, Nationwide Building Society, NatWest Group, and Santander) have formed a coalition to launch a financial services-led digital verification tool for mobile applications.

Supported by the trade association UK Finance and technically architected by digital identity marketplace Select ID, the voluntary service enables customers to securely verify personal details directly through their existing mobile banking apps. By leveraging the pre-verified data ledgers already maintained by institutional lenders, the tool eliminates the requirement for consumers to repeatedly upload physical documentation to external networks.

The initiative, which has finalised its initial proof-of-concept phase using synthetic data, is transitioning into a live pilot within a controlled real-world environment.

The Pre-Digital Identity Landscape

Prior to the development of integrated digital verification networks, identity verification within the UK and US fintech ecosystems relied on highly fragmented and analogue processes. Known as the legacy Know Your Customer (KYC) framework, the traditional onboarding model required consumers to manually scan and upload physical documentation, such as passports, driving licences, and utility bills, to individual third-party platforms.

For financial services providers, IT security architects, and developers, this legacy infrastructure presented three systemic vulnerabilities:

• High Onboarding Friction: Manual document uploads created significant operational choke points, frequently resulting in cart abandonment and user churn during high-value retail or business-to-business transactions.

• Data Honeypots: Third-party applications routinely stored complete, unencrypted scans of identity documents on centralised servers, creating highly attractive targets for malicious actors seeking to execute large-scale data breaches.

• Susceptibility to Synthetic Fraud: Legacy verification systems struggle to detect sophisticated synthetic identity fraud, where bad actors combine legitimate, stolen data points with fabricated information to create entirely new, fraudulent personas.

Mechanics of the Select ID Architecture

Operating independently of parallel public-sector initiatives, the bank-led service aligns strictly with the UK Digital Identity and Attributes Trust Framework (DIATF). Rather than establishing a centralised, monolithic database, the solution implements an open-standard, reusable network approach.

• Explicit Consent Architecture: Verification is completely voluntary and operates strictly on a per-transaction basis.

• Data Minimisation Protocols: Instead of transmitting a comprehensive document scan, only the explicit, verified attribute required to execute the transaction is shared with the third party.

• Fintech Interoperability: Developed via Select ID, the backend utilises a marketplace framework allowing users to seamlessly interact with certified identity service providers across the ecosystem.

The Verification User Journey

The operational flow of the verification tool transforms the traditional onboarding pipeline into an entirely digital, API-driven process.

The sequence begins when a consumer initiates an action on a third-party application, such as applying for a tenancy, opening a brokerage account, or purchasing an age-restricted asset, that triggers an identity verification request. The third-party platform calls the Select ID API framework, which routes a secure push notification directly to the consumer’s designated banking application.

The consumer opens their banking app, authenticates using native biometrics (such as facial recognition or fingerprint scanning), and reviews the explicit request detailing exactly which data points the third party wants to see. Upon the user granting explicit consent, the bank verifies the isolated credential, such as confirming the user is over 18 or verifying their legal address, and dispatches a cryptographically secure confirmation token back to the third party. The transaction is completed instantly, without any underlying identity documents changing hands or being stored on external servers.

Mitigating Fraud and Strategic Use Cases

The introduction of bank-verified credentials introduces a robust mechanism to combat sophisticated financial crime vectors.

• Eradicating Synthetic Identity Fraud: By anchoring digital identities directly to real-time, institutionally verified Know Your Customer (KYC) and Anti-Money Laundering (AML) bank records, the framework severely disrupts the creation of fake profiles and mule accounts.

• Optimised Operational Efficiency: Commercial organisations can transition away from maintaining manual document review queues and high-cost Optical Character Recognition (OCR) software suites, shifting instead toward standardised, secure data validation APIs.

• Enhanced Consumer Privacy: By verifying isolated attributes rather than entire documents, businesses reduce their regulatory exposure under data protection regimes like UK GDPR, as they no longer need to hold sensitive personally identifiable information (PII) databases.

Commercial Outlook and Cross-Border Interoperability

While initially deploying for UK retail and commercial private-sector applications, this collaboration mirrors emerging structural frameworks being built out across Europe and North America.

The involvement of the same six institutional pillars that originally rolled out Open Banking across the UK signals that this standard is positioned for deep market penetration. UK Finance has opened expressions of interest for digital platforms, retailers, and ecosystem developers to integrate into the upcoming live testing phase.

Fintech development teams and DevSecOps professionals looking to streamline application pipelines should monitor these API guidelines closely, as verified-at-source digital identity tools quickly transition from a competitive edge to a baseline regulatory capability.