Not only would it be a good idea to shift towards the use of fingerprints for authentication, but there shouldn't be retention requirements that says a company has to hold onto all of this documentation. Once the documentation is reviewed and processed and the person is authenticated, there should be requirements to destroy the documentation.
|