Blog · reusable kyc

Reusable KYC explained

Reusable KYC explained: verify once with an approved issuer, then prove age, assurance grade or status anywhere in zero knowledge — with no PII on-chain.

Reusable KYC means a person is verified once, by an organisation qualified to do it — and then proves facts from that verification anywhere, as many times as needed, without repeating the process or re-sharing documents. Done right, it removes the most expensive, most leaky step in digital onboarding. Done wrong, it just moves copies of your passport around faster. The difference is what, exactly, gets reused.

The problem with one-shot KYC

Today, KYC is repeated per relying party. Every exchange, bank, marketplace and fintech runs its own onboarding: the same person uploads the same documents, passes the same liveness check, and waits through the same review — again. Three costs compound:

  • Verification cost. Each relying party pays for a full check that someone else already performed, and users abandon funnels while they wait.
  • PII sprawl. Every repetition creates another database holding identity documents — another breach target, another retention obligation, another copy the user cannot recall.
  • Stale assurance. A check done at signup says little a year later. One-shot KYC has no live revocation: the relying party rarely learns when the verification stops being true.

What reusable KYC actually means

The naive version of “reusable KYC” is forwarding the file: one provider verifies you, then transmits your identity record to each new relying party. That reuses the data — and multiplies every problem above, because now your file travels.

The strong version reuses the verification, not the data. The KYC evidence is examined once and then stays put, with the issuer. What the user carries away is a cryptographic credential — a signed attestation they control with their own keys. When a relying party needs assurance, the user does not send attributes; they send a proof of a claim: over 18, verified at a given assurance level, credential still active. Reuse without disclosure. That distinction is what makes reusable KYC compatible with data minimisation instead of at war with it.

How it works with zero-knowledge credentials

fig. 1 — verify once, prove many times · nothing to breach downstream

The lifecycle has five moves:

  1. Issue. An accepted issuer verifies the person and issues an anonymous credential. The signature is blinded; the holder binds it with a secret only they hold.
  2. Commit. The issuer publishes a compact status commitment — a status root — on-chain, on a heartbeat of roughly 30 seconds. No per-user record, no credential list: one root per issuer.
  3. Present. The holder answers a verifier’s challenge with a zero-knowledge presentation proving exactly the requested predicates — and that the credential is unrevoked against the current root. It expires in ten seconds and binds to that verifier’s exact origin, so it cannot be replayed or relayed.
  4. Verify. The verifier checks the proof against on-chain trust roots — issuer accepted, root fresh, chain height finalized. It stores a yes/no outcome, not identity data.
  5. Revoke. The issuer can revoke by updating its root; the holder can self-revoke without the issuer’s cooperation. Either way, the next presentation fails — revocation propagates at the pace of the heartbeat, not of a support ticket.

What each party gains

Holders stop re-uploading their life. They keep the keys, choose per verifier what to prove, and can walk away — self-revocation needs nobody’s permission. Because presentations are unlinkable, using the same credential everywhere does not build a cross-site profile of them.

Verifiers get assurance that is both cheaper and fresher: no document pipeline to run, no PII vault to defend, and a revocation check that is seconds old rather than months. The proof arrives pre-bound to their origin and policy, which collapses whole classes of replay and phishing fraud.

Issuers turn a cost centre into a product: one verification can serve the whole network, metered by issuance rather than repeated labour. In MintID’s model they remain accountable for quality — approved by a compliance council, bonded on-chain, and auditable through committed evidence rather than raw data.

Objections, honestly handled

“If the verifier never sees documents, who is liable?” The issuer vouches. In MintID’s design issuers are not anonymous services but council-approved organisations with a slashable on-chain bond, allowed assurance tiers and a public authorization state. The relying party’s reliance is on a named, bonded, supervised issuer — much as it relies today on a passport authority it never audits itself.

“Is a proof from last year still worth anything?” That is what status roots are for. Assurance also decays by design: MintID’s credentials carry one of four private assurance grades, and higher grades expire faster — A1 and A2 run twelve months, A3 six, A4 three. Renewal issues a new credential, publicly unlinkable to the old one, rather than quietly extending stale evidence.

“Will regulators accept it?” The honest answer: reliance frameworks for cryptographic KYC are still forming, and any serious project should say so. What a protocol can do is make the compliant path structurally easy — auditable issuer approval, committed evidence trails, fail-closed freshness — and avoid the one thing regulators consistently punish: uncontrolled copies of personal data. MintID is research-stage and treats independent audits as a launch gate, not a press release.

How MintID does it

MintID is a sovereign proof-of-stake Layer-1 built for exactly this pattern — and for what it deliberately refuses to store. The chain carries issuer and verifier records, status roots, staking, governance and audit commitments. It never stores KYC documents, biometrics, names, addresses, dates of birth, credential serial numbers, raw credential payloads or presentation logs. Live state scales with issuers, verifiers and validators — not with the number of people or proofs — so a billion holders cost the chain no more than a thousand.

For relying parties the entry points are the verifier programme; for KYC organisations, the issuer programme; and for the mechanics — the ten-second presentation, the status-root heartbeat, the language boundary that keeps consensus deterministic — the technology page walks the full loop.

And reusable KYC is the foundation of something bigger: once a human is verified once, that verification can back every AI agent they deploy — Know Your Agent (KYA) is reusable KYC extended to the agent economy.

Reusable KYC — quick answers

Is reusable KYC the same as sharing my KYC file?
No — it is the opposite. In reusable KYC the evidence stays with the issuer that verified you. What travels is a cryptographic proof of a specific claim (“over 18”, “grade ≥ A3”, “credential active”), generated fresh for each verifier. Nobody downstream receives documents, attributes or copies of your file.
What does the verifier actually receive?
A zero-knowledge presentation that is valid for ten seconds and bound to a unique challenge, the verifier’s exact origin, the requested policy, the issuer’s current status root and a finalized chain height. It answers the policy question — yes or no — and carries no reusable identifier.
What if a credential is revoked or expires?
Every presentation must prove non-revocation against the issuer’s latest status root, which is republished on a roughly 30-second heartbeat. If the root is stale or the issuer is suspended, verification fails closed. Holders can also revoke their own credential without the issuer’s cooperation.
What happens if I lose my keys?
Recovery is a fresh KYC re-verification with an accepted issuer, which produces a brand-new credential that is publicly unlinkable to the old one. There is no social recovery and no custodian — nobody can restore or seize the credential on your behalf.

Verify once. Prove anything.

Whether you issue verifications or rely on them, the network has a defined role for you — with the evidence kept where it belongs.