Overview
Legl is a certified Identity Service Provider against the UK government's Digital Identity and Attributes Trust Framework (DIATF), gamma version. Both Standard CDD and Enhanced CDD are DIATF-certified products in Legl. This article explains what the certification covers and what it means for your firm.
What you can use DIATF certification for
Firms on a DIATF-certified plan can:
Demonstrate that their identity verification process meets a UK government-endorsed standard
Use a CDD product that includes an additional fraud check against the SIRA national fraud database
Reference a defensible, auditable certification level (M1A for Standard CDD, H1A for Enhanced CDD) when documenting their CDD process
How DIATF certification works in Legl
DIATF certification applies at firm level, not at workflow or matter level. It is set on the firm's plan when DIATF-certified CDD is purchased. Once enabled, all Standard CDD and Enhanced CDD checks run by the firm automatically use the certified version of the product. There is no per-workflow toggle and fee earners do not need to choose between certified and non-certified versions when sending a request.
The two certified products are mapped to specific identity profiles within the framework:
Standard CDD is certified at identity profile M1A (Medium confidence)
Enhanced CDD is certified at identity profile H1A (High confidence)
What the fraud check adds
The DIATF-certified products include a check against the SIRA national fraud database. This is the same database used by major UK banks and insurers when assessing applicants for mortgages and loans. If a client's identity has been previously reported for fraudulent activity, the fraud check will return a result that flags this for the firm's review.
ℹ️ Further guidance
For detail on what fraud check results mean and what to do when one returns Consider, see Understanding fraud check results.
What this means for fee earners and clients
For fee earners, there is no change to the day-to-day experience. The fraud check appears as an additional section within the CDD report alongside the existing checks. There is no extra step in the workflow builder, no separate report type, and no additional review step.
For clients completing a Standard CDD check on a DIATF-certified plan, there is one change: clients must take a live photo of their ID document on their mobile device during the check. They cannot upload a pre-taken image. This live capture requirement is part of the M1A certification standard. For most clients, it adds minimal friction to the process.
Where to find this in Legl
DIATF certification is configured at firm level. Firm admins can confirm whether their firm is on a DIATF-certified plan by reviewing their Engage settings, or by speaking to their Account Manager.
Permissions and access
DIATF-certified CDD is enabled at firm level on a per-plan basis. There are no user-level permissions to configure. Once the firm is on a certified plan, all users running Standard CDD or Enhanced CDD automatically use the certified version.
Important information
DIATF certification applies to Standard CDD and Enhanced CDD only. Basic CDD and In-Person CDD are not part of the certification.
The fraud check only appears in CDD reports for firms on a DIATF-certified plan.
For Standard CDD on a DIATF-certified plan, clients must take a live photo of their ID document. They cannot upload a pre-taken image.
Firms moving onto a DIATF-certified plan are required to sign a short contractual amendment as part of the framework. Your Account Manager will guide you through this.
Legl is certified against the gamma version of the DIATF framework.