[aneeshnl]

I remember admissions form of children (not sure which Indian state) that contains Aadhar (UID of India) listed in a server with directory listing enabled. Response was - the site is hosted in a secure government datacenter. No chance of leaking data.

[agileAlligator]

I remember accessing SEBI, PWD records through google dorking. They are probably still live, haven't checked. I reported it to all the correct authorities, tried to get in touch with various organizations. To no avail.

[butterNaN]

I got myself involved in an argument with the Post Office recently. I was posting a letter to an international address and they asked me for - I kid you not - a colour print of my Aadhaar (black and white was rejected).

For people unaware, the document contains your photo, address, date of birth, and a very important number that the government itself 'advises' to not disclose.

I really needed to post that letter so I had to cave in.

When the letter was received, the receiving party told me they also received the Aadhaar stapled with the original letter.

Ironically, this practice of sharing your Aadhaar everywhere seems to stem from trying to "increase security".

It makes sense if you know who the Government thinks is the threat to that security - namely Indians against the government. What they don't seem to realize is that they're leaving the population completely vulnerable from both internal and external actors.