Technical details on the Digital Vaccination Record
The system behind the Digital Vaccination Record
The Digital Vaccination Record is an open-source project run by the Robert Koch Institute.
How does the Digital Vaccination Record work?
Documenting the Covid-19 vaccination or recovery from Covid-19 in the Vaccination Certificate Service
To create an EU Digital COVID Certificate for vaccination or recovery the data for the vaccinated or recovered person must be entered on an online form after vaccination or recovery. To do this, the medical staff logs into the Vaccination Certificate Service. The EU Digital COVID Certificate can then be handed over to the vaccinated person, in the form of a QR code scanned digitally or printed on paper.
Presenting an EU Digital COVID Certificate using the CovPass-App
The vaccinated or recovered person scans the QR code on the EU Digital COVID Certificate of vaccination or recovery using the CovPass-App. The vaccinated or recovered person can use the QR code as digital evidence of their individual Covid-19 status. The QR code is secured cryptographically with a signature.
Checking a certificate’s status using the CovPassCheck-App
If needed, the CovPassCheck-App can be used to scan and verify an EU Digital COVID Certificate for vaccination against Covid-19, recovery from Covid-19 or for a negative Covid-19 test. Alternatively, it is also possible to present a paper vaccination certificate.
Our principles for data protection and security
No centralised data storage
The data for the vaccination certificates is given an electronic signature on the RKI server. As part of this process, the data is temporarily processed in the RKI server’s random-access memory and then removed from that memory. It is not stored permanently.
The QR code only contains a minimum amount of data, in accordance with EU specifications. Only the certificate status, surname, first name and date of birth are displayed when a QR code is checked. This data is not stored in the checker app.
Secure and trustworthy
The EU Digital COVID Certificates contain a cryptographic signature that protects them against manipulation and forgery.
Secure communication channels
All forms of communication are encrypted based on common standards.
The Digital Vaccination Record meets the requirements of Germany’s Federal Office for Information Security (BSI) and has been tested extensively.
After Corona vaccination - these are the next steps
After recovery from corona infection - these are the next steps
How to check the COVID digital certificate with the CovPassCheck app
Join and participate in this open-source project
If you would like to take part in the project, you can switch to GitHub and get started straight away.