this post was submitted on 22 Feb 2026
688 points (99.4% liked)

Privacy

9013 readers
322 users here now

A community for Lemmy users interested in privacy

Rules:

  1. Be civil
  2. No spam posting
  3. Keep posts on-topic
  4. No trolling

founded 2 years ago
MODERATORS
iopq@lemmy.world
688
Persona, Discords "Age Verification" Service, creates a profile of you, sends it to the US Feds and deems you suspicious based on your appearance, exposed by Hackers (www.therage.co)
submitted 2 days ago by not_IO@lemmy.blahaj.zone to c/privacy@lemmy.world
100 comments fedilink hide all child comments
you are viewing a single comment's thread
view the rest of the comments
[–] horn_e4_beaver@discuss.tchncs.de 20 points 1 day ago (4 children)

Why can't people just go down to their local shop, show their ID like when you buy alcohol, and buy some kind of age verification token/code which can be used with online services?

[–] cmbabul@lemmy.world 6 points 17 hours ago

Cause the goal has never been to prevent underage access it’s to create a database of troublemakers and brown people

[–] JcbAzPx@lemmy.world 4 points 16 hours ago

They very literally could not possibly care about protecting children less. They just want as much of your data as possible so they can neutralize you if you ever become a problem to them.

[–] raspberriesareyummy@lemmy.world 24 points 1 day ago

because that would be sensible and privacy-friendly, and our governments are controlled by fascist pieces of shit that want to have full control over us.

[–] PhireFloofski@lemmy.world 0 points 22 hours ago (3 children)

my id has an nfc chip built in, I can scan it with my phone to confirm my identity. if only online services could implement an identity check that way.

[–] tmyakal@infosec.pub 10 points 20 hours ago

if only online services could implement an identity check that way.

Outside of banking and taxes, I can't think of a single online service that I want verifying my identity. Ostensibly, these services just want to verify if you're of legal age. The small, binary question of "Are you over 18?" should require much less private data than would be needed to verify my identity.

[–] ADTJ@feddit.uk 2 points 22 hours ago (1 children)

They can! In fact, in the UK some government services do this already however there's a couple of drawbacks:

  1. They'd need to use some kind of companion app for each device since the web APIs won't give them access to this.

  2. For us at least the NFC chip still contains a digital copy of the photo so it's not really any better since I don't know what data is going to be sent by the app.

[–] PhireFloofski@lemmy.world 1 points 18 hours ago

Maybe I'm wrong then, but I just kinda assumed that when I log into some government platform by scanning my ID with an official app all it does is it confirms my identity and sends some kinda encrypted token to the api of whatever platform I'm trying to access.

Although if that's not the case then yea, I guess that wouldn't be very anonymous either.

[–] horn_e4_beaver@discuss.tchncs.de 1 points 19 hours ago (1 children)

My point wasn't one of convenience, but more one of privacy. What's the difference between someone demanding a photo of your ID (and then storing it) and someone taking the same information from an NFC scan and then storing it?

[–] Don_alForno@feddit.org 3 points 17 hours ago* (last edited 17 hours ago)

I don't know about other countries, but the german e-ID for example is more sophisticated than that. It can actually limit access to the information that is necessary for the given application (your terminal or app shows you what specific information is requested before you confirm via PIN). So it can just return "yes/no" to the question "is this person an adult?" Almost no company uses it, likely because they can't steal data that way.