Help us make digital spaces safe for children and young people.
Spain advances privacy-preserving solution for age verification
The Spanish Ministry of Digital Transformation on 1 July launched “technical specifications for age verification”, with an app allowing users to obtain tokens proving they are over 18 that can be used to access pornography sites.
“We welcome the commitment of the Spanish regulator to address this issue which is a critical component to ensure age-appropriate experiences for children online,” said 5Rights Executive Director Leanda Barrington-Leach. “It is positive that more stakeholders are working on practical solutions that are effective and rights-respecting. We hope this will contribute to the development of a robust regulatory framework for age assurance systems based on best practice as set out in the industry standard IEEE 2089-1.”
When age-assurance systems are in place, they should meet the following minimum standards:
- Adhere to data minimisation in order to be privacy-preserving, only collecting data that is necessary to identify the age, and age only, of a user
- Protect the privacy of users in line with GDPR and other data protection rules and obligations
- Be proportionate to the risk of harm arising from the service, or a feature of the service, and the purpose of the age assurance solution used
- Be easy for children to understand and consider their evolving capacities
- Be secure and prevent unauthorised disclosure or safety breaches
- Provide routes to challenge and redress if the age of a user is wrongly identified
- Be accessible and inclusive to all users, particularly those with protected characteristics
- Do not restrict children from services or information that they have a right to access
- Provide sufficient and meaningful information for a user to understand how the age assurance system works, in a format and language they can easily understand – including children
- Be effective in assuring the actual age, or age range, of a user
- Anticipate that users may not tell the truth, and do not rely solely on this information.
Effective age verification is a necessity for access to products and services that are legally restricted by age, such as pornography or gambling. Age assurance more broadly, including age estimation techniques, is an important starting point to provide age-appropriate experiences; it should not be used to shut children out, or instead of age-appropriate design of service. In many cases, making services safe for the youngest users is a preferable option that precludes the need for knowing age.
Recommended Reads
Test for G7 leaders will be holding tech firms accountable
G7 leaders have issued a joint call for a safer digital environment for children, urging tech companies to embed stronger protections across digital products and services, including AI systems.
UK ban on social media platforms should be first step to safer services for kids
The UK Prime Minister has today confirmed plans to block social media platforms from offering services to under-16s and to tackle high-risk features. 5Rights is calling on ministers to treat these measures as the first step in a broader strategy to ensure digital products are safe for children by design and by default.
140+ organisations and experts call for tech to be certified as safe for kids – or see their market access restricted
More than 140 organisations and experts have jointly called on European Commission President Ursula von der Leyen to require tech to be certified as safe for children – or face restrictions on EU market access.
Infinite Scroll: Groundbreaking study reveals ‘TikTokisation’ of children online
A groundbreaking new study published by Revealing Reality in partnership with the 5Rights Foundation has revealed how “addictive” short-form video is impacting children
