In recent comments, Andy Yen, the CEO of Proton, alerted the public to alarming implications of the current push for global age verification legislation. He contends that these measures could signal the "death of anonymity online," as they require users to submit sensitive identity documents, potentially creating a vast pool of data ripe for exploitation.

As various jurisdictions, including the EU and the US, explore age verification systems to enhance online safety for children, Yen highlighted significant concerns regarding privacy and security. He stated, “Age verification as is currently being proposed in country after country would mean the death of anonymity online. We simply can’t afford to get this wrong.”

Yen asserts that the collection of sensitive data, including government IDs and biometric information, poses a significant risk. He pointed to several high-profile data breaches, such as the hack of Discord's third-party verification services in October 2025, which exposed the personal information of over 70,000 users, including government IDs. He claimed, “The more sensitive data you stockpile in privately held databases, the bigger a target it becomes for criminals.”

Privacy advocates echo Yen's warnings, fearing a future where the online experience is tightly monitored and controlled by corporations. The potential for misuse of collected data raises serious concerns, especially as these age verifications may evolve into broader surveillance measures.

Yen criticizes tech giants for capitalizing on parental fears around child safety. According to him, corporations like Meta leverage such regulations to shift responsibility away from themselves while continuing to engage in practices that compromise user privacy. By implementing stringent monitoring measures, these companies risk further complicating the balance between safety and privacy.

Instead of supporting blanket age verification, Proton proposes a reevaluation toward enhanced parental controls that put the responsibility back into the hands of parents rather than large corporations. If age verification is deemed necessary, it must adhere to strict privacy-by-design principles, such as conducting checks on users' devices, using facial scans that are instantly discarded, and ensuring that no identifiable information is stored.

Yen emphasizes the importance of having open-source technology to ensure that users can trust the systems they are interacting with. He states the safest data is that which is never collected, arguing that any attempt to verify age without compromising personal privacy is fundamentally flawed unless handled correctly.

In conclusion, Yen warns against a future where online anonymity is sacrificed under the guise of protecting minors. He insists on addressing the root causes of online harm and calls for a collective reconsideration of how society approaches child protection in the digital landscape. The implications of these proposed regulations hold significant importance and merit a thorough examination of potential unintended consequences for privacy and security in the online realm.