Semgrep eventsID verification is quickly shifting from “nice to have” to regulatory mandate — especially across EMEA. Platforms are being pushed to prove who their users are. Governments call it accountability. Companies call it compliance. But what happens when the systems designed to verify identity become the next high-value target? Discord was forced to pause its ID verification rollout after a breach involving a third-party provider. Meanwhile, Reddit has been fined by UK regulators for failing to implement sufficient age verification controls. Organizations are caught between regulatory pressure and real security risk.
In this episode of Security Rulez, Dr. Katie Paxton-Fear is joined by Akira Brand, cybersecurity professional, to unpack the growing tension between identity verification and privacy.
This discussion tackles the hard questions:
When compliance demands identity, how do you minimize harm?
What does harm look like even when data isn’t stolen?
Are third-party verification services introducing systemic risk?
What does “privacy by design” actually look like in this space?
And why is strong privacy posture not just ethical - but strategically smart for companies?
As a bonus, every attendee will get to pick their favorite piece of Semgrep swag after the event, so you’ll walk away with sharper skills and something cool to take home.