The 12 key findings of the age assurance technology trial
Read moreShow less
Age assurance can be done.
There are no substantial technological limitations to prevent age assurance systems being used to address age-related eligibility requirements.
The trial independently validated the information provided by age assurance providers about capabilities of their products, processes and services.
There is no one-size-fits-all approach to age assurance that can suit all use contexts.
Age assurance services are evolving, with both technologically advanced options and a pipeline of new services under development.
Providers had a robust understanding of privacy policies, with a strong commitment to privacy by design principles for secure data handling.
The systems performed broadly consistently across demographic groups, but with an acknowledged deficit of data on Indigenous populations.
There is scope for technological improvement, including enhancing ease of use for the average person and enhancing the management of risk in age assurance.
While parental control and consent systems can be used, there are limitations, particularly as they may fail to adapt to children’s evolving capacities as they mature, particularly through adolescence.
The systems were generally secure, but cannot be considered infallible, given the rapidly evolving cybersecurity threat environment.
There was concerning evidence that some providers were building tools to enable (for example) regulators and law enforcement to trace users’ actions to verify their age, which could lead to privacy breaches due to unnecessary and disproportionate collection and retention of data.
The standards-based approach used in the trial provides a solid basis for development of a conformity accreditation process for age assurance providers in Australia.