> The paper suggests a simple approach: using a signal from the device’s operating system, activated by the parent during configuration. The option “is this device for a minor?” would generate a flag that cannot be bypassed with a reset and would allow online services to receive only binary information — isMinor: true/false — without names, documents or other personal information. “I’m not talking about ‘stamping’ every network request with a label,” the author clarifies, “but a simple API check on request, very similar to accessing geolocation data”. A solution that, from the EDP’s perspective, demonstrates how security can be strengthened without sacrificing privacy.

This is great! Absolutely the correct solution. Finally, at least some politicians who get it?