France Identité App Launches Sandbox for iOS, Proves Age Check Privacy Bona Fides

France’s France Identité app is moving from a developer‑only experiment to a cross‑platform testing platform, with the iOS sandbox now mirroring its Android counterpart. By integrating OpenID 4 Verifiable Presentations 1.0, the sandbox gives credential issuers, relying parties, and verifiers a common language for sharing cryptographically‑signed identity data. This alignment with the European Digital Identity Wallet framework accelerates adoption of interoperable, privacy‑preserving credentials across the EU, positioning France as a testbed for the continent’s broader digital‑identity agenda.

The recent unlinkability test marks a milestone for age‑verification technology. In real‑world conditions, France Identité proved it could confirm a user’s legal age without generating any tracking signals, fulfilling the app’s privacy‑by‑design promise. Such demonstrable anonymity is crucial as regulators across Europe tighten requirements for online adult‑content platforms, where the double‑blind method mandates that neither the site nor the verifier can link a user’s identity to their browsing habits. Successful privacy validation could encourage other jurisdictions to adopt similar standards, reshaping how age‑restricted content is accessed online.

Beyond France, the Age Verification Providers Association is sounding the alarm about the growing influence of Big Tech in verification flows. Hardware‑anchored age signals tied to Apple, Google, or Microsoft accounts risk creating persistent identifiers that bypass traditional cookie controls, potentially exposing users to cross‑service profiling. The New Mexico trial, where Meta faces scrutiny over age‑verification costs and interoperability, underscores the legal and commercial friction points. Industry stakeholders are therefore exploring alternatives such as FIDO2‑based passkeys and progressive‑web‑app token models that keep the trust root on the device rather than the platform, aiming to preserve user privacy while meeting stringent regulatory demands.