[iakov]

A government API / website to do the verification can work similar to OpenID - the end application doesn't know any PII, receiving a JWT with some basic info (name, age email) instead.

Just something on top of my head, I'm sure that there are solutions to this. It's the political will and balls that are nowhere to be found...

[uncletammy]

Sorry, no. I don't trust a government API/website with my personal information. They collect and abuse the private data that I DON'T willingly give them access to. Imagine what they'd do with the data I do.

[mrweasel]

The government already have all your personal information. If you mean that you don't trust a government API to do age verification, then that's already an option in some countries and it doesn't have to expose anything.

Denmark have MitID, which is a sort of government OIDC/OAuth2 thing. There's no issue in having it expose only a single claim, such as age, or adult=true/false in age verification scope. You don't have to open the floodgates to government data, in fact Denmark has navigated that pretty well through the last three iterations of our government issues online ID scheme. There's even laws preventing cross referencing data from different database, in the case that you for some reason have access to it.

[iakov]

Where do you live where the government does not have your basic information - name & date of birth? You're being unreasonably paranoid IMO.