The Potential Dangers of Digital ID Cards in the UK and Beyond

My first ID card was a flimsy laminated driver’s license. In the U.S., it includes a photo, biometric data (like eye color and height), and date of birth. This spurred its increased use beyond just driving; bars began issuing “cards” to minors attempting to purchase alcohol, interpreting the data as proof of being 21, the legal drinking age. I must admit, it wasn’t until I turned 18 that I learned to use a pencil to edit my birth date to enjoy some cheap cocktails.

This tale may seem like a dull 20th-century anecdote, yet it holds significant relevance in today’s ongoing discussion about the implementation of digital identity cards in the UK and elsewhere. While the cards themselves may differ vastly, the core issue remains the same. Firstly, the use of ID cards tends to escalate over time, and secondly, they are exceedingly easy to compromise.

The British government isn’t the first to suggest that citizens should carry a compact ID application on their smartphones for accessing government and public services. Countries such as China, Singapore, India, and Estonia already mandate digital IDs. Advocates argue that digital IDs help reduce fraud, simplify travel and purchases, and verify identity without the need to carry multiple physical documents.

“This digital ID will enhance your security,” the government might claim. “You can use it for shopping, obtaining medical care, and better yet, it will prevent any confusion about your immigration status, sparing you from unjust detention.” Apologies for the specificity, but the point is clear: these cards are touted as solutions to non-issues (like carrying a health insurance card) or problems that can’t be resolved by merely having an ID (immigration is complex and multifaceted).

Returning to the topic of usage expansion. What transpires when authorities implement digital IDs on mobile devices to authenticate citizenship during job applications or for social services? Fundamentally, they reside alongside other apps which, in certain instances, can share data with them. Some of these applications access sensitive data, including bank information, medical schedules, personal messages, and photos.

As journalist Byron Tau observes in his brilliant book: control means. Many applications gather information about you, often without your awareness, such as your location, purchasing behaviors, and even details from other apps on your device. There are businesses focused on extracting this data from applications like dating services and selling it to third parties, including government entities.

This practice is largely permissible in the U.S., albeit unsettling. The UK and Europe have regulations that curb rampant data sharing, yet the technology exists. The only shield you have against government ID applications monitoring your location via unrelated apps is the government itself—and that, too, may evolve. Regulations can shift. However, once you start using that digital ID for employment, entering bars, tipping, or taking public transport, it’s unlikely you would discard it.

Consider the potential of this creepiness: Governments may resort to using digital identities in much more invasive manners than initially promised. Conversely, the public might find it beneficial for so many tasks that they deem the trade-off worthwhile. If buying a candy bar is effortless without a credit card, who cares if the government tracks your daily whereabouts? That perspective holds until the government decides you’re the enemy.

And let’s not overlook the hacking angle. Even if governments refrain from spying using your digital ID, malicious actors might not. A hacker could exploit vulnerabilities to access your identity or harvest personal information through a compromised app. Security experts have warned the UK government regarding the threats posed by digital IDs, and even the notorious U.S. surveillance firm Palantir has backed away from support for digital IDs. As one of their executives recently put it, digital identity is:very controversial.

It’s crucial to recognize that concern shouldn’t center merely around identity theft. One must also consider the potential for location tracking, message monitoring, unauthorized bank access, and even phone tapping. Comparatively, a traditional ID card, while it can be lost or altered, only results in the loss of that card—not a comprehensive loss of other personal data.

Annalee’s Week

What I’ve Been Hearing

Our Ancestors were Messy, is a podcast exploring African American celebrity scandals from a century ago, drawn from the pages of black newspapers.

What I’m Reading

Thief’s Philosophy Written by Fran Wilde, this futuristic narrative involves a wealthy individual hiring a thief for entertainment at a party.

What I’m Working On

I’m delving into the history of “review bombing,” a phenomenon where media and products are inundated with one-star reviews driven by political motives.