Verify what matters, without collecting more than necessary.
Relay confirms eligibility with minimal data exposure so you can verify real people without turning verification into surveillance.
Add a lightweight widget where eligibility needs to be confirmed or enforce verification at the infrastructure layer with Relay. Configure once and apply consistently.
Select the eligibility requirement that applies to your use case. Relay applies pre-built templates informed by regulatory guidance, standards, and best practices, so enforcement stays consistent without custom logic.
Your system receives a signed pass or insufficient result and you do not receive or store raw identity documents. Relay's privacy-preserving architecture protects user privacy while delivering the assurance you need.
Human check
Distinguish real users from automated systems before granting access to sensitive features.
Age assurance
Gate access to regulated or age-restricted experiences without collecting and storing full identity data.
Targeted eligibility checks
Enforce specific requirements and receive a simple outcome, without ingesting identity data into your systems.
How Relay's privacy-preserving architecture works
Privacy-preserving means verification is isolated from your application and the content a user is trying to access.
When Relay runs, it is asked only to confirm the eligibility requirement you’ve set, no specific information about what the user is trying to browse. Your platform receives only the result, not identity documents or personal data.
Unlike traditional identity verification, which often collects and verifies a full set of identity information in a single, centralized flow, Relay isolates the eligibility check and limits data exposure by design.
From deepfakes to synthetic faces: detect more AI-based face spoofs with Relay
The world is moving beyond self-attestation as the primary age assurance method and jurisdictions across the globe have varying requirements.
Relay translates regulatory guidance into actionable age requirements across regions and supports your broader compliance strategy.
Under the UK Online Safety Act (18+), Ofcom outlines expectations for “highly effective” age assurance for certain services. Depending on your use case, supported methods may include:
- Document-based verification with live selfie matching
- Facial age estimation
Frequently asked questions
What does privacy-preserving architecture mean? Toggle description visibility
Relay's privacy-preserving architecture separates identity verification from your application. Persona confirms eligibility by conducting identity verification aligned to the configured template requirements and returns only the eligibility result, not identity documents or personal data.
Can users reuse their verification? Toggle description visibility
Yes. After completing verification, users can store a credential in Persona Wallet. On return visits, they authenticate with a passkey and reuse their previously verified eligibility result, reducing repeated friction. Some regulators refer to this as a “reusable digital identity” or in the context of age assurance, an "age token."
Does Relay require domain allowlisting? Toggle description visibility
Yes. Domain allowlisting ensures verification requests originate from authorized environments and prevents misuse by unauthorized sites. Allowlisting validates the origin of the request but does not provide Persona with visibility into specific content being accessed.
How is Relay different from traditional verification? Toggle description visibility
Traditional verification often requires platforms to collect and store full identity documents or detailed personal information and verify that information in one experience controlled by that platform. Relay works differently. When verification is required, it steps up to an identity verification experience that only collects the minimum information needed to confirm whether a user meets the configured eligibility requirement. Only an eligibility result is returned to the platform, without transferring raw identity documents or personal data. Once processed, verification-related data is deleted. This gives you the assurance you need without needing to collect, store, or manage your users’ sensitive data.
Does Relay support different regulatory requirements? Toggle description visibility
Yes. For age assurance, Relay uses configurable templates informed by published regulatory frameworks across jurisdictions. You can apply region-specific age thresholds consistently, without building custom logic for each region.
Does using Relay make my organization compliant? Toggle description visibility
For age assurance, Relay templates are designed to help organizations implement assurance-based age controls, with underlying methods informed by published regulatory frameworks. However, each organization is responsible for determining how applicable laws and regulations apply to its services. Relay should be implemented as part of a broader compliance and risk strategy tailored to your specific jurisdictions and use cases.
