Comment by baby_souffle

> I already addressed this: unintentional leaks from regulated companies are very rare. It's not a perfect system, but it works to some extent.

The corpus of HIBP would indicate that leaks are not rare. Your definition of "some" may need re-calibration.

I would prefer that this data not exist to begin with; can't leak and de-anon data that was never captured.

> In which of these scenarios does having the ISP issue an age-token make things worse for the customer? I really cannot think of one, but I'm open to changing my mind.

Having to bother with any "confirm you are an adult human" _at all_ is a hassle. Any and all circumstances that require this makes things worse for the customer and generates data that may risk de-anonymizing the customer.

And why bother when I still can't figure out what stops under-age me from buying/borrowing/stealing somebody else's token?