The Brazilian National Data Protection Authority (ANPD) is developing a restrictive framework for age verification on the internet, which includes limitations on the use of biometric data and prohibits the reuse of personal data. The agency encourages the use of systems that only verify whether a user is over 18 years old without disclosing their identity. This initiative is part of the broader implementation of the Digital Statute for Children and Adolescents (ECA Digital).

One of the key points in the preliminary guidelines is the cautious approach towards facial recognition and biometric methods, highlighting their sensitive nature under current legislation. The ANPD stresses that these methods should only be utilized in proportion to the risk they present, as they significantly increase the exposure of personal information. Therefore, robust safeguards are essential to protect users' privacy.

Additionally, the document advocates for solutions that do not directly identify users, suggesting the use of credential-based systems or cryptographic measures that can confirm age without disclosing personal data. This approach aims to enhance privacy protections while ensuring that platforms have the necessary tools to verify age, thus balancing user rights and digital safety.