ID Verification Laws Drive Increased Data Breach Risks
ID verification laws are compelling companies to store large volumes of sensitive information, turning regulatory compliance into a significant security challenge. Acronis highlights how integrated backup and cybersecurity platforms enable MSPs to simplify operations and close vulnerabilities that attackers exploit.
Challenges in Data Protection
The cybersecurity community has long adhered to the principle: do not collect more data than you can protect. However, increasing legal mandates now require organizations to hold extensive sensitive data, creating a difficult situation where they must protect information they might prefer not to retain.
Case Study: Discord Data Breach
In early October 2025, Discord revealed a data breach involving one of its third-party customer service providers. Cyberattackers accessed personal data of users who contacted Discord’s Customer Support or Trust and Safety teams.
- Compromised data included names, email addresses, IP addresses, limited billing details, and customer service messages.
- Notably, the breach involved stolen government-issued ID documents.
“The cyberattacker gained access to government ID images from users who used Discord’s partner to appeal expulsions for being underaged.”
— Official statement from Discord
Impact of Age Verification Laws
Discord’s collection of government-issued IDs was driven by global age verification laws, which are increasingly widespread. Such regulations force platforms to collect and store sensitive identification data to verify user ages, raising the stakes for data security.
Acronis recommends adopting unified backup and cybersecurity solutions to reduce operational complexity and strengthen defenses against breaches targeting compliance-related data.
“MDP that rely on combined backup and cybersecurity tools can close the gaps attackers exploit.”
Author’s summary: Expanding ID verification laws compel companies to hold sensitive data, heightening breach risks; integrated cybersecurity platforms are essential to safeguard this information while easing compliance.