Three Swedish ECR MEPs — Dick Erixon, Charlie Weimers, and Beatrice Timgren — have submitted a parliamentary question to the European Commission demanding answers about the security and anonymity of the EU's new age verification app, following reports that hackers bypassed it within two minutes of its launch.
The question, filed on 28 April 2026, targets the Commission's claim on 15 April that the app was technically ready and enabled anonymous age checks without sharing personal data. The MEPs cite a Politico article detailing the rapid breach, which they say raises doubts about technical readiness and data protection.
Concrete asks and policy direction
The MEPs ask three specific questions: on what grounds the Commission deemed the app ready despite the reported hack; how it will prevent exposure, storage, or misuse of sensitive personal data when government-issued IDs may be required; and how it will protect online anonymity for users with particular needs for such protection. The questions signal a push for stronger security guarantees and privacy safeguards, reflecting a concern that the app may compromise anonymity rather than preserve it.
Expected follow-up
The Commission is expected to reply within approximately six weeks. Its response will indicate whether it acknowledges the reported vulnerabilities and what corrective measures it plans, potentially shaping the app's future deployment and user trust.