I am going to have a go at creating a template that others can use
You could work with
@eva2000 who has already done
a template that is on github (
see post). That's what we were going to use as our starting point.
which AI tools do that? I don’t think members of my forum would be happy about that idea. Many of them hate anything to do with AI
Whilst not scanning and actioning anything the closest I have found is
https://xenforo.com/community/resources/al-perspective-api-2-x.9175/ which has been mentioned a couple of times in this thread. They do have a demo forum where you can try it out.
Otherwise with XF2.3+ you could use the webhook interface I assume to send posts off to an AI engine for some kind of analysis and process the results. Obviously something more tightly integrated would be better I expect, but these days I don't really code PHP so my thoughts naturally stray to the alternative options.
I cant see many of those agencies wanting to deal with small forums as its not worth their while.
I suspect the most small forums that are not doing anything fundamentally wrong (ie chat about a totally legal everyday subject) would at most get generic emails from Ofcom if they felt a breach was happening (which is realistically only going to come to light from someone reporting your forum (probably a disgruntled troll), or if Ofcom commission some giant AI crawling monster that goes out looking for trouble). This is why I think realistically doing the risk assessment(s) and using this as an opportunity to improve some of the moderation tools we already have is probably going to be all that can be done for small sites and hopefully should be enough.
Prospective members are unlikely to sent you their ID and even if they did, whos to say its legitimate and not doctored.
The whole thing is at odds with GDPR regulations.
Generally there seem to be two approaches:
The first where you have information about the user (say from a purchase) and you submit this information to a checking agency - they will then try to validate age from that information and if need be ask the user for more info (this is the approach
https://www.verifymyage.co.uk/ take as their product seems mostly aimed at purchases of age restricted goods - so typically there is already a delivery address and so forth known). I'm about to start to have a little play with their service to see what it is like.
The second approach has the user essentially own a digital ID and present that digital ID to the website in question. The main player here seems to be Yoti who power things like
https://www.postoffice.co.uk/identity/easyid - so the member has their ID and can give you just enough to validate what you need (ie 18+) - in that latter case all the private information stays with Yoti (all you get is they are 18+ you don't get anything more than that - no name, address or anything sensitive). So in theory all GDPR fine (assuming you even want a digital ID - but it may well start to become a requirement though side-loaded legislation like the OSA since upfront digital IDs have not proved popular with the public, but are popular with governments. So direct legislation is liable to fail. Safer to do it as a "wont people thing about the children" legislation)
In both cases the site owner pays for the validation service. All these services are really geared up for business to business however which isn't going to work well for individuals running little sites. I would expect there to be some enterprising options hitting the market to cater to smaller sites, in fact I'm a little surprised they are not already a few around. However I may just have not found them. I'm waiting to hear back from Yoti about pricing, but the verifymyage lot charge about £1 per check so I'm assuming it'll be something of this order (unless there is a minimum commit). If they get back to me I'll update.
