Top 4 Themes from the Hacker News thread
| # | Theme | Supporting Quote (with author) |
|---|---|---|
| 1 | Poor security & unnecessary retention of high‑value documents | “The infrastructure storing these identity documents—full passport scans, driver’s licenses with photos, names, and identifying numbers—was left completely unprotected on publicly accessible web servers.” – dgellow |
| 2 | GDPR storage‑limitation violations | “Once a document has been used to verify a person's identity and that the person is of legal age, there is no reason to retain a copy of the document any more.” – charles_f |
| 3 | Inadequate encryption and access controls | “Printed IDs should be stored in an encrypted database, should they really need to be stored at all.” – charles_f |
| 4 | Weak enforcement & call for stronger liability | “Leaking PII should be very, very expensive, and company leadership should face imprisonment.” – animuchan |
All quotations are taken verbatim from the discussion and enclosed in double‑quotes as required.