Every sixty minutes £28,000 is lost to fraud – this is more than the average UK salary. In an effort to tackle fraud, illegal content, and online safety, the UK government introduced the Online Safety Act, redefining online platforms’ duty of care towards their users.
The Online Safety Act regulates the online space around content that is considered unsafe or age-sensitive, such as social media content, fraudulent advertising, and the sale of sensitive or age-restricted products. Any platform failing to uphold its duty of care can receive fines of up to £18 million or 10% of its qualifying worldwide turnover, whichever is greater. The Act received Royal Assent on 26 October 2023 and is now in force, with Ofcom acting as the regulator. Its duties have been introduced in phases, with the illegal content duties taking effect on 17 March 2025 and the child-safety and age-assurance duties following later in 2025.
The government states ‘Freedom of expression will be protected because these laws are not about imposing excessive regulation or state removal of content but ensuring that companies have the systems and processes in place to ensure users’ safety.’
You might be thinking ‘so what does this mean for my business?’ It should be noted that only sites which host user-generated content such as images, videos, and comments, or which allow UK users to talk with other people online through messaging, comments, and forums are impacted. If this applies to you, these next steps may be vital.
There are intelligent solutions to identify and validate details about your users which do not produce substantial amounts of customer friction – one of the most effective being MNO (Mobile Network Operator) data. During onboarding, users are quick to hand over phone numbers, yet the information surrounding the mobile is rarely utilised properly.
MNO data can be matched with information provided by a user to verify age, address, name, device, SIM-card, and so on. It can even be used to check for indicators of fraud such as whether call forwarding or porting is active, or whether a SIM-swap attack has occurred.
When deciding how to validate users, companies such as TMT ID can harness the MNO data using an easily integrated API (Application Programme Interface) to provide your business with GDPR (General Data Protection Regulation) compliant and frictionless identity validation. They can also validate whether your user is 18+ or not using just a phone number – making your customers happy, and your website legally compliant.
If you have any questions about using mobile data when verifying identity, or more specifically, age, please arrange a call, or reach out to a member of the team.
Parliamentary Bills
Last updated on June 19, 2026
We provide the most comprehensive device, network and mobile numbering data available
Contact us > Chat to an expert >