Digital wallets: Are they potentially hazardous for your data?

Digital wallets: Are they potentially hazardous for your data?

At the recent Payment Exchange 2025 conference, a lively debate on digital identity was moderated by Jens Kohnen of Starfish. The discussion, attended by experts from various fields, highlighted the potential benefits and challenges of digital identity in the modern digital economy.

Lilith Wittmann, Germany's most renowned hacker, expressed concerns about the extensive risks associated with the digital wallet. She pointed out that a wallet, both physical and digital, can be stolen, and individuals could be held responsible for fraud committed with it. Wittmann also criticized lax data protection authorities in some member states, potentially exploited by companies.

On the other hand, Mirko Mollik, Identity Architect at SPIND, emphasized the security measures that can be implemented for the digital wallet. He noted the use of additional PINs, two-factor authentications, and lockouts as security measures for the digital wallet. Mollik also mentioned the harmonization efforts at international forums such as the Financial Action Task Force (FATF) to improve Anti-Money Laundering (AML) and Counter-Financing of Terrorism (CFT) compliance.

Nancy Timm, founder of Hakata, explained that the European Union will soon require a digital representation of the wallet. She believes this is important for combating misinformation, particularly on social media. Timm also mentioned the potential business models financial service providers and payment providers are pursuing, beyond just the ID card.

Oliver Lauer of the DSGV expressed that he does not wish to take a side in the debate. However, he noted that everything that was previously in a wallet will now be on a phone, and ultimately, customers have the power to decide. Lauer also highlighted the benefits of the digital wallet, such as quick verification when opening an account and its ability to be used across the EU.

Another audience member expressed concern about falling behind in digitalization and eroding personal rights. Mollik responded by emphasizing that the European Union Identity (EUID) prioritizes transparency in data sharing, collaborating with the EU and member countries.

Lukas Homrich, a freelance journalist and member of the dreimaldrei journalists' office, focused on economic and financial topics, raised questions about the topic of protecting personal data in Germany. The discussion revealed a divided opinion on this matter.

The experts at Payment Exchange 2025 presented a broadly positive but nuanced view on digital identity. They emphasized its potential to enhance financial inclusion, streamline onboarding, and secure transactions. However, they also stressed the need for robust regulatory frameworks, privacy safeguards, and cybersecurity measures to manage privacy, trust, and operational risks effectively.

Experts highlighted the benefits of increased financial inclusion and streamlined onboarding due to advanced digital identity systems. They also pointed out the improved security and fraud prevention offered by digital identity linked authentication. Furthermore, they discussed the importance of interoperability and scalability, supporting privacy-preserving approaches, and the need for regulatory encouragement for cybersecurity standards aligned with NIST frameworks.

However, they also acknowledged the implementation complexity, regulatory and legal hurdles, privacy concerns, and potential for increased attack surface associated with digital identity. They recommended the adoption of privacy safeguards and verifiable credentials, deployment of AI-powered scam detection and real-time transaction verification, and harmonization efforts at international forums to improve AML and CFT compliance.

In conclusion, the experts at Payment Exchange 2025 converge on the view that digital identity is essential for modern digital economies and financial inclusion. However, achieving its full promise depends on coordinated regulatory, technical, and security measures to manage privacy, trust, and operational risks effectively.

[1] World Bank, "Digital Identity and Financial Inclusion," 2020. [2] U.S. Treasury and SEC, "A Framework for Digital Identity," 2021. [4] CommBank, "Identity Protection App," 2022.

1. The debate at the Payment Exchange 2025 conference underscored the importance of integrating robust security measures, such as additional PINs and two-factor authentications, in digital wallets, as highlighted by Mirko Mollik, Identity Architect at SPIND.
2. Lilith Wittmann, renowned German hacker, brought up concerns about potential exploitation of lax data protection authorities and the risks associated with digital wallets, emphasizing that they can be stolen and individuals could be held accountable for fraud committed with them.

Read also: