Forums, comment sections, and community platforms are increasingly in scope for age assurance. Regulators expect protection of minors where user-generated content can be harmful. The challenge is to comply without turning every visit into a heavy ID-upload flow.

When you’re in scope. If your service is likely to be used by under-18s and exposes them to harmful content (e.g. under the UK Online Safety Act or EU DSA), you need effective age assurance. That usually means more than "tick a box" or unverified payment. Check regulator guidance (e.g. Ofcom, Commission) for your jurisdiction.

Choosing a flow. First-time users: they need to prove age via a method that meets the bar (e.g. ID + liveness or facial age estimation). Prefer a provider that does not store documents or faces and returns only a signed result and audit ID. Returning users: use reverification (e.g. face-only or token) so they don’t re-upload ID every time. If your age verification is part of a broader ecosystem, returning users may already be verified elsewhere and need only a quick check on your site.

Integration. Many forums and communities run on WordPress, custom stacks, or SaaS. Look for an API that fits your stack (e.g. OAuth-style redirect, JWT or signed assertion) and, if you use WordPress, a plugin that gates access to forums or specific content based on verification outcome. Keep the UX simple: one clear step for first-time verification, minimal steps for return visits.

Trust and privacy. Users are sensitive about handing over IDs. Explain why you verify (e.g. legal requirement, child safety), what you do and don’t store (e.g. "we don’t keep your ID or face"), and how long you keep audit data. Transparency and minimal retention build trust and align with GDPR and similar laws.