I’ve been struggling with the concept of identity in distributed trust/consensus networks. All the options seem to come down to either a) putting some part of your credentials on someone else’s server or b) putting some part of your credentials on a device, whether it’s a card, a dongle , or your phone. Here’s Civic:
Basically, Civic validates your personal information and identity, stores it on your mobile phone and only you can see or use that information. It is never stored on our servers! This means that if Civic was to ever get hacked, your information would never be released because we just don’t have it.