Artifact GuideUKAge Assurance

UK Online Safety Act Age Assurance

Age Assurance under the UK Online Safety Act means using age verification or age estimation to check a user's age and apply the right protections for children.

Use this guide to turn official requirements into scope, evidence, owner, and review decisions. This guidance is practical, source-linked, and should be validated against current legal and policy requirements before implementation.

Back to main artifactReview sources
Author
Sorena AI
Published
May 9, 2026
Updated
May 9, 2026
Sections
4

Structured answer sets in this page tree.

Primary sources
5

Cited legal and guidance references.

Publication metadata
Sorena AI
Published May 9, 2026
Updated May 9, 2026
Overview

Age Assurance under the UK Online Safety Act is about checking or estimating a user's age so services can keep children away from content the Act requires them to block, and apply the right safety measures for the service's users.

Section 1

Age assurance basics under the UK Online Safety Act

Age assurance is the process of checking or estimating a user's age. The UK Government says services should use age estimation and age verification, and that the Act requires a wide range of services to deploy highly effective age assurance to protect children from extremely harmful content, including pornography and content that encourages, promotes or provides instructions for suicide, self-harm or eating disorders.

For visitors, the practical question is simple: if children are likely to use the service, does the service need age assurance, and if so, what method will be used, who owns it, and how will the team show it is working?

  • Check whether the service is in scope and whether children are likely to access it.
  • Choose an age assurance method that fits the risk and the user experience.
  • Keep a record of the rule, the owner, the evidence, and the review date.
  • Escalate where the service, audience, or risk profile changes.
Sources for this answer
UK Government - Statement of Strategic Priorities for Online Safety
UK Government source for the policy context and age assurance expectations behind online safety controls.
Age Assurance for the Children's code
ICO source for how the Online Safety Act places age assurance requirements on in-scope organisations.
Children's code strategy: interim impact review
ICO interim review source for observed age assurance practice across sampled social media and video-sharing services.
Section 2

Who should own age assurance, and what evidence should prove the decision?

Ownership should sit with the team that can change the product, policy, or safety controls, with legal and trust-safety review where needed.

Evidence should show the service scope, the age assurance method, the decision, the owner, and the review trail.

  • Name one accountable owner and one reviewer for the age assurance workflow.
  • Keep source links, decision notes, implementation tickets, and approval records together.
  • Use dated evidence for notices, risk assessments, user journeys, and regulator-facing records.
  • Review the evidence after product changes, new markets, new vendors, or material changes in the source text.
Sources for this answer
Age Assurance for the Children's code
ICO source for how the Online Safety Act places age assurance requirements on in-scope organisations.
Children's code strategy: interim impact review
ICO interim review source for observed age assurance practice across sampled social media and video-sharing services.
Online safety and data protection
Joint Ofcom and ICO source for aligning Online Safety Act age assurance duties with data-protection obligations.
Section 3

Age assurance edge cases to check before you rely on a decision

Boundary issues usually arise when a service is partly in scope, when a feature changes, or when children can access a service in a way the team did not expect.

Use this section before launching a new feature, changing a recommender, changing moderation rules, or updating an age assurance flow.

  • Check whether the rule changes for different service types, audiences, or access paths.
  • Separate binding law, regulator guidance, consultation material, standards, and enforcement commentary in the evidence record.
  • Do not rely on a previous answer if the data categories, user interface, vendor role, or contractual flow changed.
  • Track unresolved assumptions in an open-questions section and route legal interpretation points for review.
Sources for this answer
UK Government - Statement of Strategic Priorities for Online Safety
UK Government source for the policy context and age assurance expectations behind online safety controls.
Age Assurance for the Children's code
ICO source for how the Online Safety Act places age assurance requirements on in-scope organisations.
Children's code strategy: interim impact review
ICO interim review source for observed age assurance practice across sampled social media and video-sharing services.
Online safety and data protection
Joint Ofcom and ICO source for aligning Online Safety Act age assurance duties with data-protection obligations.
Section 4

How should teams implement age assurance with proportionate controls?

Use a workflow that captures service scope, user groups, risk assessment, child-access status, the age assurance method, the owner, and the escalation path.

The output should be a short service memo, a decision record, and the evidence needed to show the control was reviewed and approved.

  • Create a short intake question that identifies the age assurance scenario.
  • Map the answer to a required action, evidence field, owner, reviewer, and review date.
  • Link related artifact pages with descriptive anchors so users can move from scope to deadlines, controls, penalties, and templates.
  • Update the workflow when official source material changes or when internal evidence shows recurring exceptions.
Sources for this answer
UK Government - Statement of Strategic Priorities for Online Safety
UK Government source for the policy context and age assurance expectations behind online safety controls.
Age Assurance for the Children's code
ICO source for how the Online Safety Act places age assurance requirements on in-scope organisations.
Children's code strategy: interim impact review
ICO interim review source for observed age assurance practice across sampled social media and video-sharing services.
Recommended next step

Turn UK Online Safety Act Age Assurance into assigned work

Use this UK Online Safety Act guide to turn Age Assurance into owners, evidence requests, review checkpoints, and reusable operating records inside Sorena.

Assessment workflow
Open Assessment Autopilot for UK Online Safety Act

Turn Age Assurance into scoped questions, evidence fields, and review tasks.

Explore next step
Research workflow
Review UK Online Safety Act source evidence

Use Research Copilot to answer follow-up questions with cited source material.

Explore next step
Talk to Sorena
Talk through implementation

Review scope, evidence, owners, and the next compliance actions with Sorena.

Explore next step
Primary sources

References and citations

Age Assurance for the Children's code
ico.org.uk
Referenced sections
  • ICO source for how the Online Safety Act places age assurance requirements on in-scope organisations.
"The OSA places requirements for age assurance on organisations that fall in scope."
Online safety and data protection
ico.org.uk
Referenced sections
  • Joint Ofcom and ICO source for aligning Online Safety Act age assurance duties with data-protection obligations.
"Links between online safety and data protection Online safety and data protection can interact in a variety of"
Related guides

Explore more topics

How should teams decide whether UK Online Safety Act applies?
UK Online Safety Act guidance for Regulated Service Scope, with practical decisions, evidence, edge cases, and external source citations.
UK Online Safety Act Age Assurance Options Guide
UK Online Safety Act guidance for Age Assurance Options, with practical decisions, evidence, edge cases, and external source citations.
UK Online Safety Act Age Assurance Selection Workflow Guide
UK Online Safety Act guidance for Age Assurance Selection Workflow, with practical decisions, evidence, edge cases, and external source citations.
UK Online Safety Act Applicability Test Guide
Practical guidance for the UK Online Safety Act applicability test, with practical decisions, evidence, edge cases, and external source citations.
UK Online Safety Act Categorisation Guide
UK Online Safety Act guidance for Categorisation, with practical decisions, evidence, edge cases, and external source citations.
UK Online Safety Act Checklist
Practical guidance for the UK Online Safety Act checklist, with practical decisions, evidence, edge cases, and external source citations.
UK Online Safety Act Children's Access Assessment Guide
UK Online Safety Act guidance for Children's Access Assessment, with practical decisions, evidence, edge cases, and external source citations.
UK Online Safety Act Children's Safety Duties Guide
UK Online Safety Act guidance for Children's Safety Duties, with practical decisions, evidence, edge cases, and external source citations.
UK Online Safety Act Complaint And Appeal Handling Workflow Guide
UK Online Safety Act guidance for Complaint And Appeal Handling Workflow, with practical decisions, evidence, edge cases, and external source citations.
UK Online Safety Act Compliance Guide
Practical guidance for the UK Online Safety Act compliance, with practical decisions, evidence, edge cases, and external source citations.
UK Online Safety Act Content Moderation And Appeals Guide
UK Online Safety Act guidance for Content Moderation And Appeals, with practical decisions, evidence, edge cases, and external source citations.
UK Online Safety Act Deadlines and Compliance Calendar Guide
UK Online Safety Act guidance for Deadlines and Compliance Calendar, with practical decisions, evidence, edge cases, and external source citations.
UK Online Safety Act Enforcement And Penalties Guide
UK Online Safety Act guidance for Enforcement And Penalties, with practical decisions, evidence, edge cases, and external source citations.
UK Online Safety Act FAQ
Practical guidance for the UK Online Safety Act FAQ, with practical decisions, evidence, edge cases, and external source citations.
UK Online Safety Act ICO Overlap Guide
UK Online Safety Act guidance for ICO Overlap, with practical decisions, evidence, edge cases, and external source citations.
UK Online Safety Act Illegal Content Duties Explained Guide
UK Online Safety Act guidance for Illegal Content Duties Explained, with practical decisions, evidence, edge cases, and external source citations.
UK Online Safety Act Illegal Content Risk Assessment Guide
UK Online Safety Act guidance for Illegal Content Risk Assessment, with practical decisions, evidence, edge cases, and external source citations.
UK Online Safety Act Moderation And Appeals Guide
UK Online Safety Act guidance for Moderation And Appeals, with practical decisions, evidence, edge cases, and external source citations.
UK Online Safety Act Ofcom Enforcement Guide
UK Online Safety Act guidance for Ofcom Enforcement, with practical decisions, evidence, edge cases, and external source citations.
UK Online Safety Act Ofcom enforcement: penalty tiers, investigations, and senior manager liability
UK Online Safety Act guidance for Ofcom Enforcement, with practical decisions, evidence, edge cases, and external source citations.
UK Online Safety Act Online Safety Risk Assessment Template Guide
UK Online Safety Act guidance for Online Safety Risk Assessment Template, with practical decisions, evidence, edge cases, and external source citations.
UK Online Safety Act penalties and fines Guide
UK Online Safety Act guidance for penalties and fines, with practical decisions, evidence, edge cases, and external source citations.
UK Online Safety Act Regulated Service Scope Guide
UK Online Safety Act guidance for Regulated Service Scope, with practical decisions, evidence, edge cases, and external source citations.
UK Online Safety Act Requirements Guide
Practical guidance for the UK Online Safety Act requirements, with practical decisions, evidence, edge cases, and external source citations.
UK Online Safety Act Risk Assessment Workflow Guide
UK Online Safety Act guidance for Risk Assessment Workflow, with practical decisions, evidence, edge cases, and external source citations.
UK Online Safety Act Risk Assessments Playbook Guide
UK Online Safety Act guidance for Risk Assessments Playbook, with practical decisions, evidence, edge cases, and external source citations.
UK Online Safety Act Senior Manager Liability Guide
UK Online Safety Act guidance for Senior Manager Liability, with practical decisions, evidence, edge cases, and external source citations.
UK Online Safety Act Service Classification Workflow Guide
UK Online Safety Act guidance for Service Classification Workflow, with practical decisions, evidence, edge cases, and external source citations.
UK Online Safety Act Service Scope and Categorization Guide
UK Online Safety Act guidance for Service Scope and Categorization, with practical decisions, evidence, edge cases, and external source citations.
UK Online Safety Act Transparency Reporting Guide
UK Online Safety Act guidance for Transparency Reporting, with practical decisions, evidence, edge cases, and external source citations.
UK Online Safety Act User-to-user And Search Services Guide
UK Online Safety Act guidance for User-to-user And Search Services, with practical decisions, evidence, edge cases, and external source citations.
UK Online Safety Act vs Dsa Guide
UK Online Safety Act guidance for Online Safety Act vs Dsa, with practical decisions, evidence, edge cases, and external source citations.
What should teams do about Age Assurance under the UK Online Safety Act?
UK Online Safety Act guidance for Age Assurance, with practical decisions, evidence, edge cases, and external source citations.
What should teams do about Categorisation under the UK Online Safety Act?
UK Online Safety Act guidance for Categorisation, with practical decisions, evidence, edge cases, and external source citations.
What should teams do about Children's Access Assessment under the UK Online Safety Act?
UK Online Safety Act guidance for Children's Access Assessment, with practical decisions, evidence, edge cases, and external source citations.
What should teams do about Ico Overlap under the UK Online Safety Act?
UK Online Safety Act guidance for Ico Overlap, with practical decisions, evidence, edge cases, and external source citations.
What should teams do about Illegal Content Risk Assessment under the UK Online Safety Act?
UK Online Safety Act guidance for Illegal Content Risk Assessment, with practical decisions, evidence, edge cases, and external source citations.
What should teams do about Moderation And Appeals under the UK Online Safety Act?
UK Online Safety Act guidance for Moderation And Appeals, with practical decisions, evidence, edge cases, and external source citations.
What should teams do about Senior Manager Liability under the UK Online Safety Act?
UK Online Safety Act guidance for Senior Manager Liability, with practical decisions, evidence, edge cases, and external source citations.
What should teams do about Transparency Reporting under the UK Online Safety Act?
UK Online Safety Act guidance for Transparency Reporting, with practical decisions, evidence, edge cases, and external source citations.
What should teams do about User-to-user And Search Services under the UK Online Safety Act?
UK Online Safety Act guidance for User-to-user And Search Services, with practical decisions, evidence, edge cases, and external source citations.