Forbidden Skill #113: Why I Only Provide Redacted ID Copies—And Why You Should Too

Why I Only Provide Redacted ID Copies—And Why You Should Too

When a business or institution asks for your driver’s license or passport, it’s your right to protect yourself from unnecessary exposure. That’s why I no longer allow my ID to be photocopied, scanned, or taken out of my sight. Instead, I provide a printed, redacted copy that shows only the necessary elements for verification—nothing more. This approach strikes a balance between compliance and control over your private data.

Identity theft is one of the fastest-growing crimes, often starting with something as simple as a copied driver’s license or passport. These documents contain critical personal data that, once exposed, can be used to open accounts, hijack assets, or target individuals. Under 18 U.S.C. § 1028, the unauthorized use, duplication, or possession of ID documents with fraudulent intent is a federal crime—yet many businesses still copy and store IDs without proper safeguards. But, the solution it simpler than you may think: Make a photocopy of your Passport or DL, take a sharpie and redact key information, scan it, then print it out, but include the written statement discussed later in this article.

The Legal Concern: 18 U.S.C. § 1028

If you are ever asked to provide a drivers license or passport to a private business, don't do it. Under 18 U.S.C. § 1028, it is a federal crime to knowingly produce, transfer, possess, or use identification documents with the intent to defraud or harm. While simply copying an ID may not be illegal by itself, it opens the door to misuse, data leakage, and criminal liability—especially if those documents are not properly secured or fall into the wrong hands. You can't guarantee the privacy and security practices of a third party.

Here is the exact text of 18 U.S.C. § 1028(a) from the U.S. Code:

“(a) Whoever, in a circumstance described in subsection (c) of this section—
(1) knowingly and without lawful authority produces an identification document or a false identification document;
(2) knowingly transfers an identification document or a false identification document knowing that such document was stolen or produced without lawful authority;
(3) knowingly possesses with intent to use unlawfully or transfer unlawfully five or more identification documents (other than those issued lawfully for the use of the possessor) or false identification documents;
(4) knowingly possesses an identification document (other than one issued lawfully for the use of the possessor) or a false identification document, with the intent such document be used to defraud the United States;
(5) knowingly produces, transfers, or possesses a document‑making implement with the intent such document‑making implement will be used in the production of a false identification document or another document‑making implement which will be so used; or
(6) knowingly possesses an identification document that is or appears to be an identification document of the United States which is stolen or produced without lawful authority knowing that such document was stolen or produced without such authority;
or attempts to do so, shall be punished as provided in subsection (b) of this section.”

Once your ID is out of your control—especially in digital form—you’re putting your name, photo, date of birth, document number, and other PII (personally identifiable information) at risk. These details are the exact components used in identity theft, account takeover, or doxxing.

The Policy I Use

Whenever an entity requests to see my ID, I make it clear that:

• They may visually inspect my passport or driver’s license in-person.

• They may not scan, photocopy, photograph, or retain the ID.

• They may not take the ID out of my sight under any circumstances.

Instead, I provide a redacted paper copy with non-essential information blacked out. This might include:

• License or passport number

• Signature

• Address or date of birth

• Photograph (if not required)

• Barcode or machine-readable zone (MRZ)

Visible information typically includes just your name, document type, and expiration date—sufficient for verifying legitimacy without revealing exploitable data.

My Written Statement (Signed and Dated)

To avoid repeated explanations and create a clear paper trail, I always include this signed statement with any redacted ID copy:

"I am a high-risk person as a result of at least identity theft and harassment, and therefore for privacy and security purposes I no longer provide identifying information from federal or state issued IDs or allow any copying or scanning thereof. I authorize only visual inspection of my original identification under my supervision."

Signature: _____________________
Date: _________________________

This statement informs the recipient of your boundaries and puts them on notice that you are protecting yourself due to legitimate personal risk. It also makes any mishandling of your data harder for them to justify later.

Your Rights and How to Push Back

Most businesses ask for ID out of habit, not legal obligation. If you're challenged:

• Ask what specific regulation or statute requires them to retain a full copy.

• Explain that visual inspection is sufficient in most cases.

• Offer a trust document, business registration, or alternative ID if needed.

• If the interaction becomes combative, walk away—your security is more important than their convenience.

You don’t owe any business or institution more of your identity than is absolutely necessary. A redacted ID copy—with a clear, signed explanation—allows you to meet reasonable verification requests without compromising your safety.

Start keeping redacted ID copies in your physical folder or privacy binder, and make this policy a part of your personal OPSEC. You’ll be surprised how often it’s accepted—and how much risk it eliminates.

Thank you for visiting.

I specialize in corporate training and supplying security, privacy, and asset management products as well as private consultations and general custom group training for individuals, professionals, & businesses.

Find me on IG @ReadyResourceSupply

If you have any questions please don’t hesitate to message me, thank you!