31 Mar Identity Without Borders: Building Digital Dignity at Scale

Posted at 07:57h in Digital Innovation, Innovation City Members by

There is a quiet contradiction at the heart of the internet.

We move seamlessly across borders – opening accounts, sending money, applying for services, building businesses that operate in multiple markets at once. Yet the systems that are meant to verify who we are remain stubbornly local, fragmented, and often fragile.

Identity, in a digital world, is both everywhere and nowhere.

And increasingly, it is under attack.

According to Sumsub’s latest global fraud data, identity fraud now sits at 2.2% worldwide – a number that appears stable at first glance, but masks a far more important shift.

Fraud is not necessarily growing in volume. It is evolving in sophistication. The report points to a 180% increase in complex, multi-step fraud schemes, driven in part by AI and automation.

These are not blunt attacks. They are precise, adaptive, and designed to mimic legitimate users convincingly enough to bypass traditional checks.

At the centre of this shift is account takeover.

Globally, account takeover (ATO) now accounts for roughly one in five fraud incidents, and has surged dramatically in recent years. It is not just a technical breach. It is a form of identity capture. Once access is gained, the attacker effectively becomes the user, able to transact, withdraw, impersonate, and disappear.

If identity is the gateway to participation in the modern economy, then account takeover is the quiet theft of that access.

The implications are even more pronounced in Africa.

Sumsub’s data shows that over half of African businesses (53%) and nearly half of users (47%) have experienced fraud, with account takeover emerging as the dominant third-party fraud type on the continent. Phishing remains the primary entry point, responsible for more than half of consumer attacks, but increasingly these attacks are being layered with AI-generated content, deepfakes, and synthetic identities.

Africa is already operating above the global baseline when it comes to identity fraud. Regional insights drawing on Sumsub data reveal the continent’s fraud rate grew by 9.3% YoY in 2025; a signal not just of increased risk, but of the pressure being placed on identity systems across fast-growing, digitally active markets.

This matters because, in markets like South Africa, identity is not just a layer of security. It is a prerequisite for access – to banking, employment, healthcare, government services, and participation in the formal economy. Notably, deepfake incidents soared by 269% YoY in the country, highlighting the urgency to counter AI-enabled impersonalisation.

When identity systems fail, people are not just defrauded. They are excluded.

In a month where South Africa reflects on Human Rights Day, it’s a reminder that access has always been at the core of rights. Increasingly, that access is mediated through digital systems, making the ability to prove who you are online not just a technical requirement, but a fundamental one.

This is where the conversation shifts from mere fraud prevention to something more fundamental: digital dignity.

Digital dignity is the idea that individuals should be able to move through digital systems with agency, security, and control over their own identity, able to access services without friction or fear of exploitation.

But the infrastructure is not yet fully built for this concept to be a reality.

Most identity systems still rely on static checks: upload a document, take a selfie, pass a KYC (Know Your Customer) check. A single moment in time. Trust is granted, then assumed.

Meanwhile, identity itself has changed. It is no longer something that is simply presented. It is something that is continuously tested, and increasingly, simulated.

At the same time, businesses operate across borders while regulation remains uneven across markets. The result is a fragmented trust landscape; one that does not scale. Trust has to be built deliberately, dynamically, and increasingly, programmatically.

This is the shift Sumsub is building for: connecting identity verification with ongoing monitoring of user behaviour and transactions, in harmony with the evolving regulatory requirements, so risk can be assessed continuously and mitigated efficiently.

As Chantal Lamprecht, who works on strategic partnerships development in Southern Africa at Sumsub, explained to us, identity cannot be treated as a one-time check:

“Onboarding is no longer where fraud is stopped, it’s where it begins. If you’re only verifying once, you’re not managing identity, you’re just delaying risk.”

Instead of verifying identity once and assuming everything is fine, companies are starting to check continuously in the background, using multiple signals to spot risk early, without making things harder for legitimate users.

What differentiates Sumsub is not a single feature, but how these elements are brought together. Rather than treating identity as a one-off compliance step, their platform connects onboarding, monitoring, and fraud detection across the full user journey, allowing checks to be applied where and when they’re needed, not just at the start.

Identity fraud is no longer just a cybersecurity issue. It is an access issue.

And in markets like South Africa, access is a proxy for dignity. The question is no longer whether identity can be verified. It’s whether it can be trusted at scale.

It’s a challenge we’re seeing more founders grapple with across the Innovation City community, and one we’ll continue to unpack in the conversations we host.

Tags:
,