Taken from the readme of the app on github:
The current release provides only basic functionality, with several key features to be introduced in future versions, including:
App and device verification based on Google Play Integrity API and Apple App Attestation
Additional issuance methods beyond the currently implemented eID based method.
These planned features align with the requirements and methods described in the Age Verification Profile.
There is an issue opened to remove this as it’s basically telling us that to verify our age in the EU an American corporation has the last word, making it not only a privacy nightmare but a de-facto monopoly on the phone market that will leave out of the verification checks even the fairphone (european) with /e/os.
You are absolutely right about end-to-end encryption and VPN. Essentially everything that has to do work law enforcement.
End we should focus on those topics. They are political issues and have lasting consequences. That a reference implementation will require Google APIs in the future is not an issue worth rageing about beyond “That is a bad example and violates EU law”.
there is just an extremely high probability that they will adapt to the extent that customroms are definitely excluded, because they are even more of a thorn in their side. they would be happy if, for example, grapheneOS was no longer an issue or hardened Android variants. root etc. should be just as problematic for them, so you can be sure that unlocked bootloaders will be excluded sooner or later. salami tactics