Platform
Affinity
Verifiable trust infrastructure for the regulated digital economy
What we solve: organisations need one layer to issue credentials, enforce policies and audit access without hoarding unnecessary data; people need control and reusable proofs. How we deliver: platform on standard protocols (OIDC4VCI/VP), wallet and backend aligned with EUDI/eIDAS, and a commercial model combining SaaS, API usage and enterprise.
Cost, risk and slowness of identity in silos
- Duplicated verification and storage per brand, country or system: identity capex and opex that do not scale
- Weak proofs (PDFs, selfies) vs sophisticated fraud: direct losses and fines
- Inability to show uniformly which policy applied to each access under audit
- End users abandon long signups; competitors with better UX capture value
Impact
- Higher compliance and security cost without clear competitive advantage
- Slow time-to-market for new products or geographies
- Gap between what legal requires and what product can demonstrate
Market and regulatory momentum
- eIDAS 2.0 and the European Digital Identity Wallet ecosystem drive demand for interoperability and standard proofs
- Spend on identity & access management keeps growing in Europe; budgets shift from “login” to verifiable trust
- Boards and investors expect demonstrable privacy narratives—not policy PDFs alone
Strategic window for platforms native to open standards—not patches on legacy
Why now
- Regulatory window: eIDAS 2.0 timelines and wallet ecosystems create pull for ready platforms
- Board and investor pressure for demonstrable privacy and fraud reduction
- Competition still fragmented: room for a full-stack platform with a clear story
Timing favours those who combine product, compliance and commercial speed
Vision and value proposition
One platform: issuance, verification, policies, evidence. Principles: holder sovereignty, minimisation, auditable traceability.
- Vision: operational B2B / B2G / B2C / C2C product; become the default operable trust layer for groups and public sector in the EU
- Principles: privacy by design, cryptographic proofs instead of copies, explicit policy per resource
- How: W3C VCs, OIDC4VCI/4VP flows, policy engine, revocation and evidence services as documented
- For the buyer: fewer bespoke integrations, compliance roadmap aligned with European regulation
From credential to auditable access decision
End-to-end flow
- 1Holder onboarding: verifiable credentials in the wallet (W3C / EUDI profiles)
- 2Enterprise configuration: policies per resource, group or jurisdiction
- 3Presentation & verification: OIDC4VP exchange; only necessary attributes
- 4Audit trail: traceable decisions; integration with existing evidence systems
Modular stack, open protocols, clear crypto boundary
Technology and scalability
- Modular API-first backend designed for cloud deployment and growing verification load
- Wallet SDK and sensitive operations with security practices and compliance documentation (explicit EUDI/eIDAS roadmap)
- Interoperability by design: OIDC4VCI, OIDC4VP, VC formats (e.g. SD-JWT, BBS+ where applicable)
- Observability, revocation and policies as services—not an opaque monolith
Prioritised revenue segments
Where budget and regulation align
Groups and multiple brands
One platform contract, coherent policies; lowers integration and legal cost per country
Financial services and regulated industries
Reusable KYC, strong proofs; faster product launch and audit readiness
Public sector and providers
Interoperability and traceability aligned with European digital identity standards
Integrators and consultancies
White-label layer for client projects; services revenue plus platform recurring
Who signs and what they evaluate
Buyer profiles
Why Affinity vs legacy or generic IDP
- Built for verifiable credentials and policies—not only OAuth and directories
- Compliance and product on the same auditable evidence layer
- Explicit EU strategy: eIDAS, EUDI, wallet as channel trend—not an afterthought
- Team close to customers and a roadmap visible in technical documentation
Market state and opportunity
- Global digital identity and secure access markets are in the tens of billions of euros; Europe is among the fastest-moving regions because of regulation
- eIDAS 2.0 and the wallet push create adoption windows for vendors that already speak the standards language
- From Cyprus (Kisku Ltd) we operate inside the single market, targeting B2B/B2G customers and partners scaling across countries
Revenue model
Monetisation and leverage
- SaaS per business unit or division: recurring subscription for platform use and support
- API consumption: metered billing on verification volume or credentials issued
- Enterprise and public sector: annual licences, SLA, dedicated deployment
- Professional services: pilot kick-off, training and customisation
Roadmap
Today
- Product stack and technical documentation; EUDI/eIDAS alignment traceable in docs
- Operating base in Cyprus; active conversations with partners and integrators
Next milestones
- Paid pilots with customers and references in regulated sectors
- Platform capability expansion and commercial scale-up in the EU
- Financing round to accelerate go-to-market and certification where appropriate
Team and base
Founding team with experience in distributed systems, security, applied cryptography and verifiable identity. Technical and compliance documentation aligned with EUDI/eIDAS; open to collaboration with investors and accelerators (e.g. EU expansion programmes).
Next step: pilot, partnership or investment
If you represent an enterprise that needs verifiable trust, an integrator looking for a platform, or an investor in regulated digital infrastructure—let’s discuss terms, timelines and how Affinity fits your thesis.
We want conversations with
- Pilot customers and corporate sponsors
- Partners and integrators
- Investors and accelerators (e.g. EU expansion)