Sovereign Identity
Hold your ML-DSA-65 keypair on the device. Sign in to platforms with one tap. Selective claim disclosure. Replaces every login that holds you hostage.
A keypair on your device. A signature on demand. Every password you would otherwise lose.
DigiD has lost public trust. eIDAS 2.0 demands wallet-grade identity by November 2026. No European competitor runs post-quantum cryptography in production. SPEAQ does, today.
Six steps. Your private key never leaves the device. The platform learns nothing it does not need.
A 32-byte random challenge plus a session identifier, valid for 300 seconds.
The nonce is presented as a QR. The platform opens a WebSocket on the session.
The app parses the request and shows the platform name and the claims requested.
On user confirmation the app signs the nonce locally with the ML-DSA-65 private key.
The signature, the DID, and any presented credentials reach the platform direct.
Verification against the resolved public key. No password to store, no token to leak.
SPEAQ ID is a dedicated app, separate from SPEAQ messenger. Two features in one PIN-locked vault. Identity to sign in. Passwords to never lose. No chat, no calls, no token economy. Audit it, install it, ignore the rest.
Hold your ML-DSA-65 keypair on the device. Sign in to platforms with one tap. Selective claim disclosure. Replaces every login that holds you hostage.
Every password, secure note, and 2FA code in one PIN-locked vault. Cross-device sync, zero-knowledge. The 1Password alternative that does not hold your secrets for ransom.
Has its own PIN. Even if your phone is unlocked, your passwords stay locked.
Native, Secure Enclave plus PIN-encrypted keystore. App Store-listing separate from SPEAQ messenger.
Coming Q3 2026PWA on app.speaq.id. Browser-installable, desktop and mobile, no install required.
Coming Q3 2026Same architecture as iOS. Recovery via Google Drive encrypted backup.
Phase 2Beyond the public key you chose to present. No phone number. No email. No browser fingerprint sent to a vendor in another time zone.
The first wave is the Plexaris ecosystem. Each pilot proves a different verifiable credential type. Nothing speculative, partners ready.
Verified teacher status across smart-teaching networks. Subject areas, expiry, school issuer.
CEFR-aligned English diagnostic credentials. A1 to C2, score, retake history, assessor signature.
Course completion credentials for the Bitsing AI methodology. Instructor signed, replayable.
Supplier-side credentials for foodservice. Registered, verified, certified tiers, country of origin.
Legal practitioner status plus per-document signing seals. Bar-registration, jurisdiction, hash.
A Node and browser SDK that wraps the Sovereign Handshake. Free up to one thousand monthly active users per platform. Source you can read, audit, and run.
// install npm install @speaq/id-sdk // authenticate a user import { createChallenge, verifyResponse } from '@speaq/id-sdk'; const { nonce, sessionId, qrPayload } = await createChallenge({ platform: 'doqent.io', claims: ['DocentCertification'] }); // later, when the app responds const result = await verifyResponse(sessionId); // => { did, claims, signedAt, valid: true }
Privacy by design across nine EU domains. Documentation produced before features ship. A compliance package will accompany every SDK release.
Full bundle will be downloadable from portal.speaq.id/compliance on SDK launch.
Identity. Files. Sign. Vault. More to come. One foundation, one design, separate apps.