KYC is indeed the activity that will cause harm, when that honeypot of data gets leaked from incompetently run government databases.