Yes, I think that approach would potentially work in a way the U.K. one didn't. I think it also tackles the other issue of how to find the data about me in different silos and link it back to an identity. You issue the identity. I could turn up somewhere and prove who I am, using a passport or maybe facial recognition and things, but that still doesn't prove I own my national insurance record or my health record.
The ideal way to do this would be that the next time I see my doctor or a consultant, I can prove who I am to them and then have that linked back to that proven identity. Within a short space of time, I could have both my controlled identity, if you like, and by my actions and trusted relationship with the people who issue the other numbers, I could prove that I am the person to whom those other pieces of data relate.
We end up in a place where we need to be if we're going to enable better citizen access and control over their own data, which is both the trusted identity and the linkage between that identity and these potentially sensitive data records.