In a proper zero knowledge proof situation, where you auth it locally, no one knows you accessed the site but the site (who knows your IP) and they don’t know who you are based on the proof. Doing it all locally is the best way to do it.
In a less ideal set up, where the Auth is split between you and the identity provider, the identity provider would learn how many people are accessing the site, but not who. (Edit: they could also learn that you requested an auth, but not for where, depending on how it’s set up)
We have the technology to do it if we wanted to.
Edit: and it really only works with biometrics since pins can be shared.
In a proper zero knowledge proof situation, where you auth it locally, no one knows you accessed the site but the site (who knows your IP) and they don’t know who you are based on the proof. Doing it all locally is the best way to do it.
In a less ideal set up, where the Auth is split between you and the identity provider, the identity provider would learn how many people are accessing the site, but not who. (Edit: they could also learn that you requested an auth, but not for where, depending on how it’s set up)
We have the technology to do it if we wanted to.
Edit: and it really only works with biometrics since pins can be shared.