# Privacy flow

The two-step flow lets your users register an identity into the OpenPassport user set, than use this identity to generate proofs. It's ideal for applications that:

* Need on chain verification
* Want an end-to-end auditable process while still protecting the identity of the user from the issuing country, even in scenarios in which the government takes significant steps to deanonymize users. 
* Need the server to never learn the nationality of the user
* Are fine with the user having to wait between registration and action, to make sure a large enough anonymity set is formed.