If AI is the new electricity, trust is the grid. Entrepreneur and technologist Preska Thomas is betting that the next decade of value on the internet will flow to those who can prove who they are—and control what represents them.
The Problem No One Can Afford to Ignore
The internet’s next growth spurt—agentic AI, synthetic media, autonomous services—runs on identity. Without it, everything from financial workflows to entertainment rights and brand safety is brittle. That’s why a new wave of security research is converging on the same thesis: AI needs verifiable identity as a first-class primitive, not an afterthought. Recent papers and industry guidance outline zero-trust models for agents, decentralized identifiers (DIDs), and verifiable credentials as the backbone for provenance and control.
Preska Thomas, founder and CEO of DebitMyData, has spent years turning that thesis into a product category the mainstream can use. Her company’s Agentic Logos™ and Agentic Avatars™ aim to make “programmable trust” plug-and-play for everyone—creators, enterprises, and even other LLMs. A public launch cycle through April–August 2025 introduced the APIs and their positioning: compliance-aware, blockchain-anchored identity that can be claimed, licensed, revoked, and audited.
From Idea to Infrastructure
Thomas’s career reads like a through-line of security, data rights, and brand protection. Public profiles trace a background in cybersecurity and homeland-security consulting, followed by founder roles culminating in DebitMyData. While some coverage leans promotional, the pattern is consistent: she builds systems that move control from platforms toward people.
What DebitMyData does, in plain language:
- Agentic Logos™: Claim and cryptographically fingerprint brand marks; monitor and govern usage across AI/LLM surfaces; issue or revoke rights programmatically.
- Agentic Avatars™: Register voice/likeness signals as authenticated, machine-verifiable identities; gate synthetic appearances; attach consent and audit trails.
- Compliance by design: Marketed as “compliance-native” (GDPR/EU AI Act/HIPAA/SOC 2) with consent management and logs built in.
- Built for a mixed world: Traditional login and wallet-based flows; centralized SaaS and decentralized ecosystems.
The company’s roadmap surfaces eccentric but telling concepts—like an Agentic Quantum Club, a governance layer for “orphaned” avatars when owners pass away—signaling that Thomas is thinking beyond brand safety into digital estates and long-tail value.
Why This Matters Now
- The market is shifting to autonomous agents. Analysts and researchers project rapid enterprise adoption of multi-agent systems; identity, authorization, and revocation are becoming day-one requirements, not bolt-ons.
- Security vendors are racing to define “agent identity.” From CISCO’s zero-trust lens to identity-orchestration players extending OAuth flows to non-human actors, a standards-driven foundation is forming. DebitMyData’s bet is to sit at the brand/creator edge of this wave and make it usable to non-experts.
- Capital is paying attention. Coverage in fintech trade media and wires highlights fund-raising and API releases pitched at AI fraud prevention and rights management—evidence that Thomas’s problem framing resonates beyond press-release hype.
The Founder’s Playbook: Make Trust Boring
Thomas’s strategy borrows from the best product infra stories: make the hard thing disappear. DebitMyData markets a “60-second claim” for non-technical users—upload a brand asset or biometric signature, anchor it, and get a machine-checkable identity that travels across platforms. The ambition isn’t to be flashy; it’s to be default. If every logo, talent likeness, or agentic process is verifiable by design, platforms and partners can enforce rules without friction—and creators can finally monetize without constant vigilance.
This “boring by design” posture is also how Thomas bridges a classic gap: regulatory trust vs. creative freedom. By embedding consent, audit, and revocation into the interface, she reduces the compliance burden for both scrappy creators and risk-averse enterprises—two communities that rarely share tooling comfortably.
Proof Points (and Open Questions)
- Product surface area: Public pages list directories for agentic entities and reveal fee/subscription mechanics—small but concrete signals that the platform is operational, not purely conceptual.
- Launch cadence & narrative: Between April and August 2025, Thomas (and third-party outlets) documented a sequence of API debuts and positioning statements around deepfake-resilience, LLM brand controls, and rights verification.
- Ecosystem alignment: The company’s language tracks with research trends—DIDs/VCs, zero-trust agents, and agentic IAM—suggesting alignment with where interoperability standards are headed, even if full specs aren’t public.
Open questions worth watching: How much of DebitMyData’s identity graph is interoperable with emerging open standards? Will major studios, labels, and platforms accept third-party attestations at scale—or demand native controls? Can creator-friendly pricing sustain compute-heavy verification? These are execution questions, not existential ones—but they will shape how far Thomas’s vision travels.
