It just occurred to me: when waitstaff takes your ID for the express purpose of verifying your age (for alcoholic beverages), this violates the GDPR Collection Limitation principle— the ID conveys a lot more information than is necessary to confirm identity (the photo) and the age (birthdate).

Hmmmm…..