Ok, so you DID read their 'white paper'

I don't worry that their iris hash can be reverse engineered, but do worry about how much data about the iris invariances it contains. e. g. if someone ELSE creates an iris scanner can this hash be used to match to their hashes?

Having a controllable identity would be a great boon for the world especially so for the developing world.

I would rather it be a non-profit that with a charter that precluded getting 'bought' by a FAANG or such. Still a third-party VC-controlled entity is probably my second choice owner.

are the coins "fake" (e.g. worthless). We don't know, either this becomes a big thing and many people are scanned such that it can support and ecosystem, in which case the risks and benefits of the scanning are larger. (and the currency becomes worth alot.) Or it slips to obscurity, and the risks of your scan hashes also drops. (unless full scans got leaked, AND some future identification scheme used irises)

I think it is unlikely that full scans are leaked. It would be fraud or negligence, and against the interests of this company for that to happen.