IT education

How to protect the project from fraud + your opinion is interesting?

Good night, Toaster :)
It is supposed to implement a project to teach people certain things (IT) online. The project consists of two parts: the first part is free public access video clips (on the project website; watch as much as you want model). The second part is a closed group for students on a paid (monthly) basis, in the "one to two hours every day" mode. There is also a small third part, smoothly arising from the second - individual lessons with a person, also on a paid basis (per lesson or per month is not important yet).
The essence of the question is this - because the project needs to be promoted, it was decided to use the referral system, thinking about which I got stuck in a certain impasse. The clubbing does not threaten me, tk. there is nothing in the private part of the project that could be stolen. But at the moment it is not entirely clear how it would be better to implement the verification of new clients / students / project members attracted by the user? Provided, for example, such a model - "bring five friends, get a month of training in a group."
SMS verification is easy to fake (they took a phone from a friend and voila, there are 4 phones left to find). Verification according to the document also disappears, for two reasons - firstly, a request to Google, and here's someone else's passport for you. Secondly, some may become paranoid, they will not want their documents for some project (me) to shine.
What's the best way to do it?
PS Target audience: schoolchildren and students, as well as everyone who would like to improve their horizons (and not only) in the field of IT. A lot of interesting things are supposed, chewed as much as possible (the audience, we will assume, is “zero”).
What do you think?
I would appreciate your questions, thoughts and comments. Thank you!