Can data be extracted automatically from credentials?

Once issued to a user, no credential or data can be extracted with express consent of the end user. This is a core principle of (web 3.0, decentralized, self sovereign) identity. Data can be requested through a verification/credential presentation.