Skip to content

Discerning Data

  • About Us
  • Additional Resources
  • Contact Us

DISCERNING DATA

A Faegre Drinker Blog Covering the Latest in Privacy, Cybersecurity and Data Strategy
  • Privacy
  • Cybersecurity
  • Data Strategy
  • Disruptionware

FTC Updates COPPA Guidance to Approve New Parental Consent Methods; Clarify Obligations for Sites not Primarily Targeting Children

Share

The Federal Trade Commission (FTC) has updated its guidance applicable to the Children’s Online Privacy Protection Act (COPPA) to reflect developments in the digital advertising ecosystem and a burgeoning Internet of Things marketplace. The Guidance revises its six-step compliance plan to keep current with developing technology.

The Guidance, which had existed in substantially the same form since 2015, contains three new updates relating to new methods for obtaining parental consent, new products covered by COPPA, and new business models.

First, the Guidance describes two methods for obtaining verifiable parental consent modeled after proprietary methods approved by the FTC for compliance providers Riyo and Imperium.  App or website providers may now obtain verifiable parental consent by requiring a parent to:

  • answer a series of knowledge-based challenge questions that would be difficult for someone other than the parent to answer; or
  • verify a picture of a driver’s license or other photo ID submitted by the parent and then comparing that photo to a second photo submitted by the parent, using facial recognition technology.

Second, the Guidance makes clear that COPPA applies not only to websites and mobile apps, but also to the growing list of connected toys and other products intended for children.  The updates also clarify that when an app, website, or device is not primarily targeted toward children but is still “directed toward children” under the FTC’s test-triggering COPPA applicability considerations, the provider of that app, website or device may choose to comply with COPPA for only those users under age 13.  The guidance cautions, however, that if a provider adopts such an approach, the provider must verify users’ ages before collecting any other data from them.

As the Guidance makes clear, the FTC will examine a number of factors in determining whether an app is “directed toward children,” including “the subject matter of the site or service, visual and audio content, the use of animated characters or other child-oriented activities and incentives, the age of models, the presence of child celebrities or celebrities who appeal to kids, ads on the site or service that are directed to children, and other reliable evidence about the age of the actual or intended audience.”

Finally, the Guidance reminds companies that COPPA may apply to new business models that include collecting personal information from voice-activated devices.

In short, these updates are a reminder to companies to be ever-vigilant regarding their compliance efforts with respect to new technologies that expand the functionality of toys and other interactive devices.

The material contained in this communication is informational, general in nature and does not constitute legal advice. The material contained in this communication should not be relied upon or used without consulting a lawyer to consider your specific circumstances. This communication was published on the date specified and may not include any changes in the topics, laws, rules or regulations covered. Receipt of this communication does not establish an attorney-client relationship. In some jurisdictions, this communication may be considered attorney advertising.

Receive Email Alerts to New Articles

SUBSCRIBE

August 12, 2017
Written by: Discerning Data Editorial Board
Category: Privacy
Tags: Advertising, COPPA, FTC, IoT

Post navigation

Previous Previous post: New Jersey Enacts Personal Information and Privacy Protection Act
Next Next post: Beyond FERPA: Safeguarding Student Data Is Key Obligation for Postsecondary Educational Institutions

Search the Blog

Sign Up for Email Alerts

PODCASTS

Faegre Drinker on Law and Technology

©2023 Faegre Drinker Biddle & Reath LLP. All Rights Reserved. Lawyer Advertising.

  • About Us
  • Additional Resources
  • Contact Us
We use cookies to improve your experience with our website. By browsing our site, you are agreeing to the use of cookies. For more information about how we use cookies, please review our privacy policy and cookie policy. OK
Privacy & Cookies Policy

Privacy Overview

This website uses cookies to improve your experience while you navigate through the website. Out of these, the cookies that are categorized as necessary are stored on your browser as they are essential for the working of basic functionalities of the website. We also use third-party cookies that help us analyze and understand how you use this website. These cookies will be stored in your browser only with your consent. You also have the option to opt-out of these cookies. But opting out of some of these cookies may affect your browsing experience.
Necessary
Always Enabled
Necessary cookies are absolutely essential for the website to function properly. This category only includes cookies that ensures basic functionalities and security features of the website. These cookies do not store any personal information.
Non-necessary
Any cookies that may not be particularly necessary for the website to function and is used specifically to collect user personal data via analytics, ads, other embedded contents are termed as non-necessary cookies. It is mandatory to procure user consent prior to running these cookies on your website.
SAVE & ACCEPT