CoppaThe Federal Trade Commission’s revised Children’s Online Privacy Protection Act Rule took effect today, giving parents greater control over the online collection of their children’s personal information.

Addressing changes in the way children use and access the Internet, the updated rule now spans to mobile devices and social networking.

Amendments to COPPA were approved by the Commission in December 2012 to widen the definition of children’s personal information. Persistent identifiers such as cookies that track a child’s activity online, as well as geolocation information, photos, videos, and audio recordings now qualify as personal information under the expanded definition.

“At the FTC, protecting children’s privacy is a top priority,” said FTC Chairwoman Edith Ramirez. “The updated COPPA rule helps put parents in charge of their children’s personal information as it keeps pace with changing technologies.”

The agency has released two new pieces designed to help small businesses that operate child-directed websites, mobile applications and plug-ins ensure they are compliant with upcoming changes to the rule.

The first is a document, “The Children’s Online Privacy Protection Rule: A Six-Step Compliance Plan for Your Business, which is designed especially for small businesses and contains a step-by-step process for companies to determine if they are covered by COPPA, and what steps they are required to take to protect children’s privacy. The FTC also released a video aimed at businesses to help explain their obligations under the revised rule, including an explanation of the changes.

Additionally, the FTC has updated a guide for parents, “Protecting Your Child’s Privacy Online,” that explains what COPPA is, how it works and what parents can do to help protect their children’s privacy online.

To coincide with the amended COPPA rule taking effect, the FTC has also continued five “safe harbor” programs, with guidelines that now reflect the modified rule.

Under COPPA, safe harbor status allows certain organizations to create comprehensive self-compliance programs for their members. Companies that participate in a COPPA safe harbor program are generally subject to the review and disciplinary procedures provided in the safe harbor’s guidelines in lieu of formal FTC investigation and law enforcement.

COPPA safe harbor programs are offered by Aristotle International, Inc., the Children’s Advertising Review Unit of the Council of Better Business Bureaus, ESRB Privacy Online, TRUSTe, and Privo, Inc.

COPPA was mandated when Congress passed the Children’s Online Privacy Protection Act of 1998. It requires that operators of websites or online services that are either directed to children under 13 or have actual knowledge that they are collecting personal information from children under 13 give notice to parents and get their verifiable consent before collecting, using, or disclosing such personal information. Operators must also keep secure the information they collect from children.

 

 

 

 

 

Comments are closed.