Children's Online Privacy Protection Act (COPPA)
COPPA (Children’s Online Privacy Protection Act) is a U.S. federal law that imposes specific requirements on websites, online services, and mobile apps that collect personal information from children under the age of 13. The Federal Trade Commission (FTC) enforces COPPA.
Notice and Privacy Policy
Websites and online services covered by COPPA must provide clear and comprehensive notices of their data collection practices and obtain verifiable parental consent.
Parental Consent
COPPA requires obtaining verifiable parental consent before collecting, using, or disclosing children's personal information by obtaining a signed consent form.
Collection of Personal Data
COPPA restricts the collection of personal information (PII) from children to only what is reasonably necessary for the online service or website's functionality.
Security of Information
With retention, implementing reasonable procedures to protect the confidentiality, security and integrity of personal information collected from children is required.
COPPA
Services
COPPA
Services
Compliance Assessments
Comprehensive assessments of data collection practices, privacy policies, and procedures.
Policy and Procedure Development
Drafting privacy policies and procedures to align with COPPA's requirements.
Consent Mechanism Implementation
Verifiable parental consent mechanism for personal information from children.
Data Inventory and Mapping
Conduct a comprehensive inventory of personal information collected from children.
Employee Training and Education
Training on proper data collection practices, consent mechanisms, and handling parental requests.
Compliance Monitoring
Ongoing monitoring and support to help businesses stay updated with COPPA requirements.
Compliance Audits and Reviews
Independent audits and reviews to assess compliance with COPPA.
Vendor Management
Evaluating the third-party vendors to ensure their compliance with COPPA.