Learn
>
Sygnal-U
>
Webflow, GDPR & CCPA
>
Children's Online Privacy Protection Act ( COPPA )

Webflow, GDPR & CCPA

Children's Online Privacy Protection Act ( COPPA )

No items found.
Overview
Introduction & Overview
Sygnal's Perspective & Approach
Sygnal's GDPR Perspectives
001
Sygnal's 4 Project Zones
002
Sygnal's GDPR Approach
004
The Problem
The GDPR
101
California ( CCPA / CPRA )
102
German Privacy Act (BDSG-new)
103
Approaches & Solutions
Webflow and the GDPR
400
Cookie Consent
401
Additional Notes
New Zealand & GDPR
800
Children's Online Privacy Protection Act ( COPPA )
801
Health Insurance Portability and Accountability Act ( HIPAA )
801
No items found.
The Children's Online Privacy Protection Act (COPPA) is a law in the United States that regulates the online collection of personal information from children under the age of 13.

COPPA imposes several requirements on operators of websites or online services directed to children under 13 years of age, and on operators of other websites or online services that have actual knowledge that they are collecting personal information online from a child under 13 years of age.

This is most likely to affect websites in the education or gaming / entertainment industries.

Among other things, the COPPA rule requires;

  1. Notice: Website operators must provide a clear, understandable, and complete notice of their information practices, including what information they collect from children, how they use such information, and their disclosure practices for such information.
  2. Verifiable Parental Consent: Before collecting, using, or disclosing personal information from a child, operators must obtain verifiable parental consent. There are several methods available to obtain verifiable parental consent, including but not limited to: obtaining a signed form from the parent via postal mail or facsimile; accepting and verifying a credit card number in connection with a transaction; taking calls from parents, through a toll-free telephone number staffed by trained personnel; or by using a digital certificate that uses public key technology.
  3. Provide parents access to their child's personal information: A parent has the right to review the personal information collected from their child and to refuse to permit its further use or maintenance.
  4. Prohibit conditioning a child's participation on collection of more information than is reasonably necessary: Website operators can't require a child to disclose more information than is reasonably necessary to participate in an activity as a condition of participation.
  5. Maintain confidentiality, security, and integrity of information they collect from children: Websites must establish and maintain reasonable procedures to protect the confidentiality, security, and integrity of personal information collected from children.
  6. Data retention and deletion requirements: Operators of websites or online services should retain personal information collected online from a child for only as long as is necessary to fulfill the purpose for which it was collected and delete the information using reasonable measures to protect against its unauthorized access or use.

Failure to comply with COPPA can result in fines issued by the Federal Trade Commission (FTC), which enforces the law. As with all legal matters, it's advisable to consult with a legal expert to ensure full compliance with COPPA's requirements.

Table of Contents
Overview
Need help with your project?
Talk to us
Want to show your appreciation?
Buy us a beer
Did we just make your life better?
Passion drives our long hours and late nights supporting the Webflow community. Click the button to show your love.
Buy us a beer
By clicking “Accept All Cookies”, you agree to the storing of cookies on your device to enhance site navigation, analyze site usage, and assist in our marketing efforts. View our Privacy Policy for more information.
PreferencesDenyAccept