Children's Advertising Review Unit (CARU): Business Privacy Tips
Data Privacy Day is an international effort to empower individuals to take ownership of their online presence and inspire businesses to respect privacy. To celebrate, we’re sharing tips companies and small businesses can use to help ensure that a website or online service complies with COPPA.
- Shout It From the Rooftop. Make sure that all your third-party service providers are aware that your product is child-targeted. Under COPPA, you are strictly liable for any information that they collect from you so make sure that they are treating the collection of user information appropriately.
- Respect Your Teachers. If you are providing your website or service to schools, ensure that the school receives the same notice for consent that you would provide to a parent before collecting information from children. For example, under COPPA, you must inform parents of all personal information your service collects or can be publicly disclosed by children.
- Easy Way Out. Provide parents and guardians with an easily accessible method to delete a child’s personal information or opt out of future collection.
- No Means No. Before collecting or allowing children to disclose personal information, you must get verifiable parental consent. Do not collect any personal information from children other than a parent’s email address before you obtain parental consent.
- Captive Audience. Determine who your audience is: you may intend to operate a service directed to teens, but if you attract a substantial number of children, you may be required to comply with COPPA. See Section G of the COPPA FAQs.
- Location, Location, Location. If you collect or allow third-parties to collect geolocation data you may need parental consent first. If the address collected is sufficient to identify a street name and city or town, you need parental consent.
- Join a Safe Harbor! If you’re concerned that your website or online service does not comply with COPPA, have no fear! You can join a certified Safe Harbor program to help you get into compliance with COPPA. CARU was the first FTC-approved Safe Harbor and we’re here to assist you.
If you have any questions about COPPA compliance or joining CARU’s Safe Harbor program, please email CARU at firstname.lastname@example.org.