SlideShare uma empresa Scribd logo

COPPA Compliance Plan for Websites

- Mark - Fullbright
- Mark - Fullbright

The document provides a 6-step compliance plan for businesses to comply with the Children's Online Privacy Protection Act (COPPA). 1. Determine if COPPA applies to the business based on the types of information collected and audiences targeted. 2. Post a privacy policy that complies with COPPA requirements such as listing operators and describing data collection and use. 3. Notify parents directly before collecting personal information from children. 4. Get parents' verifiable consent before collecting children's data through acceptable methods. 5. Honor ongoing parental rights to access, update or delete children's data. 6. Implement security procedures to protect children's personal information.

EducaçãoTecnologia
1 de 12
Baixar para ler offline
The Children’s Online Privacy Protection Rule: A Six-Step Compliance Plan for Your Business When it comes to the collection of personal information from children under 13, the Children’s Online Privacy Protection Act (COPPA) puts parents in control. The Federal Trade Commission, the nation’s consumer protection agency, enforces the COPPA Rule, which spells out what operators of websites and online services must do to protect children’s privacy and safety online. For example, if your company is covered by COPPA, you need to have certain information in your privacy policy and get parental consent before collecting some types of information from kids under 13. Effective July 1, 2013, the FTC updated the COPPA Rule to reflect changes in technology. Violations can result in law enforcement actions, including civil penalties, so compliance counts. Here’s a step-by-step plan for determining if your company is covered by COPPA ­ and what to do to — comply with the Rule. Step 1: Determine if Your Company is a Website or Online Service that Collects Personal Information from Kids Under 13. COPPA doesn’t apply to everyone operating a website or other online service. Put simply, COPPA applies to operators of websites and online services that collect personal information from kids under 13. Here’s a more specific way of determining if COPPA applies to you. You must comply with COPPA if: Your website or online service is directed to children under 13 and you collect personal information from them. OR Your website or online service is directed to children under 13 and you let others collect personal information from them. OR Your website or online service is directed to a general audience, but you have actual knowledge that you collect personal information from children under 13. OR Your company runs an ad network or plug-in, for example, and has actual knowledge that you collect personal information from users of a website or service directed to children under 13. Federal Trade Commission | business.ftc.gov
To determine if you’re covered by COPPA, look at how the Rule defines some key terms. “Website or online service” COPPA defines this term broadly. In addition to standard websites, examples of others covered by the Rule include: ●● mobile apps that send or receive information online (like network-connected games, social networking apps, or apps that deliver behaviorally-targeted ads), ●● nternet-enabled gaming platforms, i ●● plug-ins, ●● advertising networks, ●● nternet-enabled location-based services, i ●● voice-over internet protocol services. “Directed to children under 13” The FTC looks at a variety of factors to see if a site or service is directed to children under 13, including the subject matter of the site or service, visual and audio content, the use of animated characters or other child-oriented activities and incentives, the age of models, the presence of child celebrities or celebrities who appeal to kids, ads on the site or service that are directed to children, and other reliable evidence about the age of the actual or intended audience. “Personal information” Each of these is considered personal information under COPPA: ●● full name; ●● home or other physical address, including street name and city or town, ●● online contact information like an email address or other identifier that permits someone to contact a person directly — for example, an IM identifier, VoIP identifier, or video chat identifier; ●● screen name or user name where it functions as online contact information; ●● telephone number; ●● Social Security number; ●● a persistent identifier that can be used to recognize a user over time and across different sites, including a cookie number, an IP address, a processor or device serial number, or a unique device identifier; 2
●● a photo, video, or audio file containing a child’s image or voice; ●● geolocation information sufficient to identify a street name and city or town; or ●● other information about the child or parent that is collected from the child and is combined with one of these identifiers. “Collect” Under COPPA, you’re collecting information if you: ●● request, prompt, or encourage the submission of information, even if it’s optional; ●● let information be made publicly available (for example, with an open chat or posting function) unless you take reasonable measures to delete all or virtually all personal information before postings are public and delete all information from your records; or ●● passively track a child online. If another company collects personal information through your child-directed site or service — through an ad network or plug-in, for example — you’re responsible for complying with COPPA. If you have actual knowledge that you’re collecting personal information directly from users of a child-directed site or service, you’re responsible for complying with COPPA, too. Step 2: Post a Privacy Policy that Complies with COPPA. Assuming you’re covered by COPPA, the next step is to post a privacy policy. It must clearly and comprehensively describe how personal information collected online from kids under 13 is handled. The notice must describe not only your practices, but also the practices of any others collecting personal information on your site or service — for example, plug-ins or ad networks. Include a link to your privacy policy on your homepage and anywhere you collect personal information from children. If you operate a site or service directed to a general audience, but have a separate section for kids, post a link to your privacy policy on the homepage of the kids’ part of your site or service. Make those links clear and prominent. Consider using a larger font or a different color type on a contrasting background. A fineprint link at the bottom of the page or a link that isn’t distinguishable from other links on your site won’t do the trick. To comply with COPPA, your privacy policy should be clear and easy to read. Don’t add any unrelated or confusing information. Here’s what your policy must include: ☑☑ A list of all operators collecting personal information. Name each operator collecting or maintaining children’s personal information through your site or service. For each operator, include a name and contact information (address, telephone number, and email address). If more than one operator is collecting information, it’s okay to give contact information for only one as long as that 3
operator will respond to all inquiries from parents about your site or service’s practices. Even so, you still have to list all the operators in your privacy policy. ☑☑ A description of the personal information collected and how it’s used. Your policy must describe: ⊲⊲ the types of personal information collected from children (for example, name, address, email address, hobbies, etc.); ⊲⊲ how the personal information is collected — directly from the child or passively, say, through cookies; ⊲⊲ how the personal information will be used (for example, for marketing to the child, notifying contest winners, or allowing the child to make information publicly available through a chat room); and ⊲⊲ whether you disclose personal information collected from kids to third parties. If you do, your privacy policy must list the types of businesses you disclose information to (for example, ad networks) and how they use the information. ●● A description of parental rights. Your privacy policy must tell parents: ⊲⊲ that you won’t require a child to disclose more information than is reasonably necessary to participate in an activity; ⊲⊲ that they can review their child’s personal information, direct you to delete it, and refuse to allow any further collection or use of the child’s information; ⊲⊲ that they can agree to the collection and use of their child’s information, but still not allow disclosure to third parties unless that’s part of the service (for example, social networking); and ⊲⊲ the procedures to follow to exercise their rights. Step 3: Notify Parents Directly Before Collecting Personal Information from Their Kids. COPPA requires that you give parents “direct notice” before collecting information from their kids. In addition, if you make a material change to the practices parents previously agreed to, you have to send an updated direct notice. The notice should be clear and easy to read. Don’t include any unrelated or confusing information. The notice must tell parents: ●● that you collected their online contact information for the purpose of getting their consent; ●● that you want to collect personal information from their child; ●● that their consent is required for the collection, use, and disclosure of the information; 4
●● the specific personal information you want to collect and how it might be disclosed to others; ●● a link to your online privacy policy; ●● how the parent can give their consent; and ●● that if the parent doesn’t consent within a reasonable time, you’ll delete the parent’s online contact information from your records. In certain circumstances, it’s okay under COPPA to collect a narrow class of personal information without getting parental consent. But you may still have to give parents direct notice of your activities. (See the chart at the end for a list of those limited exceptions.) Step 4: Get Parents’ Verifiable Consent Before Collecting Information from Their Kids. Before collecting, using or disclosing personal information from a child, you must get their parent’s verifiable consent. How do you get that? COPPA leaves it up to you, but it’s important to choose a method reasonably designed in light of available technology to ensure that the person giving the consent is the child’s parent. If you have actual knowledge that you’re collecting personal information from a site or service that is directed to children, you may get consent directly or through the child-directed site or service. Acceptable methods include having the parent: ●● sign a consent form and send it back to you via fax, mail, or electronic scan; ●● use a credit card, debit card, or other online payment system that provides notification of each separate transaction to the account holder; ●● call a toll-free number staffed by trained personnel; ●● connect to trained personnel via a video conference; or ●● provide a copy of a form of government issued ID that you check against a database, as long as you delete the identification from your records when you finish the verification process. If you will use a child’s personal information only for internal purposes and won’t disclose it, you may use a method known as “email plus.” Under that method, send an email to the parent and have them respond with their consent. Then you must send a confirmation to the parent via email, letter, or phone call. If you use email plus, you must let the parent know they can revoke their consent anytime. You must give parents the option of allowing the collection and use of their child’s personal information without agreeing to disclosing that information to third parties. If you make changes to the collection, use, or disclosure practices the parent already agreed to, you must send the parent a new notice and get their consent. 5
Check the chart for the narrow exceptions to the general rule that you must get parental consent before collecting personal information from kids. Even if you fall within an exception to the consent requirement, you still may have specific notice requirements. Step 5: Honor Parents’ Ongoing Rights with Respect to Information Collected from Their Kids. Even if parents have agreed that you may collect information from their kids, parents have ongoing rights — and you have continuing obligations. If a parent asks, you must: ●● give them a way to review the personal information collected from their child; ●● give them a way to revoke their consent and refuse the further use or collection of personal information from their child; and ●● delete their child’s personal information. Any time you’re communicating with a parent about personal information already collected from their child, take reasonable steps to ensure you’re dealing with the child’s parent. At the same time, make sure the method you use to give parents access to information collected from their kids isn’t unduly burdensome on the parent. Under COPPA, it may be okay to terminate a service to a child if the parent revokes consent, but only if the information at issue is reasonably necessary for the child’s participation in that activity. Step 6: Implement Reasonable Procedures to Protect the Security of Kids’ Personal Information. COPPA requires you to establish and maintain reasonable procedures to protect the confidentiality, security, and integrity of personal information collected from children. Minimize what you collect in the first place. Take reasonable steps to release personal information only to service providers and third parties capable of maintaining its confidentiality, security, and integrity. Get assurances they’ll live up to those responsibilities. Hold on to personal information only as long as is reasonably necessary for the purpose for which it was collected. Securely dispose of it once you no longer have a legitimate reason for retaining it. Looking for more about the Children’s Online Privacy Protection Rule? Visit the Children’s Privacy page of the FTC’s Business Center. For additional advice, read Complying with COPPA: Frequently Asked Questions. Visit OnGuard Online.gov for general information about protecting kids’ privacy online. Email us at COPPAhotline@ftc.gov if you have other questions. 6
The kind of information you may collect child’s and parent’s name and online contact information parent’s online contact information child’s online contact information Reason you may collect information without parental consent To get verifiable parental consent To give voluntary notice to a parent about their child’s participation on a site or service that doesn’t collect personal information To respond directly to a child’s specific one-time request (for example, if the child wants to enter a contest) If you collect information under this exception, what you must tell parents in your direct notice You can’t use the information to contact the child again and you must delete it after you respond to the request. ●● hyperlink to your privacy policy. ●● tell them they may refuse their child’s participation and require that you delete their contact information; and ●● tell them their online contact information won’t be used for any other purpose; You must delete their contact information if you don’t get consent within a reasonable time. You can’t otherwise collect, You must: use, or disclose the information. ●● tell parents you collected their online contact information to let them know about their child’s activities on a site or service that doesn’t collect personal information; Limits on how you may use the information In general, you must get a parent’s verifiable consent before collecting personal information from their child. But there are some limited exceptions to that requirement that allow you to collect information without parental consent. Keep in mind that the kind of information you may collect under each exception is narrow. You can’t collect anything more. Also, if you collect information under one of these exceptions, you can’t use it or disclose it for any other purpose. Limited Exceptions to COPPA’s Verifiable Parental Consent Requirement
The kind of information you may collect child’s and parent’s online contact information child’s and parent’s name and online contact information Reason you may collect information without parental consent To respond directly more than once to a child’s specific request (for example, if the child want to receive a newsletter) To protect a child’s safety Limits on how you may use the information ●● hyperlink to your privacy policy ●● tell parents they may refuse to permit the use of the contact information and require you to delete it; and ●● tell parents the information won’t be used or disclosed for any other purpose; ●● tell parents you collected the names and contact information to protect a child’s safety; ●● hyperlink to your privacy policy. You must: ●● tell parents that if they don’t opt out, you may use the child’s online contact information for that purpose; and ●● tell parents the online contact information won’t be used for any other purpose and won’t be disclosed or combined with other information; ●● tell parents you collected their child’s online contact information to provide the multiple communications they asked for; ●● tell parents you collected their online contact information to let them know their child has asked for multiple online communications; You must: If you collect information under this exception, what you must tell parents in your direct notice
child’s name and online contact information persistent identifier To protect the security or integrity of your site or service, to take precautions against liability, to respond to judicial process, or — as permitted by law — to provide information to law enforcement To provide support for internal operations of your site or service. ●● fulfilling a child’s request under the one-time contact or multiple contact exceptions. ●● legal or regulatory compliance, or ●● protecting the security or integrity of the user or the site ●● serving contextual ads or frequency capping, ●● authenticating users of the site or personalizing content, ●● performing network communications, ●● maintaining or analyzing the functioning of the site, This includes: The kind of information you may collect Reason you may collect information without parental consent You can’t use personal information other than a persistent identifier for this exception. You can’t use the information to contact a specific person, conduct behavioral advertising, or amass a profile on a person. Limits on how you may use the information If you collect information under this exception, what you must tell parents in your direct notice
persistent identifier If you have actual knowledge that a person’s information was collected through a childdirected site, but their previous registration indicates the person is 13 or over ●● you have already conducted an age-screen of the person indicating he or she is 13 or over. ●● the person affirmatively interacts with your site or service to trigger the collection; and ●● you collect only a persistent identifier and no other personal information; This exception applies only if: The kind of information you may collect Reason you may collect information without parental consent You can’t collect other personal information. Limits on how you may use the information If you collect information under this exception, what you must tell parents in your direct notice
For More Information The FTC works for the consumer to prevent fraudulent, deceptive, and unfair practices in the marketplace and to provide information to businesses to help them comply with the law.  For free information, visit the BCP Business Center, business.ftc.gov. To file a complaint, visit ftc.gov or call toll-free, 1-877-FTC-HELP (1-877-382-4357); TTY: 1-866-653-4261. Watch a video, How to File a Complaint, to learn more. The FTC enters consumer complaints into the Consumer Sentinel Network, a secure online database and investigative tool used by hundreds of civil and criminal law enforcement agencies in the U.S. and abroad. Your Opportunity to Comment The National Small Business Ombudsman and 10 Regional Fairness Boards collect comments from small businesses about federal compliance and enforcement activities. Each year, the Ombudsman evaluates the conduct of these activities and rates each agency’s responsiveness to small businesses. Small businesses can comment to the Ombudsman without fear of reprisal. To comment, call toll-free 1-888-REGFAIR (1-888-734-3247) or go to www.sba.gov/ombudsman. 11
July 2013 Federal Trade Commission | business.ftc.gov

Recomendados

COPPA for Newbies
COPPA for NewbiesCOPPA for Newbies
COPPA for NewbiesKegan Blumenthal
 
COPPA
COPPACOPPA
COPPAculturewins
 
The FTC’s Revised COPPA Rules (Stanford Presentation)
The FTC’s Revised COPPA Rules (Stanford Presentation)The FTC’s Revised COPPA Rules (Stanford Presentation)
The FTC’s Revised COPPA Rules (Stanford Presentation)WilmerHale
 
COPPA Compliance
COPPA ComplianceCOPPA Compliance
COPPA ComplianceKegan Blumenthal
 
Coppa overview
Coppa overviewCoppa overview
Coppa overviewchstokes
 
10 Step Guide to COPPA Compliance
10 Step Guide to COPPA Compliance10 Step Guide to COPPA Compliance
10 Step Guide to COPPA ComplianceKegan Blumenthal
 
1984 in 2015 Protecting Employees' Social Media from Misuse
1984 in 2015 Protecting Employees' Social Media from Misuse1984 in 2015 Protecting Employees' Social Media from Misuse
1984 in 2015 Protecting Employees' Social Media from MisuseWendi Lazar
 
OLC Presentation Jipson
OLC Presentation JipsonOLC Presentation Jipson
OLC Presentation JipsonUniversity of Dayton
 

Recomendados

COPPA for Newbies
COPPA for NewbiesCOPPA for Newbies
COPPA for NewbiesKegan Blumenthal
 
COPPA
COPPACOPPA
COPPAculturewins
 
The FTC’s Revised COPPA Rules (Stanford Presentation)
The FTC’s Revised COPPA Rules (Stanford Presentation)The FTC’s Revised COPPA Rules (Stanford Presentation)
The FTC’s Revised COPPA Rules (Stanford Presentation)WilmerHale
 
COPPA Compliance
COPPA ComplianceCOPPA Compliance
COPPA ComplianceKegan Blumenthal
 
Coppa overview
Coppa overviewCoppa overview
Coppa overviewchstokes
 
10 Step Guide to COPPA Compliance
10 Step Guide to COPPA Compliance10 Step Guide to COPPA Compliance
10 Step Guide to COPPA ComplianceKegan Blumenthal
 
1984 in 2015 Protecting Employees' Social Media from Misuse
1984 in 2015 Protecting Employees' Social Media from Misuse1984 in 2015 Protecting Employees' Social Media from Misuse
1984 in 2015 Protecting Employees' Social Media from MisuseWendi Lazar
 
OLC Presentation Jipson
OLC Presentation JipsonOLC Presentation Jipson
OLC Presentation JipsonUniversity of Dayton
 
Legislation That Internet Marketers Need to Know
Legislation That Internet Marketers Need to KnowLegislation That Internet Marketers Need to Know
Legislation That Internet Marketers Need to KnowKaley Perkins, MA
 
USLFG Corporate & Securities Presentation
USLFG Corporate & Securities PresentationUSLFG Corporate & Securities Presentation
USLFG Corporate & Securities PresentationArmstrong Teasdale
 
Children Online Privacy Komal Bansal
Children Online Privacy Komal BansalChildren Online Privacy Komal Bansal
Children Online Privacy Komal BansalKomal Bansal
 
Childpornographybill
ChildpornographybillChildpornographybill
Childpornographybillkikanovais
 
Email And Social Networking
Email And Social NetworkingEmail And Social Networking
Email And Social NetworkingHeather Grimes
 
Online privacy concerns (and what we can do about it)
Online privacy concerns (and what we can do about it)Online privacy concerns (and what we can do about it)
Online privacy concerns (and what we can do about it)Phil Cryer
 
Allan Watt
Allan WattAllan Watt
Allan WattArk Group Australia Pty Ltd
 
Navigating Privacy And Spam Compliance In Social Media Advertising
Navigating Privacy And Spam Compliance In Social Media AdvertisingNavigating Privacy And Spam Compliance In Social Media Advertising
Navigating Privacy And Spam Compliance In Social Media Advertisingeldercomlaw
 
Fundraising On The Internet
Fundraising On The InternetFundraising On The Internet
Fundraising On The InternetMessrs G Owen & Co
 
Risk Factory: Security Lessons From the Online Adult Entertainment Industry
Risk Factory: Security Lessons From the Online Adult Entertainment IndustryRisk Factory: Security Lessons From the Online Adult Entertainment Industry
Risk Factory: Security Lessons From the Online Adult Entertainment IndustryRisk Crew
 
Data Mining: Privacy and Concerns
Data Mining: Privacy and ConcernsData Mining: Privacy and Concerns
Data Mining: Privacy and ConcernsBradley Buchanan
 
Exposing the Hidden Web
Exposing the Hidden WebExposing the Hidden Web
Exposing the Hidden WebLuis Taveras EMBA, MS
 
Mozilla privacy policy
Mozilla privacy policyMozilla privacy policy
Mozilla privacy policyMichael Santos
 
Social media marketing presentation
Social media marketing presentation Social media marketing presentation
Social media marketing presentation Venicha Baker
 
Canadian Consumer Handbook
Canadian Consumer HandbookCanadian Consumer Handbook
Canadian Consumer Handbook- Mark - Fullbright
 
Chapter 8 Big Data and Privacy
Chapter 8 Big Data and PrivacyChapter 8 Big Data and Privacy
Chapter 8 Big Data and PrivacySolomben
 
Team Lecture Presentation 2
Team Lecture Presentation 2Team Lecture Presentation 2
Team Lecture Presentation 2Nick Buonvicino
 
Wills and estates law in the digital age
Wills and estates law in the digital ageWills and estates law in the digital age
Wills and estates law in the digital ageClio - Cloud-Based Legal Technology
 
ILC Cyber Report - June 2018
ILC Cyber Report - June 2018ILC Cyber Report - June 2018
ILC Cyber Report - June 2018Internet Law Center
 
Who ownes the customer? Privacy in the connected age.
Who ownes the customer? Privacy in the connected age.Who ownes the customer? Privacy in the connected age.
Who ownes the customer? Privacy in the connected age.jatharrison
 
Saskatchewan Privacy Commish investigative report reveals misdirected faxes c...
Saskatchewan Privacy Commish investigative report reveals misdirected faxes c...Saskatchewan Privacy Commish investigative report reveals misdirected faxes c...
Saskatchewan Privacy Commish investigative report reveals misdirected faxes c...- Mark - Fullbright
 
What You Should Know About Your Credit Report
What You Should Know About Your Credit ReportWhat You Should Know About Your Credit Report
What You Should Know About Your Credit Report- Mark - Fullbright
 

Mais conteúdo relacionado

Mais procurados

Legislation That Internet Marketers Need to Know
Legislation That Internet Marketers Need to KnowLegislation That Internet Marketers Need to Know
Legislation That Internet Marketers Need to KnowKaley Perkins, MA
 
USLFG Corporate & Securities Presentation
USLFG Corporate & Securities PresentationUSLFG Corporate & Securities Presentation
USLFG Corporate & Securities PresentationArmstrong Teasdale
 
Children Online Privacy Komal Bansal
Children Online Privacy Komal BansalChildren Online Privacy Komal Bansal
Children Online Privacy Komal BansalKomal Bansal
 
Childpornographybill
ChildpornographybillChildpornographybill
Childpornographybillkikanovais
 
Email And Social Networking
Email And Social NetworkingEmail And Social Networking
Email And Social NetworkingHeather Grimes
 
Online privacy concerns (and what we can do about it)
Online privacy concerns (and what we can do about it)Online privacy concerns (and what we can do about it)
Online privacy concerns (and what we can do about it)Phil Cryer
 
Navigating Privacy And Spam Compliance In Social Media Advertising
Navigating Privacy And Spam Compliance In Social Media AdvertisingNavigating Privacy And Spam Compliance In Social Media Advertising
Navigating Privacy And Spam Compliance In Social Media Advertisingeldercomlaw
 
Risk Factory: Security Lessons From the Online Adult Entertainment Industry
Risk Factory: Security Lessons From the Online Adult Entertainment IndustryRisk Factory: Security Lessons From the Online Adult Entertainment Industry
Risk Factory: Security Lessons From the Online Adult Entertainment IndustryRisk Crew
 
Data Mining: Privacy and Concerns
Data Mining: Privacy and ConcernsData Mining: Privacy and Concerns
Data Mining: Privacy and ConcernsBradley Buchanan
 
Mozilla privacy policy
Mozilla privacy policyMozilla privacy policy
Mozilla privacy policyMichael Santos
 
Social media marketing presentation
Social media marketing presentation Social media marketing presentation
Social media marketing presentation Venicha Baker
 
Chapter 8 Big Data and Privacy
Chapter 8 Big Data and PrivacyChapter 8 Big Data and Privacy
Chapter 8 Big Data and PrivacySolomben
 
Team Lecture Presentation 2
Team Lecture Presentation 2Team Lecture Presentation 2
Team Lecture Presentation 2Nick Buonvicino
 
Who ownes the customer? Privacy in the connected age.
Who ownes the customer? Privacy in the connected age.Who ownes the customer? Privacy in the connected age.
Who ownes the customer? Privacy in the connected age.jatharrison
 

Mais procurados (20)

Legislation That Internet Marketers Need to Know
Legislation That Internet Marketers Need to KnowLegislation That Internet Marketers Need to Know
Legislation That Internet Marketers Need to Know
 
USLFG Corporate & Securities Presentation
USLFG Corporate & Securities PresentationUSLFG Corporate & Securities Presentation
USLFG Corporate & Securities Presentation
 
Children Online Privacy Komal Bansal
Children Online Privacy Komal BansalChildren Online Privacy Komal Bansal
Children Online Privacy Komal Bansal
 
Childpornographybill
ChildpornographybillChildpornographybill
Childpornographybill
 
Email And Social Networking
Email And Social NetworkingEmail And Social Networking
Email And Social Networking
 
Online privacy concerns (and what we can do about it)
Online privacy concerns (and what we can do about it)Online privacy concerns (and what we can do about it)
Online privacy concerns (and what we can do about it)
 
Allan Watt
Allan WattAllan Watt
Allan Watt
 
Navigating Privacy And Spam Compliance In Social Media Advertising
Navigating Privacy And Spam Compliance In Social Media AdvertisingNavigating Privacy And Spam Compliance In Social Media Advertising
Navigating Privacy And Spam Compliance In Social Media Advertising
 
Fundraising On The Internet
Fundraising On The InternetFundraising On The Internet
Fundraising On The Internet
 
Risk Factory: Security Lessons From the Online Adult Entertainment Industry
Risk Factory: Security Lessons From the Online Adult Entertainment IndustryRisk Factory: Security Lessons From the Online Adult Entertainment Industry
Risk Factory: Security Lessons From the Online Adult Entertainment Industry
 
Data Mining: Privacy and Concerns
Data Mining: Privacy and ConcernsData Mining: Privacy and Concerns
Data Mining: Privacy and Concerns
 
Exposing the Hidden Web
Exposing the Hidden WebExposing the Hidden Web
Exposing the Hidden Web
 
Mozilla privacy policy
Mozilla privacy policyMozilla privacy policy
Mozilla privacy policy
 
Social media marketing presentation
Social media marketing presentation Social media marketing presentation
Social media marketing presentation
 
Canadian Consumer Handbook
Canadian Consumer HandbookCanadian Consumer Handbook
Canadian Consumer Handbook
 
Chapter 8 Big Data and Privacy
Chapter 8 Big Data and PrivacyChapter 8 Big Data and Privacy
Chapter 8 Big Data and Privacy
 
Team Lecture Presentation 2
Team Lecture Presentation 2Team Lecture Presentation 2
Team Lecture Presentation 2
 
Wills and estates law in the digital age
Wills and estates law in the digital ageWills and estates law in the digital age
Wills and estates law in the digital age
 
ILC Cyber Report - June 2018
ILC Cyber Report - June 2018ILC Cyber Report - June 2018
ILC Cyber Report - June 2018
 
Who ownes the customer? Privacy in the connected age.
Who ownes the customer? Privacy in the connected age.Who ownes the customer? Privacy in the connected age.
Who ownes the customer? Privacy in the connected age.
 

Destaque

Saskatchewan Privacy Commish investigative report reveals misdirected faxes c...
Saskatchewan Privacy Commish investigative report reveals misdirected faxes c...Saskatchewan Privacy Commish investigative report reveals misdirected faxes c...
Saskatchewan Privacy Commish investigative report reveals misdirected faxes c...- Mark - Fullbright
 
What You Should Know About Your Credit Report
What You Should Know About Your Credit ReportWhat You Should Know About Your Credit Report
What You Should Know About Your Credit Report- Mark - Fullbright
 
False Personation aka Identity Theft
False Personation aka Identity TheftFalse Personation aka Identity Theft
False Personation aka Identity Theft- Mark - Fullbright
 
Verizon 2014 PCI Compliance Report
Verizon 2014 PCI Compliance ReportVerizon 2014 PCI Compliance Report
Verizon 2014 PCI Compliance Report- Mark - Fullbright
 
Safeguarding Consumers’ Financial Data 2014
Safeguarding Consumers’ Financial Data 2014Safeguarding Consumers’ Financial Data 2014
Safeguarding Consumers’ Financial Data 2014- Mark - Fullbright
 
Business Peer Peer File Sharing Guide
Business Peer Peer File Sharing GuideBusiness Peer Peer File Sharing Guide
Business Peer Peer File Sharing Guide- Mark - Fullbright
 
Special Report for Retail Businesses on IDENTITY THEFT - ca
Special Report for Retail Businesses on IDENTITY THEFT - caSpecial Report for Retail Businesses on IDENTITY THEFT - ca
Special Report for Retail Businesses on IDENTITY THEFT - ca- Mark - Fullbright
 
Interlink Interchange Reimbursement Fees – April 2013
Interlink Interchange Reimbursement Fees – April 2013Interlink Interchange Reimbursement Fees – April 2013
Interlink Interchange Reimbursement Fees – April 2013- Mark - Fullbright
 
DATA PROTECTION & BREACH READINESS GUIDE 2014
DATA PROTECTION & BREACH READINESS GUIDE 2014DATA PROTECTION & BREACH READINESS GUIDE 2014
DATA PROTECTION & BREACH READINESS GUIDE 2014- Mark - Fullbright
 
Business Medical Identity Theft faq Health Care Health Plan
Business Medical Identity Theft faq Health Care Health PlanBusiness Medical Identity Theft faq Health Care Health Plan
Business Medical Identity Theft faq Health Care Health Plan- Mark - Fullbright
 
Small Businesses: Tips to Avoiding Fraudulent Chargebacks
Small Businesses: Tips to Avoiding Fraudulent ChargebacksSmall Businesses: Tips to Avoiding Fraudulent Chargebacks
Small Businesses: Tips to Avoiding Fraudulent Chargebacks- Mark - Fullbright
 
Police Report Vs. Incident Report
Police Report Vs. Incident ReportPolice Report Vs. Incident Report
Police Report Vs. Incident Report- Mark - Fullbright
 
From Consumer to Citizen - Digital Media and Youth Civic Engagement
From Consumer to Citizen - Digital Media and Youth Civic EngagementFrom Consumer to Citizen - Digital Media and Youth Civic Engagement
From Consumer to Citizen - Digital Media and Youth Civic Engagement- Mark - Fullbright
 
A Basic Guide to Safe Surfing on the Internet
A Basic Guide to Safe Surfing on the InternetA Basic Guide to Safe Surfing on the Internet
A Basic Guide to Safe Surfing on the Internet- Mark - Fullbright
 
Quick Reference Guide to the PCI Data Security Standard
Quick Reference Guide to the PCI Data Security StandardQuick Reference Guide to the PCI Data Security Standard
Quick Reference Guide to the PCI Data Security Standard- Mark - Fullbright
 

Destaque (16)

Saskatchewan Privacy Commish investigative report reveals misdirected faxes c...
Saskatchewan Privacy Commish investigative report reveals misdirected faxes c...Saskatchewan Privacy Commish investigative report reveals misdirected faxes c...
Saskatchewan Privacy Commish investigative report reveals misdirected faxes c...
 
What You Should Know About Your Credit Report
What You Should Know About Your Credit ReportWhat You Should Know About Your Credit Report
What You Should Know About Your Credit Report
 
Child Identity Theft
Child Identity TheftChild Identity Theft
Child Identity Theft
 
False Personation aka Identity Theft
False Personation aka Identity TheftFalse Personation aka Identity Theft
False Personation aka Identity Theft
 
Verizon 2014 PCI Compliance Report
Verizon 2014 PCI Compliance ReportVerizon 2014 PCI Compliance Report
Verizon 2014 PCI Compliance Report
 
Safeguarding Consumers’ Financial Data 2014
Safeguarding Consumers’ Financial Data 2014Safeguarding Consumers’ Financial Data 2014
Safeguarding Consumers’ Financial Data 2014
 
Business Peer Peer File Sharing Guide
Business Peer Peer File Sharing GuideBusiness Peer Peer File Sharing Guide
Business Peer Peer File Sharing Guide
 
Special Report for Retail Businesses on IDENTITY THEFT - ca
Special Report for Retail Businesses on IDENTITY THEFT - caSpecial Report for Retail Businesses on IDENTITY THEFT - ca
Special Report for Retail Businesses on IDENTITY THEFT - ca
 
Interlink Interchange Reimbursement Fees – April 2013
Interlink Interchange Reimbursement Fees – April 2013Interlink Interchange Reimbursement Fees – April 2013
Interlink Interchange Reimbursement Fees – April 2013
 
DATA PROTECTION & BREACH READINESS GUIDE 2014
DATA PROTECTION & BREACH READINESS GUIDE 2014DATA PROTECTION & BREACH READINESS GUIDE 2014
DATA PROTECTION & BREACH READINESS GUIDE 2014
 
Business Medical Identity Theft faq Health Care Health Plan
Business Medical Identity Theft faq Health Care Health PlanBusiness Medical Identity Theft faq Health Care Health Plan
Business Medical Identity Theft faq Health Care Health Plan
 
Small Businesses: Tips to Avoiding Fraudulent Chargebacks
Small Businesses: Tips to Avoiding Fraudulent ChargebacksSmall Businesses: Tips to Avoiding Fraudulent Chargebacks
Small Businesses: Tips to Avoiding Fraudulent Chargebacks
 
Police Report Vs. Incident Report
Police Report Vs. Incident ReportPolice Report Vs. Incident Report
Police Report Vs. Incident Report
 
From Consumer to Citizen - Digital Media and Youth Civic Engagement
From Consumer to Citizen - Digital Media and Youth Civic EngagementFrom Consumer to Citizen - Digital Media and Youth Civic Engagement
From Consumer to Citizen - Digital Media and Youth Civic Engagement
 
A Basic Guide to Safe Surfing on the Internet
A Basic Guide to Safe Surfing on the InternetA Basic Guide to Safe Surfing on the Internet
A Basic Guide to Safe Surfing on the Internet
 
Quick Reference Guide to the PCI Data Security Standard
Quick Reference Guide to the PCI Data Security StandardQuick Reference Guide to the PCI Data Security Standard
Quick Reference Guide to the PCI Data Security Standard
 

Semelhante a COPPA Compliance Plan for Websites

Business Marketing Your Mobile app
Business Marketing Your Mobile appBusiness Marketing Your Mobile app
Business Marketing Your Mobile app- Mark - Fullbright
 
Say Consultancy Privacy Policy
Say Consultancy Privacy PolicySay Consultancy Privacy Policy
Say Consultancy Privacy PolicySay Digital Media
 
Digital Citizenship Unit 3 Lesson 3
Digital Citizenship Unit 3 Lesson 3Digital Citizenship Unit 3 Lesson 3
Digital Citizenship Unit 3 Lesson 3Chele Marceau-Burch
 
parent_teacher_tutorial
parent_teacher_tutorialparent_teacher_tutorial
parent_teacher_tutorialtutorialsruby
 
parent_teacher_tutorial
parent_teacher_tutorialparent_teacher_tutorial
parent_teacher_tutorialtutorialsruby
 
The california consumer privacy act (ccpa) is in effect starting on january 1...
The california consumer privacy act (ccpa) is in effect starting on january 1...The california consumer privacy act (ccpa) is in effect starting on january 1...
The california consumer privacy act (ccpa) is in effect starting on january 1...RominaMariaBaltariu
 
pp_101_notes_eng.pdf
pp_101_notes_eng.pdfpp_101_notes_eng.pdf
pp_101_notes_eng.pdfAbel Mutize
 
How to (Legitimately) Engage with Kids on Social Media | Paul Nunn
How to (Legitimately) Engage with Kids on Social Media | Paul NunnHow to (Legitimately) Engage with Kids on Social Media | Paul Nunn
How to (Legitimately) Engage with Kids on Social Media | Paul NunnJessica Tams
 
Avoiding Privacy Pitfalls When Using Big Data in Marketing
Avoiding Privacy Pitfalls When Using Big Data in MarketingAvoiding Privacy Pitfalls When Using Big Data in Marketing
Avoiding Privacy Pitfalls When Using Big Data in MarketingTokusoudeka
 
Australian Privacy Principles - Updates presented by WiTH Collective & Marque...
Australian Privacy Principles - Updates presented by WiTH Collective & Marque...Australian Privacy Principles - Updates presented by WiTH Collective & Marque...
Australian Privacy Principles - Updates presented by WiTH Collective & Marque...WiTH Collective
 
COPPA and Over 13 Age Restrictions
COPPA and Over 13 Age RestrictionsCOPPA and Over 13 Age Restrictions
COPPA and Over 13 Age RestrictionsMark Moran
 
Double dragon privacy policy
Double dragon privacy policyDouble dragon privacy policy
Double dragon privacy policyVolodymyrBatii
 
Abbie Clement — GDPR, CCPA, ePrivacy: Which Data Laws Are Next and How the Ne...
Abbie Clement — GDPR, CCPA, ePrivacy: Which Data Laws Are Next and How the Ne...Abbie Clement — GDPR, CCPA, ePrivacy: Which Data Laws Are Next and How the Ne...
Abbie Clement — GDPR, CCPA, ePrivacy: Which Data Laws Are Next and How the Ne...Semrush
 
TrustArc-Webinar-Slides-2022-09-20-Cross-Contextual-Advertising
TrustArc-Webinar-Slides-2022-09-20-Cross-Contextual-AdvertisingTrustArc-Webinar-Slides-2022-09-20-Cross-Contextual-Advertising
TrustArc-Webinar-Slides-2022-09-20-Cross-Contextual-AdvertisingTrustArc
 
PBPATL - Privacy Seminar 2011
PBPATL - Privacy Seminar 2011PBPATL - Privacy Seminar 2011
PBPATL - Privacy Seminar 2011Kimberly Verska
 
TrustArc Webinar_ How Data Privacy Demands Impact Your Marketing Team.pdf
TrustArc Webinar_ How Data Privacy Demands Impact Your Marketing Team.pdfTrustArc Webinar_ How Data Privacy Demands Impact Your Marketing Team.pdf
TrustArc Webinar_ How Data Privacy Demands Impact Your Marketing Team.pdfTrustArc
 
THIRD PARTY AOL SUPPORT SERVICE TO FIX THE TECHNICAL ISSUES
THIRD PARTY AOL SUPPORT SERVICE TO FIX THE TECHNICAL ISSUESTHIRD PARTY AOL SUPPORT SERVICE TO FIX THE TECHNICAL ISSUES
THIRD PARTY AOL SUPPORT SERVICE TO FIX THE TECHNICAL ISSUESPrateek Kapoor
 
Privacy and Civil Liberties
Privacy and Civil LibertiesPrivacy and Civil Liberties
Privacy and Civil LibertiesUpekha Vandebona
 

Semelhante a COPPA Compliance Plan for Websites (20)

Business Marketing Your Mobile app
Business Marketing Your Mobile appBusiness Marketing Your Mobile app
Business Marketing Your Mobile app
 
Say Consultancy Privacy Policy
Say Consultancy Privacy PolicySay Consultancy Privacy Policy
Say Consultancy Privacy Policy
 
Digital Citizenship Unit 3 Lesson 3
Digital Citizenship Unit 3 Lesson 3Digital Citizenship Unit 3 Lesson 3
Digital Citizenship Unit 3 Lesson 3
 
Privacy Policy
Privacy PolicyPrivacy Policy
Privacy Policy
 
parent_teacher_tutorial
parent_teacher_tutorialparent_teacher_tutorial
parent_teacher_tutorial
 
parent_teacher_tutorial
parent_teacher_tutorialparent_teacher_tutorial
parent_teacher_tutorial
 
The california consumer privacy act (ccpa) is in effect starting on january 1...
The california consumer privacy act (ccpa) is in effect starting on january 1...The california consumer privacy act (ccpa) is in effect starting on january 1...
The california consumer privacy act (ccpa) is in effect starting on january 1...
 
pp_101_notes_eng.pdf
pp_101_notes_eng.pdfpp_101_notes_eng.pdf
pp_101_notes_eng.pdf
 
How to (Legitimately) Engage with Kids on Social Media | Paul Nunn
How to (Legitimately) Engage with Kids on Social Media | Paul NunnHow to (Legitimately) Engage with Kids on Social Media | Paul Nunn
How to (Legitimately) Engage with Kids on Social Media | Paul Nunn
 
Avoiding Privacy Pitfalls When Using Big Data in Marketing
Avoiding Privacy Pitfalls When Using Big Data in MarketingAvoiding Privacy Pitfalls When Using Big Data in Marketing
Avoiding Privacy Pitfalls When Using Big Data in Marketing
 
Australian Privacy Principles - Updates presented by WiTH Collective & Marque...
Australian Privacy Principles - Updates presented by WiTH Collective & Marque...Australian Privacy Principles - Updates presented by WiTH Collective & Marque...
Australian Privacy Principles - Updates presented by WiTH Collective & Marque...
 
COPPA and Over 13 Age Restrictions
COPPA and Over 13 Age RestrictionsCOPPA and Over 13 Age Restrictions
COPPA and Over 13 Age Restrictions
 
Double dragon privacy policy
Double dragon privacy policyDouble dragon privacy policy
Double dragon privacy policy
 
Abbie Clement — GDPR, CCPA, ePrivacy: Which Data Laws Are Next and How the Ne...
Abbie Clement — GDPR, CCPA, ePrivacy: Which Data Laws Are Next and How the Ne...Abbie Clement — GDPR, CCPA, ePrivacy: Which Data Laws Are Next and How the Ne...
Abbie Clement — GDPR, CCPA, ePrivacy: Which Data Laws Are Next and How the Ne...
 
TrustArc-Webinar-Slides-2022-09-20-Cross-Contextual-Advertising
TrustArc-Webinar-Slides-2022-09-20-Cross-Contextual-AdvertisingTrustArc-Webinar-Slides-2022-09-20-Cross-Contextual-Advertising
TrustArc-Webinar-Slides-2022-09-20-Cross-Contextual-Advertising
 
Shai samet
Shai sametShai samet
Shai samet
 
PBPATL - Privacy Seminar 2011
PBPATL - Privacy Seminar 2011PBPATL - Privacy Seminar 2011
PBPATL - Privacy Seminar 2011
 
TrustArc Webinar_ How Data Privacy Demands Impact Your Marketing Team.pdf
TrustArc Webinar_ How Data Privacy Demands Impact Your Marketing Team.pdfTrustArc Webinar_ How Data Privacy Demands Impact Your Marketing Team.pdf
TrustArc Webinar_ How Data Privacy Demands Impact Your Marketing Team.pdf
 
THIRD PARTY AOL SUPPORT SERVICE TO FIX THE TECHNICAL ISSUES
THIRD PARTY AOL SUPPORT SERVICE TO FIX THE TECHNICAL ISSUESTHIRD PARTY AOL SUPPORT SERVICE TO FIX THE TECHNICAL ISSUES
THIRD PARTY AOL SUPPORT SERVICE TO FIX THE TECHNICAL ISSUES
 
Privacy and Civil Liberties
Privacy and Civil LibertiesPrivacy and Civil Liberties
Privacy and Civil Liberties
 

Mais de - Mark - Fullbright

ISTR Internet Security Threat Report 2019
ISTR Internet Security Threat Report 2019ISTR Internet Security Threat Report 2019
ISTR Internet Security Threat Report 2019- Mark - Fullbright
 
2020 Data Breach Investigations Report (DBIR)
2020 Data Breach Investigations Report (DBIR)2020 Data Breach Investigations Report (DBIR)
2020 Data Breach Investigations Report (DBIR)- Mark - Fullbright
 
Consumer Sentinel Network Data Book 2019
Consumer Sentinel Network Data Book 2019Consumer Sentinel Network Data Book 2019
Consumer Sentinel Network Data Book 2019- Mark - Fullbright
 
CFPB Consumer Reporting Companies 2019
CFPB Consumer Reporting Companies 2019CFPB Consumer Reporting Companies 2019
CFPB Consumer Reporting Companies 2019- Mark - Fullbright
 
Advisory to Financial Institutions on Illicit Financial Schemes and Methods R...
Advisory to Financial Institutions on Illicit Financial Schemes and Methods R...Advisory to Financial Institutions on Illicit Financial Schemes and Methods R...
Advisory to Financial Institutions on Illicit Financial Schemes and Methods R...- Mark - Fullbright
 
2019 Data Breach Investigations Report (DBIR)
2019 Data Breach Investigations Report (DBIR)2019 Data Breach Investigations Report (DBIR)
2019 Data Breach Investigations Report (DBIR)- Mark - Fullbright
 
2018 Privacy & Data Security Report
2018 Privacy & Data Security Report2018 Privacy & Data Security Report
2018 Privacy & Data Security Report- Mark - Fullbright
 
Consumer Sentinel Network Data Book 2018
Consumer Sentinel Network Data Book 2018 Consumer Sentinel Network Data Book 2018
Consumer Sentinel Network Data Book 2018 - Mark - Fullbright
 
The Geography of Medical Identity Theft
The Geography of Medical Identity TheftThe Geography of Medical Identity Theft
The Geography of Medical Identity Theft- Mark - Fullbright
 
Consumer Sentinel Data Book 2017
Consumer Sentinel Data Book 2017Consumer Sentinel Data Book 2017
Consumer Sentinel Data Book 2017- Mark - Fullbright
 
Protecting Personal Information: A Guide for Business
Protecting Personal Information: A Guide for BusinessProtecting Personal Information: A Guide for Business
Protecting Personal Information: A Guide for Business- Mark - Fullbright
 
Data Breach Response: A Guide for Business
Data Breach Response: A Guide for BusinessData Breach Response: A Guide for Business
Data Breach Response: A Guide for Business- Mark - Fullbright
 
2017 Data Breach Investigations Report
2017 Data Breach Investigations Report2017 Data Breach Investigations Report
2017 Data Breach Investigations Report- Mark - Fullbright
 
Consumer Sentinel Network Data Book for January 2016 - December 2016
Consumer Sentinel Network Data Book for January 2016 - December 2016Consumer Sentinel Network Data Book for January 2016 - December 2016
Consumer Sentinel Network Data Book for January 2016 - December 2016- Mark - Fullbright
 
Consumer Sentinel Data Book 2015
Consumer Sentinel Data Book 2015Consumer Sentinel Data Book 2015
Consumer Sentinel Data Book 2015- Mark - Fullbright
 

Mais de - Mark - Fullbright (20)

ISTR Internet Security Threat Report 2019
ISTR Internet Security Threat Report 2019ISTR Internet Security Threat Report 2019
ISTR Internet Security Threat Report 2019
 
IC3 2019 Internet Crime Report
IC3 2019 Internet Crime ReportIC3 2019 Internet Crime Report
IC3 2019 Internet Crime Report
 
Police, Protesters, Press, 2020
Police, Protesters, Press, 2020Police, Protesters, Press, 2020
Police, Protesters, Press, 2020
 
2020 Data Breach Investigations Report (DBIR)
2020 Data Breach Investigations Report (DBIR)2020 Data Breach Investigations Report (DBIR)
2020 Data Breach Investigations Report (DBIR)
 
FCPA Guidance 2020
FCPA Guidance 2020FCPA Guidance 2020
FCPA Guidance 2020
 
Consumer Sentinel Network Data Book 2019
Consumer Sentinel Network Data Book 2019Consumer Sentinel Network Data Book 2019
Consumer Sentinel Network Data Book 2019
 
CFPB Consumer Reporting Companies 2019
CFPB Consumer Reporting Companies 2019CFPB Consumer Reporting Companies 2019
CFPB Consumer Reporting Companies 2019
 
Advisory to Financial Institutions on Illicit Financial Schemes and Methods R...
Advisory to Financial Institutions on Illicit Financial Schemes and Methods R...Advisory to Financial Institutions on Illicit Financial Schemes and Methods R...
Advisory to Financial Institutions on Illicit Financial Schemes and Methods R...
 
2018 IC3 Report
2018 IC3 Report2018 IC3 Report
2018 IC3 Report
 
2019 Data Breach Investigations Report (DBIR)
2019 Data Breach Investigations Report (DBIR)2019 Data Breach Investigations Report (DBIR)
2019 Data Breach Investigations Report (DBIR)
 
2018 Privacy & Data Security Report
2018 Privacy & Data Security Report2018 Privacy & Data Security Report
2018 Privacy & Data Security Report
 
Consumer Sentinel Network Data Book 2018
Consumer Sentinel Network Data Book 2018 Consumer Sentinel Network Data Book 2018
Consumer Sentinel Network Data Book 2018
 
Credit Score Explainer
Credit Score ExplainerCredit Score Explainer
Credit Score Explainer
 
The Geography of Medical Identity Theft
The Geography of Medical Identity TheftThe Geography of Medical Identity Theft
The Geography of Medical Identity Theft
 
Consumer Sentinel Data Book 2017
Consumer Sentinel Data Book 2017Consumer Sentinel Data Book 2017
Consumer Sentinel Data Book 2017
 
Protecting Personal Information: A Guide for Business
Protecting Personal Information: A Guide for BusinessProtecting Personal Information: A Guide for Business
Protecting Personal Information: A Guide for Business
 
Data Breach Response: A Guide for Business
Data Breach Response: A Guide for BusinessData Breach Response: A Guide for Business
Data Breach Response: A Guide for Business
 
2017 Data Breach Investigations Report
2017 Data Breach Investigations Report2017 Data Breach Investigations Report
2017 Data Breach Investigations Report
 
Consumer Sentinel Network Data Book for January 2016 - December 2016
Consumer Sentinel Network Data Book for January 2016 - December 2016Consumer Sentinel Network Data Book for January 2016 - December 2016
Consumer Sentinel Network Data Book for January 2016 - December 2016
 
Consumer Sentinel Data Book 2015
Consumer Sentinel Data Book 2015Consumer Sentinel Data Book 2015
Consumer Sentinel Data Book 2015
 

Último

4.18.24 Movement Legacies, Reflection, and Review.pptx
4.18.24 Movement Legacies, Reflection, and Review.pptx4.18.24 Movement Legacies, Reflection, and Review.pptx
4.18.24 Movement Legacies, Reflection, and Review.pptxmary850239
 
Difference Between Search & Browse Methods in Odoo 17
Difference Between Search & Browse Methods in Odoo 17Difference Between Search & Browse Methods in Odoo 17
Difference Between Search & Browse Methods in Odoo 17Celine George
 
Proudly South Africa powerpoint Thorisha.pptx
Proudly South Africa powerpoint Thorisha.pptxProudly South Africa powerpoint Thorisha.pptx
Proudly South Africa powerpoint Thorisha.pptxthorishapillay1
 
Science 7 Quarter 4 Module 2: Natural Resources.pptx
Science 7 Quarter 4 Module 2: Natural Resources.pptxScience 7 Quarter 4 Module 2: Natural Resources.pptx
Science 7 Quarter 4 Module 2: Natural Resources.pptxMaryGraceBautista27
 
Keynote by Prof. Wurzer at Nordex about IP-design
Keynote by Prof. Wurzer at Nordex about IP-designKeynote by Prof. Wurzer at Nordex about IP-design
Keynote by Prof. Wurzer at Nordex about IP-designMIPLM
 
AMERICAN LANGUAGE HUB_Level2_Student'sBook_Answerkey.pdf
AMERICAN LANGUAGE HUB_Level2_Student'sBook_Answerkey.pdfAMERICAN LANGUAGE HUB_Level2_Student'sBook_Answerkey.pdf
AMERICAN LANGUAGE HUB_Level2_Student'sBook_Answerkey.pdfphamnguyenenglishnb
 
ANG SEKTOR NG agrikultura.pptx QUARTER 4
ANG SEKTOR NG agrikultura.pptx QUARTER 4ANG SEKTOR NG agrikultura.pptx QUARTER 4
ANG SEKTOR NG agrikultura.pptx QUARTER 4MiaBumagat1
 
INTRODUCTION TO CATHOLIC CHRISTOLOGY.pptx
INTRODUCTION TO CATHOLIC CHRISTOLOGY.pptxINTRODUCTION TO CATHOLIC CHRISTOLOGY.pptx
INTRODUCTION TO CATHOLIC CHRISTOLOGY.pptxHumphrey A Beña
 
ENGLISH6-Q4-W3.pptxqurter our high choom
ENGLISH6-Q4-W3.pptxqurter our high choomENGLISH6-Q4-W3.pptxqurter our high choom
ENGLISH6-Q4-W3.pptxqurter our high choomnelietumpap1
 
Grade 9 Q4-MELC1-Active and Passive Voice.pptx
Grade 9 Q4-MELC1-Active and Passive Voice.pptxGrade 9 Q4-MELC1-Active and Passive Voice.pptx
Grade 9 Q4-MELC1-Active and Passive Voice.pptxChelloAnnAsuncion2
 
Judging the Relevance and worth of ideas part 2.pptx
Judging the Relevance and worth of ideas part 2.pptxJudging the Relevance and worth of ideas part 2.pptx
Judging the Relevance and worth of ideas part 2.pptxSherlyMaeNeri
 
ENGLISH 7_Q4_LESSON 2_ Employing a Variety of Strategies for Effective Interp...
ENGLISH 7_Q4_LESSON 2_ Employing a Variety of Strategies for Effective Interp...ENGLISH 7_Q4_LESSON 2_ Employing a Variety of Strategies for Effective Interp...
ENGLISH 7_Q4_LESSON 2_ Employing a Variety of Strategies for Effective Interp...JhezDiaz1
 
Computed Fields and api Depends in the Odoo 17
Computed Fields and api Depends in the Odoo 17Computed Fields and api Depends in the Odoo 17
Computed Fields and api Depends in the Odoo 17Celine George
 
ECONOMIC CONTEXT - PAPER 1 Q3: NEWSPAPERS.pptx
ECONOMIC CONTEXT - PAPER 1 Q3: NEWSPAPERS.pptxECONOMIC CONTEXT - PAPER 1 Q3: NEWSPAPERS.pptx
ECONOMIC CONTEXT - PAPER 1 Q3: NEWSPAPERS.pptxiammrhaywood
 
Inclusivity Essentials_ Creating Accessible Websites for Nonprofits .pdf
Inclusivity Essentials_ Creating Accessible Websites for Nonprofits .pdfInclusivity Essentials_ Creating Accessible Websites for Nonprofits .pdf
Inclusivity Essentials_ Creating Accessible Websites for Nonprofits .pdfTechSoup
 
THEORIES OF ORGANIZATION-PUBLIC ADMINISTRATION
THEORIES OF ORGANIZATION-PUBLIC ADMINISTRATIONTHEORIES OF ORGANIZATION-PUBLIC ADMINISTRATION
THEORIES OF ORGANIZATION-PUBLIC ADMINISTRATIONHumphrey A Beña
 
HỌC TỐT TIẾNG ANH 11 THEO CHƯƠNG TRÌNH GLOBAL SUCCESS ĐÁP ÁN CHI TIẾT - CẢ NĂ...
HỌC TỐT TIẾNG ANH 11 THEO CHƯƠNG TRÌNH GLOBAL SUCCESS ĐÁP ÁN CHI TIẾT - CẢ NĂ...HỌC TỐT TIẾNG ANH 11 THEO CHƯƠNG TRÌNH GLOBAL SUCCESS ĐÁP ÁN CHI TIẾT - CẢ NĂ...
HỌC TỐT TIẾNG ANH 11 THEO CHƯƠNG TRÌNH GLOBAL SUCCESS ĐÁP ÁN CHI TIẾT - CẢ NĂ...Nguyen Thanh Tu Collection
 

Último (20)

4.18.24 Movement Legacies, Reflection, and Review.pptx
4.18.24 Movement Legacies, Reflection, and Review.pptx4.18.24 Movement Legacies, Reflection, and Review.pptx
4.18.24 Movement Legacies, Reflection, and Review.pptx
 
Difference Between Search & Browse Methods in Odoo 17
Difference Between Search & Browse Methods in Odoo 17Difference Between Search & Browse Methods in Odoo 17
Difference Between Search & Browse Methods in Odoo 17
 
Proudly South Africa powerpoint Thorisha.pptx
Proudly South Africa powerpoint Thorisha.pptxProudly South Africa powerpoint Thorisha.pptx
Proudly South Africa powerpoint Thorisha.pptx
 
Science 7 Quarter 4 Module 2: Natural Resources.pptx
Science 7 Quarter 4 Module 2: Natural Resources.pptxScience 7 Quarter 4 Module 2: Natural Resources.pptx
Science 7 Quarter 4 Module 2: Natural Resources.pptx
 
Keynote by Prof. Wurzer at Nordex about IP-design
Keynote by Prof. Wurzer at Nordex about IP-designKeynote by Prof. Wurzer at Nordex about IP-design
Keynote by Prof. Wurzer at Nordex about IP-design
 
AMERICAN LANGUAGE HUB_Level2_Student'sBook_Answerkey.pdf
AMERICAN LANGUAGE HUB_Level2_Student'sBook_Answerkey.pdfAMERICAN LANGUAGE HUB_Level2_Student'sBook_Answerkey.pdf
AMERICAN LANGUAGE HUB_Level2_Student'sBook_Answerkey.pdf
 
ANG SEKTOR NG agrikultura.pptx QUARTER 4
ANG SEKTOR NG agrikultura.pptx QUARTER 4ANG SEKTOR NG agrikultura.pptx QUARTER 4
ANG SEKTOR NG agrikultura.pptx QUARTER 4
 
INTRODUCTION TO CATHOLIC CHRISTOLOGY.pptx
INTRODUCTION TO CATHOLIC CHRISTOLOGY.pptxINTRODUCTION TO CATHOLIC CHRISTOLOGY.pptx
INTRODUCTION TO CATHOLIC CHRISTOLOGY.pptx
 
ENGLISH6-Q4-W3.pptxqurter our high choom
ENGLISH6-Q4-W3.pptxqurter our high choomENGLISH6-Q4-W3.pptxqurter our high choom
ENGLISH6-Q4-W3.pptxqurter our high choom
 
Grade 9 Q4-MELC1-Active and Passive Voice.pptx
Grade 9 Q4-MELC1-Active and Passive Voice.pptxGrade 9 Q4-MELC1-Active and Passive Voice.pptx
Grade 9 Q4-MELC1-Active and Passive Voice.pptx
 
Judging the Relevance and worth of ideas part 2.pptx
Judging the Relevance and worth of ideas part 2.pptxJudging the Relevance and worth of ideas part 2.pptx
Judging the Relevance and worth of ideas part 2.pptx
 
YOUVE_GOT_EMAIL_PRELIMS_EL_DORADO_2024.pptx
YOUVE_GOT_EMAIL_PRELIMS_EL_DORADO_2024.pptxYOUVE_GOT_EMAIL_PRELIMS_EL_DORADO_2024.pptx
YOUVE_GOT_EMAIL_PRELIMS_EL_DORADO_2024.pptx
 
ENGLISH 7_Q4_LESSON 2_ Employing a Variety of Strategies for Effective Interp...
ENGLISH 7_Q4_LESSON 2_ Employing a Variety of Strategies for Effective Interp...ENGLISH 7_Q4_LESSON 2_ Employing a Variety of Strategies for Effective Interp...
ENGLISH 7_Q4_LESSON 2_ Employing a Variety of Strategies for Effective Interp...
 
Computed Fields and api Depends in the Odoo 17
Computed Fields and api Depends in the Odoo 17Computed Fields and api Depends in the Odoo 17
Computed Fields and api Depends in the Odoo 17
 
ECONOMIC CONTEXT - PAPER 1 Q3: NEWSPAPERS.pptx
ECONOMIC CONTEXT - PAPER 1 Q3: NEWSPAPERS.pptxECONOMIC CONTEXT - PAPER 1 Q3: NEWSPAPERS.pptx
ECONOMIC CONTEXT - PAPER 1 Q3: NEWSPAPERS.pptx
 
TataKelola dan KamSiber Kecerdasan Buatan v022.pdf
TataKelola dan KamSiber Kecerdasan Buatan v022.pdfTataKelola dan KamSiber Kecerdasan Buatan v022.pdf
TataKelola dan KamSiber Kecerdasan Buatan v022.pdf
 
Inclusivity Essentials_ Creating Accessible Websites for Nonprofits .pdf
Inclusivity Essentials_ Creating Accessible Websites for Nonprofits .pdfInclusivity Essentials_ Creating Accessible Websites for Nonprofits .pdf
Inclusivity Essentials_ Creating Accessible Websites for Nonprofits .pdf
 
THEORIES OF ORGANIZATION-PUBLIC ADMINISTRATION
THEORIES OF ORGANIZATION-PUBLIC ADMINISTRATIONTHEORIES OF ORGANIZATION-PUBLIC ADMINISTRATION
THEORIES OF ORGANIZATION-PUBLIC ADMINISTRATION
 
HỌC TỐT TIẾNG ANH 11 THEO CHƯƠNG TRÌNH GLOBAL SUCCESS ĐÁP ÁN CHI TIẾT - CẢ NĂ...
HỌC TỐT TIẾNG ANH 11 THEO CHƯƠNG TRÌNH GLOBAL SUCCESS ĐÁP ÁN CHI TIẾT - CẢ NĂ...HỌC TỐT TIẾNG ANH 11 THEO CHƯƠNG TRÌNH GLOBAL SUCCESS ĐÁP ÁN CHI TIẾT - CẢ NĂ...
HỌC TỐT TIẾNG ANH 11 THEO CHƯƠNG TRÌNH GLOBAL SUCCESS ĐÁP ÁN CHI TIẾT - CẢ NĂ...
 
OS-operating systems- ch04 (Threads) ...
OS-operating systems- ch04 (Threads) ...OS-operating systems- ch04 (Threads) ...
OS-operating systems- ch04 (Threads) ...
 

COPPA Compliance Plan for Websites

  • 1. The Children’s Online Privacy Protection Rule: A Six-Step Compliance Plan for Your Business When it comes to the collection of personal information from children under 13, the Children’s Online Privacy Protection Act (COPPA) puts parents in control. The Federal Trade Commission, the nation’s consumer protection agency, enforces the COPPA Rule, which spells out what operators of websites and online services must do to protect children’s privacy and safety online. For example, if your company is covered by COPPA, you need to have certain information in your privacy policy and get parental consent before collecting some types of information from kids under 13. Effective July 1, 2013, the FTC updated the COPPA Rule to reflect changes in technology. Violations can result in law enforcement actions, including civil penalties, so compliance counts. Here’s a step-by-step plan for determining if your company is covered by COPPA ­ and what to do to — comply with the Rule. Step 1: Determine if Your Company is a Website or Online Service that Collects Personal Information from Kids Under 13. COPPA doesn’t apply to everyone operating a website or other online service. Put simply, COPPA applies to operators of websites and online services that collect personal information from kids under 13. Here’s a more specific way of determining if COPPA applies to you. You must comply with COPPA if: Your website or online service is directed to children under 13 and you collect personal information from them. OR Your website or online service is directed to children under 13 and you let others collect personal information from them. OR Your website or online service is directed to a general audience, but you have actual knowledge that you collect personal information from children under 13. OR Your company runs an ad network or plug-in, for example, and has actual knowledge that you collect personal information from users of a website or service directed to children under 13. Federal Trade Commission | business.ftc.gov
  • 2. To determine if you’re covered by COPPA, look at how the Rule defines some key terms. “Website or online service” COPPA defines this term broadly. In addition to standard websites, examples of others covered by the Rule include: ●● mobile apps that send or receive information online (like network-connected games, social networking apps, or apps that deliver behaviorally-targeted ads), ●● nternet-enabled gaming platforms, i ●● plug-ins, ●● advertising networks, ●● nternet-enabled location-based services, i ●● voice-over internet protocol services. “Directed to children under 13” The FTC looks at a variety of factors to see if a site or service is directed to children under 13, including the subject matter of the site or service, visual and audio content, the use of animated characters or other child-oriented activities and incentives, the age of models, the presence of child celebrities or celebrities who appeal to kids, ads on the site or service that are directed to children, and other reliable evidence about the age of the actual or intended audience. “Personal information” Each of these is considered personal information under COPPA: ●● full name; ●● home or other physical address, including street name and city or town, ●● online contact information like an email address or other identifier that permits someone to contact a person directly — for example, an IM identifier, VoIP identifier, or video chat identifier; ●● screen name or user name where it functions as online contact information; ●● telephone number; ●● Social Security number; ●● a persistent identifier that can be used to recognize a user over time and across different sites, including a cookie number, an IP address, a processor or device serial number, or a unique device identifier; 2
  • 3. ●● a photo, video, or audio file containing a child’s image or voice; ●● geolocation information sufficient to identify a street name and city or town; or ●● other information about the child or parent that is collected from the child and is combined with one of these identifiers. “Collect” Under COPPA, you’re collecting information if you: ●● request, prompt, or encourage the submission of information, even if it’s optional; ●● let information be made publicly available (for example, with an open chat or posting function) unless you take reasonable measures to delete all or virtually all personal information before postings are public and delete all information from your records; or ●● passively track a child online. If another company collects personal information through your child-directed site or service — through an ad network or plug-in, for example — you’re responsible for complying with COPPA. If you have actual knowledge that you’re collecting personal information directly from users of a child-directed site or service, you’re responsible for complying with COPPA, too. Step 2: Post a Privacy Policy that Complies with COPPA. Assuming you’re covered by COPPA, the next step is to post a privacy policy. It must clearly and comprehensively describe how personal information collected online from kids under 13 is handled. The notice must describe not only your practices, but also the practices of any others collecting personal information on your site or service — for example, plug-ins or ad networks. Include a link to your privacy policy on your homepage and anywhere you collect personal information from children. If you operate a site or service directed to a general audience, but have a separate section for kids, post a link to your privacy policy on the homepage of the kids’ part of your site or service. Make those links clear and prominent. Consider using a larger font or a different color type on a contrasting background. A fineprint link at the bottom of the page or a link that isn’t distinguishable from other links on your site won’t do the trick. To comply with COPPA, your privacy policy should be clear and easy to read. Don’t add any unrelated or confusing information. Here’s what your policy must include: ☑☑ A list of all operators collecting personal information. Name each operator collecting or maintaining children’s personal information through your site or service. For each operator, include a name and contact information (address, telephone number, and email address). If more than one operator is collecting information, it’s okay to give contact information for only one as long as that 3
  • 4. operator will respond to all inquiries from parents about your site or service’s practices. Even so, you still have to list all the operators in your privacy policy. ☑☑ A description of the personal information collected and how it’s used. Your policy must describe: ⊲⊲ the types of personal information collected from children (for example, name, address, email address, hobbies, etc.); ⊲⊲ how the personal information is collected — directly from the child or passively, say, through cookies; ⊲⊲ how the personal information will be used (for example, for marketing to the child, notifying contest winners, or allowing the child to make information publicly available through a chat room); and ⊲⊲ whether you disclose personal information collected from kids to third parties. If you do, your privacy policy must list the types of businesses you disclose information to (for example, ad networks) and how they use the information. ●● A description of parental rights. Your privacy policy must tell parents: ⊲⊲ that you won’t require a child to disclose more information than is reasonably necessary to participate in an activity; ⊲⊲ that they can review their child’s personal information, direct you to delete it, and refuse to allow any further collection or use of the child’s information; ⊲⊲ that they can agree to the collection and use of their child’s information, but still not allow disclosure to third parties unless that’s part of the service (for example, social networking); and ⊲⊲ the procedures to follow to exercise their rights. Step 3: Notify Parents Directly Before Collecting Personal Information from Their Kids. COPPA requires that you give parents “direct notice” before collecting information from their kids. In addition, if you make a material change to the practices parents previously agreed to, you have to send an updated direct notice. The notice should be clear and easy to read. Don’t include any unrelated or confusing information. The notice must tell parents: ●● that you collected their online contact information for the purpose of getting their consent; ●● that you want to collect personal information from their child; ●● that their consent is required for the collection, use, and disclosure of the information; 4
  • 5. ●● the specific personal information you want to collect and how it might be disclosed to others; ●● a link to your online privacy policy; ●● how the parent can give their consent; and ●● that if the parent doesn’t consent within a reasonable time, you’ll delete the parent’s online contact information from your records. In certain circumstances, it’s okay under COPPA to collect a narrow class of personal information without getting parental consent. But you may still have to give parents direct notice of your activities. (See the chart at the end for a list of those limited exceptions.) Step 4: Get Parents’ Verifiable Consent Before Collecting Information from Their Kids. Before collecting, using or disclosing personal information from a child, you must get their parent’s verifiable consent. How do you get that? COPPA leaves it up to you, but it’s important to choose a method reasonably designed in light of available technology to ensure that the person giving the consent is the child’s parent. If you have actual knowledge that you’re collecting personal information from a site or service that is directed to children, you may get consent directly or through the child-directed site or service. Acceptable methods include having the parent: ●● sign a consent form and send it back to you via fax, mail, or electronic scan; ●● use a credit card, debit card, or other online payment system that provides notification of each separate transaction to the account holder; ●● call a toll-free number staffed by trained personnel; ●● connect to trained personnel via a video conference; or ●● provide a copy of a form of government issued ID that you check against a database, as long as you delete the identification from your records when you finish the verification process. If you will use a child’s personal information only for internal purposes and won’t disclose it, you may use a method known as “email plus.” Under that method, send an email to the parent and have them respond with their consent. Then you must send a confirmation to the parent via email, letter, or phone call. If you use email plus, you must let the parent know they can revoke their consent anytime. You must give parents the option of allowing the collection and use of their child’s personal information without agreeing to disclosing that information to third parties. If you make changes to the collection, use, or disclosure practices the parent already agreed to, you must send the parent a new notice and get their consent. 5
  • 6. Check the chart for the narrow exceptions to the general rule that you must get parental consent before collecting personal information from kids. Even if you fall within an exception to the consent requirement, you still may have specific notice requirements. Step 5: Honor Parents’ Ongoing Rights with Respect to Information Collected from Their Kids. Even if parents have agreed that you may collect information from their kids, parents have ongoing rights — and you have continuing obligations. If a parent asks, you must: ●● give them a way to review the personal information collected from their child; ●● give them a way to revoke their consent and refuse the further use or collection of personal information from their child; and ●● delete their child’s personal information. Any time you’re communicating with a parent about personal information already collected from their child, take reasonable steps to ensure you’re dealing with the child’s parent. At the same time, make sure the method you use to give parents access to information collected from their kids isn’t unduly burdensome on the parent. Under COPPA, it may be okay to terminate a service to a child if the parent revokes consent, but only if the information at issue is reasonably necessary for the child’s participation in that activity. Step 6: Implement Reasonable Procedures to Protect the Security of Kids’ Personal Information. COPPA requires you to establish and maintain reasonable procedures to protect the confidentiality, security, and integrity of personal information collected from children. Minimize what you collect in the first place. Take reasonable steps to release personal information only to service providers and third parties capable of maintaining its confidentiality, security, and integrity. Get assurances they’ll live up to those responsibilities. Hold on to personal information only as long as is reasonably necessary for the purpose for which it was collected. Securely dispose of it once you no longer have a legitimate reason for retaining it. Looking for more about the Children’s Online Privacy Protection Rule? Visit the Children’s Privacy page of the FTC’s Business Center. For additional advice, read Complying with COPPA: Frequently Asked Questions. Visit OnGuard Online.gov for general information about protecting kids’ privacy online. Email us at COPPAhotline@ftc.gov if you have other questions. 6
  • 7. The kind of information you may collect child’s and parent’s name and online contact information parent’s online contact information child’s online contact information Reason you may collect information without parental consent To get verifiable parental consent To give voluntary notice to a parent about their child’s participation on a site or service that doesn’t collect personal information To respond directly to a child’s specific one-time request (for example, if the child wants to enter a contest) If you collect information under this exception, what you must tell parents in your direct notice You can’t use the information to contact the child again and you must delete it after you respond to the request. ●● hyperlink to your privacy policy. ●● tell them they may refuse their child’s participation and require that you delete their contact information; and ●● tell them their online contact information won’t be used for any other purpose; You must delete their contact information if you don’t get consent within a reasonable time. You can’t otherwise collect, You must: use, or disclose the information. ●● tell parents you collected their online contact information to let them know about their child’s activities on a site or service that doesn’t collect personal information; Limits on how you may use the information In general, you must get a parent’s verifiable consent before collecting personal information from their child. But there are some limited exceptions to that requirement that allow you to collect information without parental consent. Keep in mind that the kind of information you may collect under each exception is narrow. You can’t collect anything more. Also, if you collect information under one of these exceptions, you can’t use it or disclose it for any other purpose. Limited Exceptions to COPPA’s Verifiable Parental Consent Requirement
  • 8. The kind of information you may collect child’s and parent’s online contact information child’s and parent’s name and online contact information Reason you may collect information without parental consent To respond directly more than once to a child’s specific request (for example, if the child want to receive a newsletter) To protect a child’s safety Limits on how you may use the information ●● hyperlink to your privacy policy ●● tell parents they may refuse to permit the use of the contact information and require you to delete it; and ●● tell parents the information won’t be used or disclosed for any other purpose; ●● tell parents you collected the names and contact information to protect a child’s safety; ●● hyperlink to your privacy policy. You must: ●● tell parents that if they don’t opt out, you may use the child’s online contact information for that purpose; and ●● tell parents the online contact information won’t be used for any other purpose and won’t be disclosed or combined with other information; ●● tell parents you collected their child’s online contact information to provide the multiple communications they asked for; ●● tell parents you collected their online contact information to let them know their child has asked for multiple online communications; You must: If you collect information under this exception, what you must tell parents in your direct notice
  • 9. child’s name and online contact information persistent identifier To protect the security or integrity of your site or service, to take precautions against liability, to respond to judicial process, or — as permitted by law — to provide information to law enforcement To provide support for internal operations of your site or service. ●● fulfilling a child’s request under the one-time contact or multiple contact exceptions. ●● legal or regulatory compliance, or ●● protecting the security or integrity of the user or the site ●● serving contextual ads or frequency capping, ●● authenticating users of the site or personalizing content, ●● performing network communications, ●● maintaining or analyzing the functioning of the site, This includes: The kind of information you may collect Reason you may collect information without parental consent You can’t use personal information other than a persistent identifier for this exception. You can’t use the information to contact a specific person, conduct behavioral advertising, or amass a profile on a person. Limits on how you may use the information If you collect information under this exception, what you must tell parents in your direct notice
  • 10. persistent identifier If you have actual knowledge that a person’s information was collected through a childdirected site, but their previous registration indicates the person is 13 or over ●● you have already conducted an age-screen of the person indicating he or she is 13 or over. ●● the person affirmatively interacts with your site or service to trigger the collection; and ●● you collect only a persistent identifier and no other personal information; This exception applies only if: The kind of information you may collect Reason you may collect information without parental consent You can’t collect other personal information. Limits on how you may use the information If you collect information under this exception, what you must tell parents in your direct notice
  • 11. For More Information The FTC works for the consumer to prevent fraudulent, deceptive, and unfair practices in the marketplace and to provide information to businesses to help them comply with the law.  For free information, visit the BCP Business Center, business.ftc.gov. To file a complaint, visit ftc.gov or call toll-free, 1-877-FTC-HELP (1-877-382-4357); TTY: 1-866-653-4261. Watch a video, How to File a Complaint, to learn more. The FTC enters consumer complaints into the Consumer Sentinel Network, a secure online database and investigative tool used by hundreds of civil and criminal law enforcement agencies in the U.S. and abroad. Your Opportunity to Comment The National Small Business Ombudsman and 10 Regional Fairness Boards collect comments from small businesses about federal compliance and enforcement activities. Each year, the Ombudsman evaluates the conduct of these activities and rates each agency’s responsiveness to small businesses. Small businesses can comment to the Ombudsman without fear of reprisal. To comment, call toll-free 1-888-REGFAIR (1-888-734-3247) or go to www.sba.gov/ombudsman. 11
  • 12. July 2013 Federal Trade Commission | business.ftc.gov