How the U.S. seeks to protect children’s privacy online2 min read
WASHINGTON (Reuters) – TikTok is under investigation for allegedly violating a settlement reached with U.S. authorities last year that resolved charges the popular app broke rules governing how children’s personal information is treated online.
The U.S. Federal Trade Commission, which enforces the Children’s Online Privacy Protection Act, or COPPA, and the Justice Department, which often files court actions for the FTC, have opened a preliminary investigation into the matter involving the China-based video-sharing app.
Under rules dating to 1998 legislation, COPPA requires websites to get parental permission to collect data on children under the age of 13. Websites or online services are also expected to ban third parties from collecting the data.
COPPA also applies to mobile apps, gaming platforms and internet-connected toys, among others.
Under pressure from the FTC, TikTok, owned by China’s ByteDance, agreed in early 2019 to pay a $5.7 million civil penalty for violating COPPA by collecting kids’ first and last names, phone numbers, email addresses and pictures.
In a bigger settlement, highlighting that TikTok was not alone, Alphabet’s YouTube agreed in September 2019 to pay $170 million to settle allegations it too violated COPPA by tracking kids online.
Under COPPA rules, the definition of personal information ranges from the least sensitive, like street addresses, to the most, such as Social Security numbers. It also includes photographs and videos. Tracking a child as they travel from website to website online also counts as collecting personal information.
The FTC has approved of several companies’ methods for providing age verification for websites. Some will ask a person’s birth date, and toss them off the site if they are not 13 or older. They also often make it so that the child cannot change the date to gain entry, said John Verdi of the pro-privacy Future of Privacy Forum.
(Reporting by Diane Bartz; Editing by Tom Brown)