My kid made a presentation for his class using Google Docs, then filled in his day of birth on his new phone when setting it up, then got locked out of his account. He was 12 at the time.
Also, his class had a WhatsApp group chat in which school info was shared. This was kind of weird because it meant that all 12 year olds in the group must have cheated their dates of birth, because otherwise they could not have had a WhatsApp account
Er, no. There is an actual privacy law with teeth if you're under 13 ("COPPA"). Companies don't want to be subject to any such regulation, so they choose to prohibit anyone under 13 from using their services. It's widely assumed that people under 13 simply work around these prohibitions by lying about their age, but as long as the companies don't have specific knowledge of this then legally everything is fine. Making the dropdown preclude ages under 13 could be interpreted as companies encouraging this behavior, and is thus a non-starter compliance wise.
Thank you! Thank god there's someone who knows why features like this are being implemented. You can't just say you're compliant by adding a button that says "I'm above the age of 13." Dropbox has to include ages younger than 13 in their dropdown selection.
Funny, the law about alcohol and tobacco related websites must not have the same “teeth”, to use grandparent’s wording. In those websites, a simple modal that says “Yes I am over 18” (tobacco) / “Yes, I am over 21” (alcohol) or “No I’m not” is what everyone uses.
Not sure about those laws but yes, COPPA is more strict. Per the FTC:
> In designing your age screen, you should ask age information in a neutral manner, making sure the data entry point allows users to enter their age accurately and does not default to an age 13 or over. An example of a neutral age screen would be a system that allows a user freely to enter the month and year of birth. Avoid encouraging children to falsify age information by, for example, stating that certain features will not be available to users under age 13. In addition, consistent with long standing Commission advice, FTC staff recommends using technical means, such as a cookie, to prevent children from back-buttoning to enter a different age.
>If you choose to block children under 13 on your general audience site or service, you should take care to design your age screen in a manner that does not encourage children to falsify their ages to gain access to your site or service. Ask age information in a neutral manner at the point at which you invite visitors to provide personal information or to create a user ID.
>In designing a neutral age-screening mechanism, you should consider:
>Making sure the data entry point allows users to enter their age accurately. An example of a neutral age-screen would be a system that allows a user freely to enter month and year of birth. A site that includes a drop-down menu that only permits users to enter birth years making them 13 or older would not be considered a neutral age-screening mechanism since children cannot enter their correct ages on that site.
>Avoiding encouraging children to falsify their age information, for example, by stating that visitors under 13 cannot participate or should ask their parents before participating. In addition, simply including a check box stating, “I am over 12 years old” would not be considered a neutral age-screening mechanism.
Is "allowed" the right word, given "This document [...] is not binding", "guidance" and "should consider"?
On an unrelated note:
> consistent with long standing Commission advice, FTC staff recommends using technical means, such as a cookie, to prevent children from back-buttoning to enter a different age.
So if 12-year-olds learn about a website they don't want their parents to ever visit, they just have to preemptively try to visit it from the same computer and tell the truth?
I hear platforms ban < 13yo due to cost of compliance. Is this true? It was simple on Neopets when COPPA was new - just faxed a signed parental consent form so I could access the forums.
You're definitely allowed to use the internet but there are very strict rules on data collection. I think the intent is to keep people under 13 from using the internet socially or being exposed to the data collection/PR/ad machines.
Also, his class had a WhatsApp group chat in which school info was shared. This was kind of weird because it meant that all 12 year olds in the group must have cheated their dates of birth, because otherwise they could not have had a WhatsApp account