ARTICLE
6 November 2017

FTC Provides Additional Guidance On COPPA Policy For Voice Recordings

M
Mintz

Contributor

Mintz is a general practice, full-service Am Law 100 law firm with more than 600 attorneys. We are headquartered in Boston and have additional US offices in Los Angeles, Miami, New York City, San Diego, San Francisco, and Washington, DC, as well as an office in Toronto, Canada.
The FTC clarified in recent guidance how the COPPA applies to internet-connected device companies and other businesses that collect and use children's voice recordings.
United States Privacy
To print this article, all you need is to be registered or login on Mondaq.com.

The Federal Trade Commission (FTC) clarified in recent guidance how the Children's Online Privacy Protection Act (COPPA) applies to internet-connected device companies and other businesses that collect and use children's voice recordings.

COPPA compliance is necessary for all commercial websites and online or mobile service operators that collect personal information of children under the age of 13. Previously, the FTC has released clarifying updates regarding requirements for companies obtaining verifiable parental consent and the applicability of the law to educational institutions and businesses that provide online services to educational institutions. More recently, it has become important for new business models, such as those involved with Internet of Things devices, to understand how they can remain in compliance with COPPA obligations. In light of COPPA enforcement actions in recent years, we have prepared a helpful guide to ensure businesses know how to avoid violations.

The recent FTC guidance elaborated on instances in which the agency will continue to take enforcement actions against businesses that collect and use children's voice recordings.

The FTC may take enforcement action when:

  1. An organization requests and collects voice information that would otherwise be considered personal information under COPPA, including, for example, a child's name.
  2. The organization fails to provide notice of its collection, use, and deletion policy for the audio files in its privacy policy.
  3. The organization uses the audio file before it is destroyed, such as for behavioral targeting or profiling; voice-recognition identification; or posting, selling, or sharing the file with third parties.

To ensure compliance given these recent clarifications, organizations subject to COPPA should examine their practice of collecting audio files containing a child's voice. Further the FTC reminded organizations that this guidance did not affect existing COPPA compliance requirements, such as obtaining verifiable parental consent when collecting other types of personal information.

The content of this article is intended to provide a general guide to the subject matter. Specialist advice should be sought about your specific circumstances.

See More Popular Content From

Mondaq uses cookies on this website. By using our website you agree to our use of cookies as set out in our Privacy Policy.

Learn More