Amidst the chaos of GDPR, the Federal Trade Commission (FTC) took a moment today to address data deletion requirements. The FTC reminded us that when it comes to the Children's Online Privacy Protection Act (COPPA) that it's not just about obtaining verifiable parental consent before collecting children's information. The FTC reminds companies that there are certain instances where COPPA requires companies to delete children's information, even when parents haven't requested that the company do so. The FTC gave the example of a subscription based service where the parent does not renew. In this case, the child's information must be deleted and the company must use reasonable security measures to ensure it has been disposed of. To read more about what the FTC had to say, visit the blog here.
Amidst the chaos of GDPR, the Federal Trade Commission (FTC) took a moment today to address data deletion requirements. The FTC reminded us that when it comes to the Children's Online Privacy Protection Act (COPPA) that it's not just about obtaining verifiable parental consent before collecting children's information. The FTC reminds companies that there are certain instances where COPPA requires companies to delete children's information, even when parents haven't requested that the company do so. The FTC gave the example of a subscription based service where the parent does not renew. In this case, the child's information must be deleted and the company must use reasonable security measures to ensure it has been disposed of. To read more about what the FTC had to say, visit the blog here.