The Children’s Online Privacy Protection Act (COPPA) is a United States federal law, designed to protect children under age 13 while accounting for the dynamic nature of the Internet. The rule applies to operators of online services - including mobile apps - directed at children under 13 that collect, use, or disclose personal information from children, and operators of general audience websites or online services with actual knowledge that they are collecting, using, or disclosing personal information from children under 13.
Please note that COPPA compliance is only required for app users in the United States of America and is not relevant for users from any other countries in the World.
More information is available here: https://www.ftc.gov/tips-advice/business-center/guidance/complying-coppa-frequently-asked-questions
How To Declare That My App is COPPA Complaint
1. App level COPPA compliance declaration
When creating or editing an app on the display.io Publisher Portal you can declare if your app is Children Directed by choosing Yes/No for the following parameter:
Children Directed (COPPA and GDPR compliance)
- My application is specifically directed to children under 13 years from USA and/or under 16 years from Europe.
- I have actual knowledge that my application has users from USA known to be under 13 years and/or from Europe known to be under 16 years.
2. Ad request level COPPA compliance declaration
In order to be COPPA compliant notify that ad request is from a user under 13 years from USA:
- For SDK iOS:
[DIOController sharedInstance].coppaCompliant = DIOComplianceYes;Available values: DIOComplianceUnknown (default), DIOComplianceYes, DIOComplianceNo
- For Android:
Controller.setCoppaCompliant(CompliantState);Available values: UNKNOWN (default), YES, NO
How COPPA Compliance Flag Affects Your Ad Requests
If on ad request level you declare that a current user is under 13 years old and is located in USA (coppaCompliant = YES) or on ad request level a COPPA flag is not defined (coppaCompliant= Unknown), but still the ad request is initiated form USA and COPPA compliance (Children Directed) is declared for your app on the display.io Publisher Portal, then:
1. The following personal data will be removed from the ad request:
- device ID;
- geolocation: lat/long;
- year of birth;
- user (personal) keywords.
- Please note that this may significantly impact the monetization potential of your ad requests.
2. The ad request will be sent to COPPA compliant demand integrations only.
3. A list of banned ad categories will be expanded within bid request to demand partners.
Determining if Your App is Directed at Children
An app may be considered child-directed based on a variety of factors, including the following examples:
- The subject matter of the app (e.g., game)
- Visual content (e.g., candies)
- Use of animated characters
- Presence of child-oriented activities and incentives
- Type of music or other audio content (e.g., songs sung by children, not just songs that kids like)
- Age of models (e.g., babies, toddlers, tweens)
- Presence of child celebrities or celebrities who appeal to children
- The complexity of language used on the app
- Whether advertising in the app is directed at children
If you are unsure about whether your app is child-directed, please seek legal advice.