5. Just what does “support for the internal operations associated with the internet site or service that is online suggest?

“Support for the internal operations regarding the internet site or online service, ” as defined in 16 C.F.R. 312.2, means tasks needed for your website or service to keep up or evaluate its functioning; perform community communications; authenticate users or personalize content; serve contextual marketing or limit the regularity of advertising; protect the protection or integrity associated with user, web site, or online solution; make sure appropriate or regulatory conformity; or meet a demand of a kid as permitted by § 312.5(c)(3) and (4). Persistent identifiers collected for the only real intent behind supplying help when it comes to interior operations for the internet site or service that is online maybe perhaps not need parental permission, as long as no other information that is personal is gathered as well as the persistent identifiers are not utilized or disclosed to make contact with a particular person, including through behavioral marketing; to amass a profile on a particular person; or even for every other purpose.

6. Can both a child-directed site and a third-party plug-in that collect persistent identifiers from users of the child-directed web site count on the Rule’s exclusion for “support for interior operations”?

Yes. A child-directed website and a third-party plug-in collecting persistent identifiers from users of the child-directed site can both trust the Rule’s “support for interior operations” exception where in fact the only private information gathered from such users are persistent identifiers for purposes outlined when you look at the “support uberhorny for internal operations” meaning. The persistent identifier information gathered by the third-party plug-in may in a few instances help just the plug-in’s interior operations; various other instances, it could help both its very own interior operations as well as the interior operations associated with child-directed site.

7. Does the exclusion for “support for internal operations” permit me to perform, or retain another ongoing party to do, web web site analytics?

Yes. For which you, something provider, or a third party gathers persistent identifier information from users of one’s child-directed website to execute analytics encompassed because of the Rule’s “support for interior operations” meaning, therefore the info is maybe not employed for every other purposes perhaps not included in the help for interior operations meaning, you’ll be able to are based upon the Rule’s exemption from parental and permission.

8. I am an advertising system that makes use of identifiers that are persistent personalize ads on websites online. I am aware that I work on a child-directed website, it isn’t personalization considered “support for interior operations”?

No. The word “support for internal operations” will not add advertising that is behavioral. The addition of personalization inside the concept of help for interior operations ended up being meant to allow operators to keep user driven choices, such as for instance game ratings, or character alternatives in digital worlds. “Support for internal operations” does, nevertheless, are the collection or use of persistent identifiers associated with serving contextual marketing regarding the site that is child-directed.

9. I’ve a child-directed application and wish to send push notifications. Do i have to get parental consent?

The information and knowledge you gather through the child’s unit used to send push notifications is online email address – it allows you to contact an individual beyond your confines of the software – and it is consequently personal information beneath the Rule. The child has specifically requested push notifications, however, you may be able to rely on the “multiple-contact” exception to verifiable parental consent, for which you must also collect a parent’s online contact information and provide parents with direct notice of your information practices and an opportunity to opt-out to the extent. See FAQ H.2. Importantly, to be able to fit in this exclusion, your push notifications must certanly be fairly linked to the information of one’s software. You cannot rely on this exception and must provide parents with direct notice and obtain verifiable parental consent prior to sending push notifications to the kid if you wish to combine this online contact information along with other information that is personal collected from the son or daughter.

10. We have a child-directed web site. Can I place a plug-in, such as for example Facebook Like key, to my site without supplying notice and acquiring verifiable consent that is parental?

In determining you will need to evaluate whether any exceptions apply whether you must provide notice and obtain verifiable parental consent. Section 312.5(c)(8) regarding the Rule has an exclusion to its consent and notice demands where:

  1. A third-party operator only gathers a persistent identifier with no other information that is personal;
  2. The consumer affirmatively interacts with that operator that is third-party trigger the collection; and
  3. The third-party operator has formerly conducted an age-screen of this individual, showing the consumer is not a kid.

If the third-party operator satisfies all of the needs, of course your website does not gather information that is personalwith the exception of that included in an exclusion), you don’t have to offer notice or get permission.

This exception does not affect kinds of plug-ins where in fact the 3rd party collects additional information compared to a persistent identifier — as an example, where in fact the alternative party additionally gathers individual responses or any other content that is user-generated. In addition, a child-directed site can’t count on this exclusion to deal with specific visitors as grownups and monitor their activities.

The“support for internal operations” exception discussed in FAQ I. 5 and I. 6 above), you do not have to provide notice and obtain verifiable parental consent if your inclusion of the plug-in satisfies all the criteria of section 312.5(c)(8) outlined above and/or satisfies another exception to the notice and consent requirements in the Rule (see, for example.






电子邮件地址不会被公开。 必填项已用*标注






QR code