There is currently no federal online privacy law, which makes it essentially impossible for government agencies like the Federal Trade Commission to go after Internet companies unless they violate their own published privacy policies.
One area where that's not true is when it comes to kids. When dealing with children under 13 years old, online service companies can't collect personal information (like e-mail addresses) without explicit permission from a parent or guardian. The FTC can prosecute companies that gather kids' data without parental consent. The commission has used that power, too, against both small developers
and big companies like Sony
Technology, and the terms used to regulate it, change over time. The Children's Online Privacy Protection Act (or COPPA) was passed in 1998, and since then it has become unclear exactly what is or isn't allowed.A new set of rules published by the FTC today doesn't change existing law, but it should lend more clarity to enforcing privacy protection for kids in the changing tech world, especially when dealing with location technologies and mobile apps.
Read 7 remaining paragraphs