Professional Documents
Culture Documents
Brownstein I Hyatt
Farber I Sch reck
Outline of FTC Online Fair Information Practices and COPPA Rule
Bruce L. Plotkin
June 2, 2010
B. FTC’s Fair Information Practice Principles. In its June 1998 report, “Privacy
Online: A Report to Congress” (“Privacy Report”), the FTC enumerated five fair information
practice principles which the Commission said had become commonly accepted and which the
FTC determined were appropriate to guide the online collection of personal information. These
principles have formed the basis for the FTC’s positions in subsequent enforcement actions. The
principles are Notice/Awareness, Choice/Consent, Access/Participation, Integrity/Security and
Enforcement/Redress.
The FTC has prohibited the sale of personal information in contravention of a privacy policy
Brownstein I Hyatt
Farber I Sch reck
restricting personal information transfers to third parties even in the context of a bankruptcy. See
United States v. Toysmart.com, Civil Action No. 00-11341-RGS, (Dist. Ct. Mass. 2000). A
company may not change the way it uses collected personal information in a manner that is
materially different from the disclosure it provided when it first collected the information
without obtaining the express consent of affected consumers. See FTC Staff Statement
Proposing Governing Principles for Behavioral Advertising and In the Matter of Gateway
Learning Corp., FTC Dkt. No. C-4120.
2
Brownstein I Hyatt
Farber ISch reck
5. Enforcement/Redress. There must be a mechanism for enforcing the
privacy notice either through industry self-regulation, legislation or regulatory enforcement
schemes. FTC Report § III.A.4.
C. COPPA Rule. The COPPA Rule is designed to empower parental control over
the personal information that is collected online from their children.
4. Safe Harbor. The COPPA Rule provides a safe harbor for compliance
with FTC-approved guidelines such as the Children’s Advertising Review Unit of the Council of
the Better Business Bureau and TRUSTe. 16 CFR Part 312.10.