On Monday, May 16, 2016, the Supreme Court of the United States issued its highly anticipated opinion in Spokeo, Inc. v. Robins, a case that examined the question of whether a plaintiff who ...25 May 2016
FTC Criticizes Privacy Disclosures for Children's Apps
The FTC evaluated the types of apps offered to children, the disclosures provided to users in the app stores and on the app developers' websites, interactive features such as connectivity with social media, and the ratings and parental controls offered for the apps. FTC Chairman Jon Leibowitz stated that "right now, it is almost impossible to figure out which apps collect what data and what they do with it," and said the children's app ecosystem must "wake up" and provide "easily accessible, basic information, so that parents can make informed decisions about the apps their kids use."
According to the report, while FTC staff "encountered a diverse pool of apps for kids created by hundreds of different developers, staff found little, if any information, information in the app marketplaces about the data collection and sharing practices of these apps." In addition, of the 400 app promotion pages examined by the FTC, only two (0.5%) linked to a developer landing page that disclosed information about data collection and sharing on the landing page itself.
The report calls upon all members of the "kids app ecosystem" – the stores, developers and third parties providing services – to play an active role in providing key information to parents. The report recommends that:
- App developers should provide data practices information in simple and short disclosures. They also should disclose whether the app connects with social media and whether it contains ads. Third parties that collect data also should disclose their privacy practices.
- App stores, "as gatekeepers of the app marketplaces," also should take responsibility for ensuring that parents have basic information. The stores should be able to provide a way for developers to provide information about their data collection and sharing practices (such as a designated space for developers to disclose this information and standardized icons to signal certain features, such as social network connectivity).
The report warns of future enforcement action, noting that the FTC will conduct an additional review over the next six months to identify potential violations of the Children's Online Privacy Protection Act ("COPPA") and determine whether enforcement is appropriate. According to the FTC, the report, along with agency's settlement last year with a mobile app developer for alleged COPPA violations and its recent proposal to amend the COPPA Rule, is a "warning call" to industry that it must do more to provide parents with information about the mobile apps their children use.
The FTC report can be expected to increase scrutiny of mobile app privacy issues, which were in the spotlight in recent days following news that the popular social network app Path (and other iOS apps) would upload users' entire contact lists to the developer's servers without permission.
The French Data Protection Authority (CNIL) has announced its inspections program topics for 2016, with health data, flight passengers’ data, and data used for marketing and Internet...20 May 2016