6. Does your privacy
policy include the names of all the website operators who
collect or maintain personal information from children
through your site?
If YES, go to the next question.
If NO, revise your privacy policy to include the name of
each operator.
[See
Intro. to COPPA Section: Content]
7. Does your privacy
policy provide mailing addresses for all the website
operators who collect or maintain personal information
through your site?
If YES, go to the next question.
If NO, does the privacy policy provide contact
information (mailing address, telephone number and email
address) for one operator who, in turn, will respond to
inquiries from parents on behalf of the other operators?
If YES, go to question 10.
If NO, revise your privacy policy to include full
contact information for each operator who collects or
maintains personal information from children through
your website, or for one operator who will respond to
all inquiries.
[See
Intro. to COPPA Section: Content]
8. Does your privacy
policy provide the telephone numbers for all website
operators who collect or maintain personal information
through your site?
If YES, go to the next question.
If NO, revise your privacy policy to include telephone
numbers for all operators.
[See
Intro. to COPPA Section: Content]
9. Does your privacy
policy provide the email addresses of all website
operators who collect or maintain personal information
through your site?
If YES, go to the next question.
If NO, revise your privacy policy so it includes email
addresses.
[See
Intro. to COPPA Section: Content]
10. Does your
privacy policy state each type of personal information
(full name, email address, mailing address, phone number,
etc.) that you collect from children?
If YES, go to the next question.
If NO, revise your privacy policy so it tells each type
of personal information the site collects.
[See
Intro. to COPPA Section: Content]
11. Is your
statement of the types of personal information collected
descriptive? Is it specific enough to let parents know the
kinds of personal information you will be collecting from
their children?
If YES, go to the next question.
If NO, revise the statement to be more descriptive.
[See
Intro. to COPPA Section: Content]
12. Does your
privacy policy tell parents whether personal information
is collected actively - that is, from the child - or
passively - for example, through the use of cookies?
If YES, go to the next question.
If NO, revise the privacy policy to tell parents how
your website collects personal information from
children.
[See
Intro. to COPPA Section: Content]
13. Does your
privacy policy tell parents how your website will use the
personal information that it collects?
If YES, go to the next question.
If NO, revise the privacy policy so it gives parents
that information.
[See
Intro. to COPPA Section: Content]
14. Does your
website share or disclose children's personal information
with third parties?
If YES, go to the next question.
If NO, go to question 19.
15. Does your
privacy policy state what kinds of businesses the third
parties are engaged in?
If YES, go to the next question.
If NO, revise the privacy policy.
[See
Intro. to COPPA Section: Content]
16. Does your
privacy policy tell parents the general purposes the third
parties will use their children's personal information
for?
If YES, go to the next question.
If NO, revise the privacy policy.
[See
Intro. to COPPA Section: Content]
17. Does your
privacy policy state whether the third parties that your
site shares personal information with have agreed to
maintain the confidentiality, security and integrity of
the information?
If YES, go to the next question.
If NO, revise the privacy policy to address whether the
third parties have agreed.
[See
Intro. to COPPA Section: Content]
18. Does your
privacy policy tell parents they can agree to the
collection and use of their child's personal information
by your site without agreeing to you disclosing the
information to third parties?
If YES, go to question 20.
If NO, revise the privacy policy to tell parents they
have the right to consent to your site's collection and
use of their child's personal information, while saying
no to your disclosure of the information to third
parties.
[See
Intro. to COPPA Section: Content] Then go to question 20.
19. Does your
privacy policy clearly state that your website does not
disclose personal information to third parties?
If YES, go to the next question.
If NO, revise the language in your privacy policy to
explain that the website doesn't share children's
personal information with third parties.
[See
Intro. to COPPA Section: Content]
20. Does your
privacy policy state that your site cannot condition a
child's participation in an activity on the child's
disclosure of more personal information than is reasonably
necessary to participate in the activity?
If YES, go to the next question.
If NO, add appropriate language to your privacy policy.
[See
Intro. to COPPA Section: The Ban on Conditioning
Participation on Info. Collection]
21. Does your
privacy policy let parents know that they can review the
personal information that your website has collected from
their child?
If YES, go to the next question.
If NO, revise the privacy policy to tell parents they
have the right to review the information the site has
collected from their child.
[See
Intro. to COPPA Section: Parental Rights]
22. Does your
privacy policy tell parents how they can review their
child's personal information?
If YES, go to the next question.
If NO, revise the privacy policy to let parents know how
to review their child's personal information.
[See
Intro. to COPPA Section: Parental Rights]
23. A. Does your
privacy policy tell parents they can have their child's
personal information deleted from your site?
If YES, go to the next question.
If NO, revise the language in the privacy policy.
[See
Intro. to COPPA Section: Parental Rights]
B. Does your privacy
policy tell parents how they can have their children's
personal information deleted from your site?
If YES, go to the next question.
If NO, revise the privacy policy.
[See
Intro. to COPPA Section: Parental Rights]
24. A. Does your
privacy policy tell parents that they can stop your
website from further collecting or using the additional
personal information from your child?
If YES, go to the next question.
If NO, revise the privacy policy as appropriate.
[See
Intro. to COPPA Section: Parental Rights]
B. Does your privacy
policy tell parents how they can stop the further
collection and use of their child's personal information?
If YES, go to the next question.
If NO, revise the privacy policy.
[See
Intro. to COPPA Section: Parental Rights]
25. Is your privacy
policy clear and understandable? Easy to read? Consider
testing it with potential readers.
If YES, go to the next question.
If NO, rewrite and simplify the privacy policy so the
parents of your visitors would be likely to find it easy
to read and understand.
[See
Intro. to COPPA Section: Clear & Prominent Links]
26. Does your
privacy policy give a complete description of your
information practices? Does it explain all the personal
information you collect? Does it spell out how you will
use the information?
If YES, go to the next question.
If NO, review the privacy policy and add information to
make the description complete.
[See
Intro. to COPPA Section: Content]
27. Does your
privacy policy include any contradictory, confusing or
ambiguous language?
If YES, edit the policy.
[See
Intro. to COPPA Section: Content]
If NO, go to the next question.
28. Does your
privacy policy contain any material or content that
doesn't relate to your information practices?
If YES, edit the policy so it focuses on your
information practices.
[See
Intro. to COPPA Section: Content]
If NO, go to the next question.
29. Is your privacy
policy well-organized and easy to follow?
YES.
NO. It's time to reorganize the information in the
policy to make it easier to follow. Consider using a
question and answer format.
30. Do your
practices reflect the promises you make in your privacy
policy?
YES. Keep up the good work.
NO. Go back to square one.
Get
Adobe Acrobat Reader
