Skip to content

FTC Signals Major Shift: Children’s Privacy a Top Enforcement Priority

May 1, 2025

The Federal Trade Commission (FTC) has made clear that protecting children’s privacy is now a top enforcement priority under its new leadership. Recent statements from FTC Commissioner Melissa Holyoak reinforce that businesses handling children’s data should prepare for heightened regulatory scrutiny.

Speaking in Washington, D.C., during the International Association of Privacy Professionals (IAPP) Global Privacy Summit, Commissioner Holyoak emphasized that children’s privacy remains a significant enforcement priority for the FTC. Central to this renewed focus is the enforcement of the Children’s Online Privacy Protection Act (COPPA), with the agency already advancing significant updates to the rule.

The FTC is not the only regulatory body focusing on children’s privacy. Also speaking at the IAPP Global Privacy Summit, many representatives of state regulatory bodies focused on enforcing state data protection laws, similarly echoed the desire to focus on higher-risk activities. The focus includes paying closer attention to governing the processing of teens’ personal information online as well as practices related to the sale of data from minors. For companies that have historically leveraged the age threshold under COPPA for bifurcating data collection practices between children and others, this may pose a challenge as data related to teens is not within the scope of that original COPPA threshold but would be the focus of regulatory enforcement at the state level. Given the heightened focus regulators across the board are placing on this scenario, companies dealing with data related to teens should consider mapping out specific use cases where this may be an initial step, analyzing the potential risk of each individually.

Businesses that collect, use, or share children’s data should act now to evaluate and strengthen their privacy practices to mitigate regulatory risk. Varnum’s Data Privacy and Cybersecurity Practice Team stands ready to help your organization navigate these developments, strengthen your compliance strategies, and stay ahead of regulatory risk.

Key Contacts

Post Author

Partner
872/263-0836
[email protected]

Associate
734/372-2937
[email protected]

Related Insights

Related Practices

Data Privacy and Cybersecurity

Featured Authors

Featured Author

Bhashit (Sheek) Shah

Partner

Sheek advises clients on data privacy best practices and regulatory compliance. With experience in global privacy frameworks and laws including GDPR, CCPA and COPPA, he helps businesses build and implement compliance programs and manage data breaches.

Featured Author

Marisa K. McConnell

Associate

Marisa focuses on litigation and data privacy, with a focus on children’s privacy issues, regulatory and compliance challenges in the mobility sector, commercial business disputes and general litigation matters.

Sign up to be the first to access our leading legal insights.

The link you have selected will redirect you to a third-party website located on another server. We are offering the link for your convenience. Varnum has no responsibility for any external websites and makes no express or implied warranties about any external websites.

Accept
Cancel

Please be aware that contacting us via e-mail does not create an attorney-client relationship between you and the firm. Do not send confidential information to the firm until you have spoken with one of our attorneys and receive authorization to send such materials.

Accept Terms
Cancel