South Korea Personal Information Protection Act (KR PIPA)
South Korea's comprehensive data protection law with strengthened provisions for children's personal information, requiring parental consent and restricting data processing for minors.
Key Provisions
What KR PIPA requires
Parental or guardian consent required for processing personal data of children under 14
Data controllers must not collect more information than necessary from children
Children and guardians have the right to request data correction and deletion
Data controllers must implement safety measures for children's personal data
Personal Information Protection Commission (PIPC) enforcement authority
Administrative fines up to 3% of relevant revenue for violations
Rule Categories Covered
Phosra enforcement categories for KR PIPA
Data Sharing Control
privacyControls what personal data can be shared with third parties and platform partners.
Data Deletion Request
privacyTriggers data deletion workflows on connected platforms and enables full profile removal via API.
Targeted Ad Block
advertisingBlocks behavioral advertising, ad profiling, and retargeting for minor users across connected platforms.
Parental Consent Gate
otherEnforces parental consent gate rules across connected platforms.
Platforms Affected
Platforms covered by KR PIPA
MCP Enforcement
Enforce KR PIPA with a single API call
// Enforce KR PIPA compliance
tool: trigger_child_enforcement
input: {
child_id: "ch_emma_01",
law: "KR_PIPA",
rules: [
"privacy_data_sharing",
"data_deletion_request",
"targeted_ad_block",
"parental_consent_gate"]
}
→ YouTube enforcement applied ✓
→ TikTok enforcement applied ✓
→ Instagram enforcement applied ✓
→ Roblox enforcement applied ✓
Start building KR PIPA-compliant features today
Phosra handles the complexity of multi-platform compliance so you can focus on building great products for families.