Establishes a duty of care for platforms, requiring them to disable addictive features and algorithmic feeds for minors by default.

Extends COPPA to teens under 17, bans all targeted advertising to minors, and creates an Eraser Button for data deletion. Passed the Senate 91-3 as part of KOSMA in July 2024 (118th Congress) but the House never voted and the bill expired Jan 3, 2025. Reintroduced in the 119th Congress as S.836 (Senate, March 2025, Senators Markey & Cassidy) and H.R.6291 (House, November 2025). Not yet signed into law.

Combined KOSA + COPPA 2.0 package extending protections to all minors under 17, with mandatory age verification. Passed the Senate 91-3 in July 2024 (118th Congress) but the House never voted and the bill expired on Jan 3, 2025. Must be reintroduced and repassed in the 119th Congress. Component bills KOSA and COPPA 2.0 have been individually reintroduced.

The FTC's COPPA enforcement rule requiring verifiable parental consent for data collection on children under 13. The FTC finalized major amendments in January 2025 (5-0 vote), published in the Federal Register on April 22, 2025, with legal effect June 23, 2025 and a full compliance deadline of April 22, 2026. The 2025 amendments add mandatory information security programs, data retention/deletion policies, enhanced direct notice requirements, expanded personal information definitions (biometrics, government IDs), new consent methods, and separate consent for third-party data sharing.

Requires schools and libraries receiving E-Rate funding to implement internet safety policies and content filters to protect children from harmful online content.

Proposes to hold platforms accountable for CSAM by modifying Section 230 protections and establishing best practices for preventing child exploitation.

Amends Section 230 to hold platforms liable for facilitating sex trafficking. Requires platforms to actively monitor for and remove trafficking content involving minors.

Bans addictive feeds and notifications during school hours for minors. Platforms must default to chronological feeds.

Requires platforms to suppress non-essential notifications during nighttime and provide configurable screen time limits.

Prohibits addictive algorithmic feeds for minors without parental consent and mandates notification-free quiet hours.

Connecticut law protecting minors from addictive platform features and restricting unsolicited contact. Requires platforms to default to safest settings for accounts identified as minors.

Florida law requiring age verification for social media platforms and prohibiting minors under 14 from holding accounts. Minors 14-15 need parental consent.

Minnesota bill requiring platforms to implement usage awareness tools for minor users, including periodic screen time reminders and usage dashboards.

Tennessee law requiring social media platforms to implement screen time awareness features for minor users, including configurable usage timer notifications.

New York Child Data Protection Act focusing on commercial data collection from minors, with strong data minimization and deletion rights for child accounts.

Maryland Age-Appropriate Design Code requiring platforms to default to maximum privacy settings for minors, including geolocation disabled by default and data protection impact assessments.

Texas law requiring parental consent for minors to access social media, with age verification requirements and monitoring provisions for platforms serving minors.

Utah law imposing curfews on minor social media use, requiring age verification, and banning addictive design features targeting minors.

Louisiana law requiring age verification for social media platforms and restricting minor access without parental consent.

Ohio law requiring platforms to obtain parental consent for users under 16, with restrictions on direct messaging to minor accounts.

Vermont age-appropriate design code requiring platforms to disable addictive design features, ban targeted ads, and default geolocation to off for minors.

Massachusetts bill targeting dark patterns and addictive design in platforms used by minors, with bans on targeted advertising to children.

Arkansas law requiring age verification for social media platforms and prohibiting minors under 18 from creating accounts without parental consent.

California law restricting notification delivery to minors during school hours and banning addictive design features that target children.

Requires all public schools in Pennsylvania to implement bell-to-bell phone-free policies. Students must store devices in lockers or locking pouches during school hours, with exceptions for medical needs, IEP/504 plans, and ELL accommodations.

Companion bill to SB 1014 amending the Public School Code to establish statewide phone-free school policies. Sponsored by Rep. Mandy Steele with 17 co-sponsors and PSEA (Pennsylvania State Education Association) support.

Kids Code / KOSA-style legislation requiring platforms to conduct data protection impact assessments before launching services for minors. Prohibits collecting or selling child geolocation data, profiling children by default, and using design patterns that lead children to provide personal information.

Regulates AI interactions with minors by requiring age verification for AI services, prohibiting minors from using AI companion chatbots, and criminalizing AI systems that solicit sexually explicit content from or encourage self-harm in minors. Penalties up to $100,000 per violation.

Idaho law requiring age verification for platforms hosting content harmful to minors, mandating commercially reasonable age verification methods.

Kentucky law requiring age verification for platforms hosting content harmful to minors, with civil liability for non-compliance.

Nebraska law requiring age verification for platforms hosting content harmful to minors, establishing obligations for commercial content publishers.

South Carolina law requiring age verification for platforms hosting content harmful to minors, with both AG enforcement and private right of action.

Georgia law requiring age verification for social media platforms to prevent minors from accessing age-restricted content.

Mississippi law restricting social media access for minors, requiring age verification and parental consent for account creation.

Iowa law requiring age verification for online platforms to protect minors, with parental consent requirements for children's accounts.

Comprehensive EU regulation banning targeted ads to minors and requiring risk assessments for algorithmic systems.

GDPR Article 8 establishes conditions for child consent to data processing, requiring parental consent for children under 16 (or 13, depending on member state).

The EU AI Act includes specific provisions protecting minors from AI systems that exploit vulnerabilities, manipulate behavior, or use subliminal techniques harmful to children.

French law requiring age verification for accessing certain online content and establishing image rights protections for minors, including provisions against sharenting.

German interstate treaty governing youth protection in media, requiring content classification, age verification, and filtering for online services accessible by minors.

Irish law establishing Coimisiún na Meán as online safety regulator, with powers to issue binding online safety codes and designate platforms for compliance obligations protecting children.

Spain's comprehensive law protecting minors in digital environments, requiring age verification, parental consent, and prohibiting addictive design patterns targeting children.

Italy's age verification decree issued by communications authority Agcom, requiring robust age checks and content filtering for minors.

Proposed EU regulation requiring platforms to detect and report child sexual abuse material, including scanning of private communications.

Duty of care requiring platforms to protect children from harmful content, restrict adult-child DMs, and implement age verification.

UK law imposing a duty of care on platforms to protect children from harmful content online. Requires age verification and proactive measures to prevent children encountering harmful material.

Establishes the eSafety Commissioner with powers to enforce age verification and removal of content harmful to children.

Complete ban on behavioral monitoring and targeted advertising directed at children. Verifiable parental consent required.

Australian law establishing a minimum age of 16 for social media access, with significant penalties for platforms that fail to enforce age verification.

Indonesian government regulation requiring platforms to implement age verification, content rating, and privacy protections for children accessing digital services.

Singapore's Personal Data Protection Commission guidelines on collecting, using, and disclosing personal data of children, emphasizing consent and data protection.

Japanese law requiring ISPs and device manufacturers to provide content filtering for minors, promoting a safe internet environment for young people.

South Korean law restricting minors' access to online games during nighttime hours and requiring content rating for all games and media accessible to juveniles.

South Korea's comprehensive data protection law with strengthened provisions for children's personal information, requiring parental consent and restricting data processing for minors.

New Zealand government proposal to establish a minimum age for social media access, modeled on Australia's Social Media Minimum Age Act.

Thailand's data protection law requiring parental consent for processing data of minors under 20, with strict privacy safeguards.

Philippines National Privacy Commission guidelines on transparency requirements for processing children's personal data, emphasizing best interests and data protection.

Canadian bill establishing a duty of care for online platforms to protect children from harmful content, with specific provisions for CSAM reporting and addictive design restrictions.

Brazil's data protection law includes specific child provisions banning targeted advertising to minors, supplemented by the Digital ECA bill strengthening children's digital rights.

Mexican federal data protection law with provisions for minors' personal data, requiring parental consent and data protection measures for children's information.

Chilean personal data protection bill with specific provisions for children's data, establishing a data protection authority and rights including data deletion for minors.

Colombia's updated data protection law strengthening privacy protections for minors with enhanced parental consent requirements.

UAE law establishing comprehensive child digital safety requirements, including age verification, targeted ad bans, privacy protections, and restrictions on addictive design for platforms serving children under 13.

Saudi Arabia's comprehensive data protection law with specific provisions for children's data, requiring explicit parental consent and prohibiting processing that harms minors' interests.

Nigeria's comprehensive data protection framework establishing rules for processing personal data of minors with parental consent requirements.

South Africa's data protection law with specific child provisions requiring parental consent and restricting commercial use of children's data.

Kenya's data protection framework with child-specific provisions requiring parental consent for processing minors' personal data.