United States of America: Introduced Data protection requirements in the California Age-Appropriate Design Code Act (AB 2273)

Compare with different regulatory event:

Description

Introduced Data protection requirements in the California Age-Appropriate Design Code Act (AB 2273)

The California Age-Appropriate Design Code Act (AB 2273) is introduced in the California Assembly. The bill requires every business providing products that will be likely accessed by children to comply with specified standards of design and transparency as regards privacy and terms of service information. Moreover, the bill prohibits businesses providing products likely to be accessed by children from collecting or using personal data collected from children users. Finally, the California Privacy Protection Agency shall establish the "California Children’s Data Protection Taskforce" to specify the best practices to apply the bill's provisions and identify the list of products that are likely to be accessed by children.

Original source

Scope

Policy Area
Data governance
Policy Instrument
Data protection regulation
Regulated Economic Activity
cross-cutting
Implementation Level
subnational
Government Branch
legislature
Government Body
parliament

Complete timeline of this policy change

Hide details
2022-02-16
under deliberation

The California Age-Appropriate Design Code Act (AB 2273) is introduced in the California Assembly.…

2022-04-26
under deliberation

On 26 April 2022, the California Age-Appropriate Design Code Act (AB 2273) including data protecti…

2022-05-26
under deliberation

On 26 May 2022, the California Age-Appropriate Design Code Act (AB 2273) has been passed by the Ca…

2022-08-29
adopted

On 29 August 2022, the Age-Appropriate Design Code Act (AB 2273) was adopted by the Senate of Cali…

2022-09-15
in grace period

On 15 September 2022, the Age-Appropriate Design Code Act (AB 2273) is signed by the Governor of C…

2024-07-01
in force

On 1 July 2024, the Age-Appropriate Design Code Act (AB 2273) enters into force. The Bill requires …

Key regulatory dimensions

Regulated subjects

The businesses, government agencies or individuals affected by this policy or regulatory change.
producer / supplier
1
Type Private organisation
Economic activity cross-cutting
Category All

Policy change by business practice

The detailed activities within the scope of this policy or regulatory change.
personal data: information pertaining to minors: data processing
Regulatory tool
Definition of oversight agency jurisdiction
Risk or other impact assessment requirement
Purpose/processing limitation
Sanctions
Regulated subjects
1
service (digitally delivered): hosting (any form)
Regulatory tool
Definition of oversight agency jurisdiction
Risk or other impact assessment requirement
Sanctions
Regulated subjects
1
personal data: information pertaining to minors: transmission
personal data: information pertaining to minors: sale
Regulatory tool
Purpose/processing limitation
Sanctions
Regulated subjects
1

Policy change by business practice

The detailed activities within the scope of this policy or regulatory change.

personal data: information pertaining to minors: data processing

service (digitally delivered): hosting (any form)

personal data: information pertaining to minors: transmission

personal data: information pertaining to minors: sale