Children’s Online Privacy Protection Act (COPPA) Statement
Overview
The Children’s Online Privacy Protection Act (COPPA) of 1998 is a United States federal law that regulates how websites and online services collect personal information, such as names, addresses, contact details, or photographs, from children under 13. COPPA applies to companies doing business in the United States and to online services directed at children within or outside the U.S.The Children’s Online Privacy Protection Act (COPPA) of 1998 is a United States federal law that regulates how websites and online services collect personal information, such as names, addresses, contact details, or photographs, from children under 13. COPPA applies to companies doing business in the United States and to online services directed at children within or outside the U.S.
Under COPPA, online services that collect data from children must obtain verifiable parental consent before gathering or using any personal information. Many websites and applications exclude users under 13 from their services to avoid violating these requirements.
PubNub and COPPA Compliance
PubNub operates as a Software-as-a-Service (SaaS) provider. Our platform is not directed at children under 13, and we do not knowingly collect personal data from minors. Therefore, COPPA does not apply directly to PubNub.
As a real-time data streaming and messaging platform, PubNub does not filter, inspect, or control customer message content. However, our license agreements and Acceptable Use Policy require that all business customers comply with applicable laws, including COPPA, when handling data that may involve minors. Customers are responsible for obtaining necessary parental consents and for implementing compliant data-handling practices.
Data Protection and Security
PubNub maintains a high standard of security and privacy controls, validated by ISO 27001 certification and SOC 2 Type II compliance. Upon signing a Non-Disclosure Agreement (NDA), customers may review our audit reports and security documentation.
We strongly encourage customers to encrypt their data before transmitting it through our platform. PubNub provides Software Development Kits (SDKs) that support encryption, or customers may use their own encryption methods.
For customers processing data from the European Union or other regulated regions, PubNub offers a Data Processing Addendum (DPA) to ensure compliance with applicable data protection laws. As a data processor, PubNub does not control what data customers transmit through the platform and requires that they ensure proper consent and compliance for any data involving minors.
Supporting Responsible Innovation
PubNub serves a diverse range of customers, including companies whose products are designed for children or family audiences. We provide these organizations with secure, scalable tools to maintain compliance while delivering safe and engaging experiences.
ReportingaCommitment to Privacy and Safety
PubNub is committed to empowering developers and companies to build trustworthy and compliant real-time experiences. We work closely with our customers to ensure that data privacy, consent, and security are prioritized in every implementation
For more information or compliance-related inquiries, please contact privacy@pubnub.com.
