About
What We Do
We provide COPPA readiness and compliance support for technology companies whose products or services may be used by children under 13. Our service helps founders, CTOs, and product leads navigate the path from “we might have a COPPA obligation” to “we have a compliant children’s privacy program” with clear audience analysis, practical consent mechanisms, and organized vendor oversight.
We work with edtech companies, children’s content platforms, gaming studios, social media services, and any technology company that may collect data from users under 13. See our service packages for details on pricing and deliverables.
What We Can Safely Offer
We Do
- Directed-to-children analysis
- Parental consent mechanism design
- Privacy notice drafting
- Age gating strategy
- Data minimization review
- Vendor COPPA compliance assessment
- Safe harbor program evaluation
- Data retention/deletion procedures
We Do Not
- Provide legal advice or representation
- Act as regulatory counsel
- Guarantee compliance outcomes
- Represent companies before the FTC
- Certify safe harbor compliance
Staffing and Skillset
Our team covers the six core competencies needed to deliver COPPA readiness effectively:
Privacy Lead
COPPA fluency, FTC enforcement expectations, children’s privacy program design, and regulatory communication.
UX / Consent Specialist
Parental consent flows, age gating design, child-friendly interfaces, and consent verification mechanisms.
Program Manager
Vendor coordination, safe harbor program liaison, remediation tracking, and status reporting.
Policy Writer
Privacy notices, parental consent procedures, data retention policies, and vendor compliance requirements.
Technical Privacy
Age verification implementation, consent mechanism engineering, data deletion workflows, and SDK privacy audits.
Vendor / SDK Specialist
Third-party SDK audit, advertising network privacy practices, data sharing controls, and vendor contract review.
Our Approach
First Version
- Readiness Sprint with audience analysis
- Consent mechanism design and privacy notices
- Third-party SDK audit and vendor requirements
- Manual + tool-agnostic by design
- Executive summary + engineering remediation plan
Later Maturity
- Automated consent verification integrations
- Safe harbor program participation
- Continuous compliance monitoring dashboard
- SDK privacy audit automation
- Trust-center and parent-facing reporting
Launch Readiness Metrics
We hold ourselves to measurable targets:
| Metric | Target |
|---|---|
| Time from kickoff to scoped readiness report | 10–20 business days |
| Core template library coverage | At least 8 templates ready |
| Consent mechanism completeness | All FTC-approved methods evaluated with recommendation |
| Third-party SDK audit coverage | 100% of in-scope SDKs audited for data collection practices |
| Executive readout deliverability | One board summary + one engineering backlog per engagement |
| Privacy notice compliance | Online and direct notices meet all COPPA content requirements |
Get in Touch
Ready to start your COPPA readiness journey? Reach out to discuss your scope, timeline, and goals.
Email Us