This browser is not actively supported anymore. For the best passle experience, we strongly recommend you upgrade your browser.
Welcome to Reed Smith's viewpoints — timely commentary from our lawyers on topics relevant to your business and wider industry. Browse to see the latest news and subscribe to receive updates on topics that matter to you, directly to your mailbox.
| 1 minute read

Just six months to go until the Children's Code comes into force!

The ICO's Age Appropriate Design Code (also known as the Children's Code) comes into force in just six months (2 September 2021).  The Code contains 15 standards and providers are expected to build these standards into the design of their services regarding the processing of the personal data of children. These standards include:

Many organisations will still have a lot to do to ensure their services comply with these standards by September. It should be borne in mind that this is a statutory code, which means the ICO would consider whether a provider has complied with the Code in deciding whether it is compliant with data protection law. For example, if the ICO was considering a complaint that a provider had breached data protection laws, such as not being fair in its processing of children's data, they would use the Code as a guide for expected standards for compliance. Therefore, all of the applicable high potential fines and enforcement powers that exist under UK GDPR are relevant here, but there aren't separate fines for the Code specifically.

The Children’s Code sets out 15 standards organisations must meet to ensure that children’s data is protected online. The code will apply to all the major online services used by children in the UK and includes measures such as providing default settings which ensure that children have the best possible access to online services whilst minimising data collection and use.


data protection, gdpr, ico, childrens code, entertainment & media, emerging technologies