5 product development challenges of building a new category

I posted earlier about my functional CTO story, detailing how my role of CTO evolved over time which can be found here. It’s one challenge to be CTO in a ‘normal’ startup and quite a separate challenge to also be at the forefront of a new category. A little over 5 years ago, we started … Continue reading 5 product development challenges of building a new category

Securing Postgres clusters in privacy-led architecture

Kids Web Services (KWS) enables developers to create, build, and manage COPPA/GDPR-K compliant apps and sites aimed at under-13s. As part of operating the KWS SaaS platform within SuperAwesome, we frequently create new databases for our customers, as well as managing several large Postgres databases on RDS. Data security is a fundamental success criterion in … Continue reading Securing Postgres clusters in privacy-led architecture

3 questions every kids-focused brand should ask their media partners

Under GDPR-K and COPPA you are responsible for any data collection that happens on your site, or by your brand, even if by a third party. These are the questions you should be asking all of your agency partners (e.g. any party that plans your kid-focused campaigns or implements your media). My brand isn’t a … Continue reading 3 questions every kids-focused brand should ask their media partners

Enabling COPPA-compliant programmatic advertising through our KidSafe Filter

The recent enforcement action against Oath’s ad exchange (formerly known as AOL) for breaching COPPA has put a spotlight on programmatic advertising to children. The case highlighted some important issues including the fact that using the ‘COPPA flag’ does not work. In fact, the only guaranteed way for advertisers to be compliant in programmatic ad … Continue reading Enabling COPPA-compliant programmatic advertising through our KidSafe Filter

The TikTok COPPA fine has dramatically upped the stakes in kids digital privacy

The FTC dramatically upped the ante on COPPA enforcement this week with a record-setting fine of $5.7m against the app formerly known as Musical.ly (now TikTok). The settlement says TikTok breached COPPA by knowingly collecting personal information from children without first obtaining parental consent, as required by the law. It represents a direct challenge to … Continue reading The TikTok COPPA fine has dramatically upped the stakes in kids digital privacy

How we scale our kid-safe technology using Kubernetes

At SuperAwesome, we build technology that makes the internet safer for kids. Every month, we handle requests from hundreds of millions of kids located all around the world. These kids use their devices moderately in the morning, a little bit during the day, and a lot in the evening. As a result, we had to … Continue reading How we scale our kid-safe technology using Kubernetes

5 things we learned while refining Verifiable Parental Consent for kids apps

Apps and games that need to collect personally identifiable information (PII) from kids require the parents to give their consent. Given the sensitive nature of this information, we take extra measures to make sure that the parent of the child is really the one giving the consent. Under COPPA and GDPR-K, one of the ways … Continue reading 5 things we learned while refining Verifiable Parental Consent for kids apps

The #kidtech movement: a zero-data architecture for children’s apps and sites

At SuperAwesome, we spend a lot of time thinking about the requirements for an internet that is now used by vast numbers of children (versus it’s original design, which was solely for adults). GDPR-K is rapidly being followed by new children’s laws in many countries that are based on the same principles -- data minimisation … Continue reading The #kidtech movement: a zero-data architecture for children’s apps and sites

How to implement COPPA-compliant push notifications in your kids app

Push notifications are a useful tool for re-engaging users and getting kids back into your app. Under both COPPA and GDPR-K, sending push notifications to kids is deemed collecting personal information, similar to an email address, and therefore requires an appropriate level of parental consent to enable. Under COPPA (applicable to your US audience), certain … Continue reading How to implement COPPA-compliant push notifications in your kids app

What every game developer needs to know about getting parental permissions right

If you’re building a game or app for kids (under-13 in the US or under-16 in Europe), you need to consider how you’re going to manage age gates and parental permissions. Both are essential to ensure compliance with data privacy laws (COPPA and GDPR-K), but both are complex user flows and mismanaging them can create … Continue reading What every game developer needs to know about getting parental permissions right