Amendment
Passed on 10/13/25
The Digital Age Assurance Act aims to enhance online privacy and safety protections for children by establishing a framework for age verification and appropriate content delivery. The bill requires covered manufacturers, application stores, and developers to implement age signaling mechanisms and comply with restrictions on data collection and sharing for users under 18 years old. It creates a system of age brackets to enable age-appropriate experiences across online platforms and applications while imposing penalties for violations. The legislation seeks to balance child protection with practical implementation by providing safe harbors for good faith compliance efforts.
The bill mandates that covered manufacturers and application stores provide age signals to developers indicating whether users fall into specific age brackets: under 5, 5-9, 10-12, 13-15, 16-17, or 18 and older. Developers receiving these signals are deemed to have actual knowledge of the user's age across all platforms and access points. The legislation prohibits developers from requesting more information than necessary or sharing age signals with third parties for non-compliant purposes. It requires developers to connect account holders with appropriate tools to support child users based on the risks of the application. The bill also imposes restrictions on operating system providers and application stores, mandating that they apply the same restrictions to their own applications as they do to third-party apps.
The California Attorney General is responsible for enforcing the Digital Age Assurance Act through civil actions. The bill establishes a system of civil penalties for violations, with fines of up to $2,500 per affected child for negligent violations and up to $7,500 per affected child for intentional violations. Covered manufacturers and application stores must implement age verification interfaces and signaling mechanisms by specified deadlines. Developers are required to request age signals for new users by January 1, 2027, and for existing users by July 1, 2027. The legislation provides a safe harbor for developers who rely in good faith on age signals provided by covered manufacturers, creating a rebuttable presumption of compliance with age verification and parental consent laws.
The primary beneficiaries of this legislation are children under 18 who use online services and applications. The bill aims to create safer, age-appropriate online experiences by ensuring that developers have accurate age information and can tailor content accordingly. Covered manufacturers, application stores, and developers will face increased administrative burdens and potential compliance costs as they implement age verification systems and adapt their practices to comply with the new requirements. The legislation is expected to result in more robust age verification processes across online platforms, potentially reducing children's exposure to inappropriate content or interactions. However, the full cost implications and effectiveness of the measures remain to be seen in practice.
The Digital Age Assurance Act builds upon existing child online privacy protections, such as the Children's Online Privacy Protection Act (COPPA) at the federal level. It operates within the state's authority to regulate consumer protection and online safety. The bill explicitly states that it does not modify, impair, or supersede the operation of any antitrust law, indicating an intent to avoid conflicts with federal antitrust regulations. The legislation preempts local laws within California on the same subject matter, establishing a uniform state standard for age verification and child online protection. The bill includes a severability clause, allowing individual provisions to be invalidated without affecting the entire act if challenged in court.
Several critical issues arise from the Digital Age Assurance Act. There are potential privacy concerns regarding the collection and transmission of age data, even in bracketed form, as it could be vulnerable to breaches or misuse. The implementation of age verification systems across diverse platforms and applications presents significant technical challenges and may impose substantial costs on smaller developers. There are also questions about the accuracy and reliability of age signals, particularly for households where multiple users of different ages share devices. The broad scope of covered entities and the complexity of compliance requirements may lead to unintended consequences, such as reduced innovation or limited access to beneficial services for younger users. Constitutional challenges could arise based on First Amendment concerns if the age verification requirements are seen as overly burdensome or restrictive of free speech. Additionally, the effectiveness of the age bracketing system in truly protecting children from online harms remains to be proven, and there may be opposition from industry groups arguing that the measures are disproportionate or technically infeasible.