By Beverly Blair Harzog
In the late ’90s, the Internet was really and truly the Wild, Wild West. It was a tough time for parenting because it was difficult to know exactly what to tell our kids about staying safe online.
But one thing was as clear then as it is now: Don’t give personal information on the Internet. Back then, parents worried a great deal about online child predators. Honestly, at the time, thoughts of privacy issues and protecting our kids from identity theft just weren’t a major concern. This soon changed.
It was in November 1999 that Neopets.com hit the scene. Kids loved it. I mean, really, really loved it. The computer game allowed them to create and take care of virtual pets in Neopia, a virtual world, and interact with each other on boards. Kids had to register, which involved giving personal information. Like other kids, Ashley, my then-10-year-old daughter, wanted to sign up and participate.
My lectures about not giving personal information on the Internet apparently did have an impact on her. Ashley now says, “I remember at the time thinking I shouldn’t give my real name. So I made up a last name.”
So although she gave her actual address to somebody connected to the site when she signed up (it’s unclear whether it was Neopets or one of its advertisers; it was too long ago to remember), Ashley used the name “Ashley Ainttellnu,” as in, I ain’t tellin’ you my last name. Hey, when you’re 10 years old, this approach makes darn good sense. And she did (sort of) listen to her mum. Unfortunately, she used her address—a big no.
Flash forward about 10 years. Ever since Ashley started college in 2009, she’s been receiving offers for student credit cards. Last week, Ashley received two credit card offers on the same day. They were both for a Discover student card.
One was addressed to Ashley Harzog and one was addressed to—are you ready?—Ashley Ainttellnu. The card issuer, Discover, knows how old Ashley Ainttellnu is and that she’s now in college. What Discover doesn’t know is that Ashley Ainttellnu doesn’t exist and that she most certainly doesn’t need a credit card.
I reached out to Discover and asked how they obtain mailing lists for credit card offers. A spokesperson for Discover said that the card issuer works with well-known, reputable vendors to receive general, non-regulated consumer information. Discover has agreements in place that require these vendors to verify that the names and addresses are legitimate.
What they didn’t say is whether or not these reputable venders have at any point in the past collected children’s personal information, only to release it to banks once they’ve come of age. Maybe Discover doesn’t know how their vendors gather the names and addresses, but in this parent’s opinion, they ought to check into it. In fact, I think it’s time all credit card issuers started taking some responsibility for the personal information they purchase.
Obviously, my daughter’s personal information was sold on a list. I’ve contacted Neopets in an attempt to figure out what may have happened, but they declined to respond. To their credit, though, they now require kids under 13 to obtain parental consent before they can interact with others. This step is taken to stay in compliance with the Children’s Online Privacy Protection Act (COPPA), enacted in 1998. Parents have to complete and actually mail in a consent form.
Unfortunately, kids can get around this by lying about their birthdates. I know this because I made up a birthdate when I signed up and I was able to wander around the site unencumbered. But I’ll still give Neopets credit for trying to maintain a safe environment. There were warnings all over the place about safety and how kids will get banned for life if they don’t follow the rules or make inappropriate comments. Neopets makes it easy for parents to find explanations about COPPA. So I’d say they make a good effort to follow the law. Anyway, as much as you can when you’re relying on kids to tell the truth about their age.
The Spirit of the Law
This is a lot more than I can say for Facebook. Jeff Fox, the technology editor at Consumer Reports, wrote in his blog on the Huffington Post that 7.5 million kids on Facebook are under the age of 13. As long as Facebook asks for an age, they can claim they obeyed the “spirit” of the law. I had to hunt to find the “Safety centre” for tips about how to help your teens stay safe on Facebook. Facebook does mention that you must be 13 in the “Terms” section, but you have to look hard to find it.
With COPPA in place for more than a decade, it’s unbelievable that Facebook has skated by on this issue. This is akin to a 17-year-old boy ordering a beer in a restaurant and when asked for his driver’s licence, insisting, “You don’t need to see it. I promise I’m 21.”
On Facebook, he’d get his beer without any hassle. In the real world (OK, let’s just assume he hasn’t obtained a fake ID!), the waiter would check his driver’s licence for proof. There has to be an equivalent of “Can I see your driver’s licence?” when children and teens are interacting on websites. Accepting lies and then claiming you obeyed the law because you asked simply can’t cut it any longer.
The House author of COPPA, Rep. Edward J. Markey (D-Mass.), and Rep. Joe Barton (R-Texas) are co-sponsoring an amendment to COPPA called the Do Not Track Kids Act of 2011. This legislation offers new protection to children and to teens under the age of 18.
If passed, the Do Not Track Kids Act of 2011 amendment would require online companies to do the following:
- Explain the types of personal information collected, how that information is used and the policies for collection of personal information.
- Require parental consent before they can collect children’s personal information.
- Create an “Eraser Button” for parents and children that would permit users to eliminate publicly available personal information.
One of the shortcomings of COPPA is that it only protects children under 13. This new amendment would protect kids up to the age of 18 and would establish a “Digital Marketing Bill of Rights for Teens” to limit the collection of personal information of teens. There’s a lot more and you can read the entire discussion draft for the details.
Privacy and identity theft issues are only going to get more intense. Now’s the time to protect our kids and the Do Not Track Kids Act of 2011 is a step in the right direction.
Beverly Blair Harzog is Credit.com’s Credit Card Expert. Beverly focuses on credit card issues and provides insight about current news that affects the credit card industry and consumers. She’s a nationally recognised expert on credit card issues and is also the co-author of The Complete Idiot’s Guide to Person-to-Person Lending.
This post originally appeared at Credit.com.