COPPA and Acorns Early Minor Data Collection

What it is

Acorns says its services are not for children under 13, but through the Acorns Early product, parents can open accounts on behalf of minors, and Acorns does collect data about those children as part of the account.

Why it matters (compliance & governance perspective)

The Acorns Early product, which includes a debit card and financial learning app for children, involves collection of data about minors. How this data is used, retained, and protected is subject to COPPA and warrants specific scrutiny from parents.

Consumer impact (what this means for users)

If you open an Acorns Early account for your child, Acorns will collect personal information about your minor child, including financial and potentially behavioral data, as part of operating that account.

What you can do

Institutional analysis (Compliance & governance intelligence)

REGULATORY LANDSCAPE: COPPA, enforced by the FTC, applies to online services directed to children under 13 or that knowingly collect personal information from children. The Acorns Early product, which includes a child-facing debit card and learning app, requires careful analysis of whether it constitutes a service directed to children under the COPPA definition, which includes analysis of the site's subject matter, visual content, use of animated characters, and marketing channels. If COPPA applies, verifiable parental consent must be obtained before collecting personal information from the child, and data retention must be limited to what is necessary. GOVERNANCE EXPOSURE: High. The FTC has significantly increased COPPA enforcement activity in recent years. A product that includes a child-facing app and debit card marketed to families creates meaningful exposure if COPPA consent and data minimization requirements are not fully implemented. The policy's framing that Early is directed to parents rather than children may not be dispositive if the child-facing features are assessed as directing the service to minors. JURISDICTION FLAGS: COPPA applies nationwide in the United States. California's Age-Appropriate Design Code Act, which may impose additional obligations for products likely to be accessed by minors, may be relevant to the Acorns Early product depending on judicial interpretation following legal challenges to that statute. CONTRACT AND VENDOR IMPLICATIONS: Any third-party service providers processing data related to Acorns Early accounts, including analytics, identity verification, or marketing vendors, should be subject to contractual restrictions on use of minor-related data consistent with COPPA operator-service provider requirements. COMPLIANCE CONSIDERATIONS: Compliance teams should conduct a COPPA applicability analysis for the Acorns Early app specifically, including assessment of the child-facing features, marketing materials, and data flows. Verifiable parental consent mechanisms, data retention schedules for minor account data, and service provider agreements should all be reviewed. The policy should be reviewed to confirm that data collected about minor beneficiaries is not used for behavioral advertising or shared with marketing partners.

Applicable agencies

Applicable regulations

Provision details

Other risks in this policy

• Collection of Sensitive Financial and Identity Data medium
• Third-Party Marketing and Analytics Data Sharing high
• Data Collection from Third-Party Sources Including Data Brokers medium
• Business Transfer Data Disclosure medium
• California Consumer Privacy Rights medium
• Account Linking and Third-Party Data Aggregator Access medium