ClickUp's services are intended for users 13 and older, and the company states it does not intentionally collect data from children under 13.
This analysis describes what ClickUp's agreement states, permits, or reserves. It does not constitute a legal determination about enforceability. Regulatory applicability and practical outcomes may vary by jurisdiction, enforcement context, and individual circumstances. Read our methodology
If a child under 13 creates a ClickUp account, the company commits to deleting that data, but enforcement depends on ClickUp detecting the underage user, which may not always occur in practice.
The updated policy now explicitly recognizes eight distinct data subject rights, including rights to access, correct, delete, restrict processing, receive data in portable format, object to processing, withdraw consent, and lodge complaints with regulators. Previously, ClickUp described privacy controls through general opt-out options and data access procedures without formal legal framing. The revised language aligns with GDPR and similar data protection frameworks, providing clearer legal reference points for how users may exercise control over their personal data. You can exercise these rights by contacting ClickUp's support team.
View change record →Parents or guardians who discover a child under 13 has used ClickUp can request deletion of that child's data, and ClickUp commits to acting on that request promptly.
How other platforms handle this
At Ledger, earning and maintaining our users' trust is a top priority. That's why we are deeply committed not only to protecting your privacy and securing your personal data, but also to being fully transparent about how we handle it.
If you are located in the European Economic Area, Switzerland, or the United Kingdom, you have the right to access, correct, or erase your personal data; the right to restrict or object to our processing of your personal data; the right to data portability; and, where our processing is based on your...
We use information to enhance the quality, reliability, and/or accuracy of our AI Features by creating, developing, training, testing, improving, and maintaining AI and ML models run by Strava or our service providers. We use aggregated, de-identified data for this purpose. We also use personal info...
Monitoring
ClickUp has changed this document before.
Receive same-day alerts, structured change summaries, and monitoring for up to 25 platforms.
"Our Services are not directed to children under the age of 13, and we do not knowingly collect personal information from children under 13. If we learn that we have collected personal information from a child under 13, we will take steps to delete such information as soon as possible.— Excerpt from ClickUp's ClickUp Privacy Policy
(1) REGULATORY LANDSCAPE: This provision engages COPPA (Children's Online Privacy Protection Act), enforced by the FTC, which requires verifiable parental consent before collecting personal information from children under 13 in the US. The policy's reliance on a 'not directed to children' standard without robust age verification may not fully satisfy COPPA's operator obligations depending on actual platform use patterns. EU users are subject to GDPR Article 8, which sets age thresholds between 13 and 16 depending on member state, and the UK Children's Code (Age Appropriate Design Code) imposes additional requirements for services likely to be accessed by minors. (2) GOVERNANCE EXPOSURE: Low for ClickUp's primary use case as a professional productivity tool, but medium if ClickUp is deployed in educational contexts where minors may be users. The policy does not address users between 13 and 17, which may be relevant for some deployments. (3) JURISDICTION FLAGS: US enforcement under COPPA is handled by the FTC. EU member states with ages of digital consent above 13 (such as Germany at 16 and France at 15) create additional exposure. The UK Children's Code applies to services 'likely to be accessed by children' regardless of intent. (4) CONTRACT AND VENDOR IMPLICATIONS: Educational institutions or organizations deploying ClickUp for users who may include minors should assess COPPA and FERPA applicability and seek contractual assurances from ClickUp regarding their obligations in those contexts. (5) COMPLIANCE CONSIDERATIONS: Organizations should assess whether their ClickUp deployment involves any users under 18, particularly in educational or youth program contexts, and obtain appropriate parental consent documentation if required.
Full compliance analysis
Regulatory citations, enforcement risk, and due diligence action items.
Free: track 1 platform + weekly digest. Monitor: 25 platforms + same-day alerts. No credit card required.
Ad personalization controls removed. Contact scanning added. Advertiser data partnerships quietly dropped. A timeline of every change.
Compliance Governance Intelligence
Need to monitor specific governance provisions?
Compliance includes provision-level monitoring, governance timelines, regulatory mapping, and audit-ready analysis.
Built from archived source documents, structured governance mappings, and historical version tracking.
If a child under 13 creates a ClickUp account, the company commits to deleting that data, but enforcement depends on ClickUp detecting the underage user, which may not always occur in practice.
Parents or guardians who discover a child under 13 has used ClickUp can request deletion of that child's data, and ClickUp commits to acting on that request promptly.
ConductAtlas has identified this type of provision across 8 platforms. See the full comparison.
No. ConductAtlas is an independent monitoring service. We are not affiliated with, endorsed by, or sponsored by ClickUp.