Figma's services are intended for users 13 and older (16 in some EU countries), and Figma states it does not knowingly collect data from younger children.
This analysis describes what Figma's agreement states, permits, or reserves. It does not constitute a legal determination about enforceability. Regulatory applicability and practical outcomes may vary by jurisdiction, enforcement context, and individual circumstances. Read our methodology
If a minor under the applicable age threshold uses Figma, any personal data collected may be improperly processed, and parents or guardians should be aware of the age restrictions and Figma's deletion commitments.
Parents and guardians should be aware that Figma is not designed for users under 13 (or 16 in some EU jurisdictions) and that accounts created by underage users may be subject to deletion. Schools or organizations deploying Figma should verify compliance with applicable age restrictions.
How other platforms handle this
Our services are not directed to children under the age of 13, and we do not knowingly collect personal information from children under 13. If we become aware that we have collected personal information from a child under 13 without parental consent, we will take steps to delete that information.
The Waze App is not intended for use by children. We do not knowingly collect personal information from children under the age of 13 (or the applicable age of digital consent in your jurisdiction, which may be higher, such as 16 in certain EU member states). If we become aware that we have collected...
Replit is not directed to children under the age of 13. If you are under 13 years of age, you are not permitted to use the Services. If we learn that we have collected Personal Information from a child under age 13, we will take steps to delete such information from our files as soon as possible.
Monitoring
Figma has changed this document before.
Receive same-day alerts, structured change summaries, and monitoring for up to 10 platforms.
"Our Services are not directed to children under the age of 13. We do not knowingly collect personal information from children under 13. If we learn that we have collected personal information from a child under 13 without parental consent, we will take steps to delete such information. In some jurisdictions, the age threshold is higher, such as 16 in certain European countries.— Excerpt from Figma's Figma Privacy Policy
REGULATORY LANDSCAPE: This provision engages the Children's Online Privacy Protection Act, which applies to US-based services collecting personal information from users under 13 and requires verifiable parental consent. In the EU, GDPR Article 8 sets the age of digital consent at 16, but permits member states to lower this to 13; the policy acknowledges this variation. The UK Children's Code (Age Appropriate Design Code) may impose additional obligations if Figma's services are accessed by users under 18 in the UK. GOVERNANCE EXPOSURE: Medium. The policy relies on a 'do not knowingly collect' standard, which may be insufficient if Figma's age verification mechanisms are not robust enough to prevent underage users from accessing the service. Regulatory expectations for age assurance have increased, particularly in the UK and EU. JURISDICTION FLAGS: The FTC enforces COPPA in the US. EU national data protection authorities enforce GDPR Article 8 age requirements, with specific thresholds varying by member state. The UK ICO enforces the Children's Code and has taken enforcement action against platforms that failed to implement adequate age verification. Educational institutions deploying Figma for student use should evaluate FERPA applicability in the US context. CONTRACT AND VENDOR IMPLICATIONS: Educational or institutional customers deploying Figma in environments that may include minors should confirm that Figma's age verification and data handling practices are consistent with COPPA, FERPA, and applicable state or national children's privacy laws. Vendor contracts should specify responsibilities for identifying and deleting data from underage users. COMPLIANCE CONSIDERATIONS: Organizations with youth-facing programs or educational deployments should audit whether Figma is being accessed by users under the applicable age threshold and assess whether parental consent mechanisms are in place. Incident response plans should address how to handle discovery of minors' data in Figma accounts.
Full compliance analysis
Regulatory citations, enforcement risk, and due diligence action items.
Free: track 1 platform + weekly digest. Watcher: 10 platforms + same-day alerts. No credit card required.
Professional Governance Intelligence
Need to monitor specific governance provisions?
Professional includes provision-level monitoring, governance timelines, regulatory mapping, and audit-ready analysis.
Built from archived source documents, structured governance mappings, and historical version tracking.
If a minor under the applicable age threshold uses Figma, any personal data collected may be improperly processed, and parents or guardians should be aware of the age restrictions and Figma's deletion commitments.
Parents and guardians should be aware that Figma is not designed for users under 13 (or 16 in some EU jurisdictions) and that accounts created by underage users may be subject to deletion. Schools or organizations deploying Figma should verify compliance with applicable age restrictions.
ConductAtlas has identified this type of provision across 1 platforms. See the full comparison.
No. ConductAtlas is an independent monitoring service. We are not affiliated with, endorsed by, or sponsored by Figma.