Which regulatory agencies enforce this type of clause?

{'agency': 'FTC', 'reason': 'The FTC is the primary enforcement authority for COPPA (16 CFR Part 312) and can bring enforcement actions against platforms that collect data from children under 13 without verifiable parental consent.', 'complaint_url': 'https://reportfraud.ftc.gov/'}

What is the severity of this clause?

ConductAtlas classifies this Children's Data Exclusion (COPPA) clause as medium severity. Severity reflects the magnitude of rights affected, the breadth of users impacted, and the degree of discretion the platform retains.

Children's Data Exclusion (COPPA) — Luma AI

Share 𝕏 Share in Share 🔒 PDF

What it is

Luma's services are not designed for children under 13, and the policy states Luma does not knowingly collect data from children under that age.

Consumer impact (what this means for users)

Parents should be aware that Luma does not verify user ages and relies on self-reporting, meaning children under 13 could potentially access and submit content to the AI platform despite the stated exclusion.

Cross-platform context

See how other platforms handle Children's Data Exclusion (COPPA) and similar clauses.

Compare across platforms →

Need full compliance memos? See Professional →

Why it matters (compliance & risk perspective)

Without robust age verification mechanisms, the exclusion of under-13 users may be insufficient to meet COPPA requirements if children can easily access the platform, which could expose Luma to FTC enforcement.

View original clause language

Our Services are not intended for use by children under 13 years of age.

Institutional analysis (Compliance & legal intelligence)

(1) REGULATORY FRAMEWORK: This provision implicates COPPA (Children's Online Privacy Protection Act, 15 U.S.C. §6501 et seq., 16 CFR Part 312), enforced by the FTC, which requires verifiable parental consent before collecting personal information from children under 13; GDPR Art. 8 (which sets the age of digital consent at 16, or lower if member state law allows, minimum 13) enforced by EU supervisory authorities; UK GDPR and ICO's Children's Code (Age Appropriate Design Code) enforced by ICO; California Age-Appropriate Design Code Act (Cal. AB 2273). (2)

🔒

Compliance intelligence locked

Regulatory citations, enforcement risk, and due diligence action items.

Watcher $9.99/mo Professional $149/mo

Watcher: regulatory citations. Professional: full compliance memo.

Applicable agencies

FTC

The FTC is the primary enforcement authority for COPPA (16 CFR Part 312) and can bring enforcement actions against platforms that collect data from children under 13 without verifiable parental consent.
File a complaint →

Provision details

Document information

Document

Luma AI Privacy Policy

Entity

Luma AI

Document last updated

April 29, 2026

Tracking information

First tracked

April 30, 2026

Last verified

April 30, 2026

Record ID

CA-P-004295

Document ID

CA-D-00497

Evidence Provenance

Source URL

https://lumalabs.ai/legal/privacy-policy

Wayback Machine

View archived versions →

SHA-256

67674aa1a904b7c68bd20d464b6be4c1e518b1fe7e03c01dfdb4e87cfd26cb78

Verified

✓ Snapshot stored ✓ Change verified

How to Cite

ConductAtlas Policy Archive
Entity: Luma AI | Document: Luma AI Privacy Policy | Record: CA-P-004295
Captured: 2026-04-30 07:54:18 UTC | SHA-256: 67674aa1a904b7c6…
URL: https://conductatlas.com/platform/luma-ai/luma-ai-privacy-policy/childrens-data-exclusion-coppa/
Accessed: May 2, 2026

Classification

Severity

Medium

Children's Data Exclusion (COPPA)