NVIDIA states its services are not intended for children under 13 and that it does not knowingly collect data from children under 13; parents can request deletion of any such data.
This analysis describes what NVIDIA NIM's agreement states, permits, or reserves. It does not constitute a legal determination about enforceability. Regulatory applicability and practical outcomes may vary by jurisdiction, enforcement context, and individual circumstances. Read our methodology
The policy establishes an age-based restriction on data collection consistent with COPPA in the US; the restriction applies to services not directed at children, but does not address the full range of minors' privacy protections under GDPR Article 8 or state laws that apply to users under 16 or 18.
Interpretive note: The policy's under-13 threshold may not satisfy GDPR Article 8 requirements in EU member states that have set the age of digital consent at 14, 15, or 16, creating jurisdiction-dependent compliance gaps.
The updated Privacy Policy removes all disclosure language about how NVIDIA and third-party partners use cookies and other tracking technologies. Previously, the policy stated that cookies were used 'to collect and record information' for 'performance improvement, analytics, and to assist in our marketing efforts' and described consent mechanisms like 'Accept All' and 'Manage Settings'. The updated policy contains no equivalent disclosure of these tracking practices, data collection methods, or consent options. You can review NVIDIA's full Privacy Policy at their Privacy Center, though the updated version no longer describes cookie and tracking technology practices that were previously disclosed.
View change record →Parents of children under 13 should be aware that NVIDIA states it does not knowingly collect data from this age group and that deletion of inadvertently collected data can be requested; users in the EU/EEA should note that GDPR Article 8 may set the age of digital consent at up to 16 depending on member state, potentially creating a gap between the policy's stated age threshold and applicable law.
How other platforms handle this
Our Services are not directed to children under 13. If you learn that anyone younger than 13 has unlawfully provided us with personal data, please contact us at privacy@medium.com.
Our services are restricted to users who are 18 years of age or older. We do not permit users under the age of 18 on our platform and we do not knowingly collect personal information from anyone under 18. If you suspect that a user is under the age of 18, please use the reporting mechanism available...
At Ledger, earning and maintaining our users' trust is a top priority. That's why we are deeply committed not only to protecting your privacy and securing your personal data, but also to being fully transparent about how we handle it.
Monitoring
NVIDIA NIM has changed this document before.
Receive same-day alerts, structured change summaries, and monitoring for up to 25 platforms.
"Our products and services are not directed to children under the age of 13, and we do not knowingly collect personal information from children under 13. If we become aware that we have collected personal information from a child under 13 without parental consent, we will take steps to delete that information.— Excerpt from NVIDIA NIM's NVIDIA Privacy Policy
1) REGULATORY LANDSCAPE: This provision implicates COPPA, which requires verifiable parental consent before collecting personal information from children under 13 in the US; the FTC is the primary enforcement authority. GDPR Article 8 sets the age of consent for information society services at 16 years by default with member states permitted to lower it to no less than 13; where NVIDIA's services are accessible to minors aged 13 to 15 in EU member states that have not lowered the age threshold, a potential gap exists between NVIDIA's stated policy and GDPR requirements. The UK Age Appropriate Design Code (Children's Code) may apply to services accessible to users under 18 in the UK. 2) GOVERNANCE EXPOSURE: Medium. The policy's under-13 threshold aligns with US COPPA requirements but may not satisfy GDPR Article 8 in all EU member states. The UK Children's Code creates broader obligations for services likely to be accessed by users under 18. If NVIDIA AI products are accessible to minors and involve profiling or behavioral advertising, additional restrictions apply. 3) JURISDICTION FLAGS: US federal COPPA applies to under-13 users; California's Age-Appropriate Design Code Act (AB 2273, subject to ongoing litigation) would impose broader protections for users under 18 if upheld; EU member states vary in their GDPR Article 8 age of consent setting; UK Children's Code applies to services likely accessed by under-18 users. 4) CONTRACT AND VENDOR IMPLICATIONS: Enterprise customers deploying NVIDIA products in educational or consumer contexts where minors may be users should assess whether their own data processing agreements with NVIDIA restrict collection and use of minors' data and whether NVIDIA's stated policy satisfies the enterprise customer's own COPPA or FERPA obligations. 5) COMPLIANCE CONSIDERATIONS: Compliance teams should assess whether any NVIDIA services marketed or accessible to users under 16 or 18 trigger obligations beyond the stated under-13 threshold; evaluate UK Children's Code applicability; confirm that parental consent mechanisms and data deletion workflows for under-13 users are operationally implemented; and consider whether AI product features involving profiling or behavioral targeting require additional age verification.
Full compliance analysis
Regulatory citations, enforcement risk, and due diligence action items.
Free: track 1 platform + weekly digest. Monitor: 25 platforms + same-day alerts. No credit card required.
Ad personalization controls removed. Contact scanning added. Advertiser data partnerships quietly dropped. A timeline of every change.
Compliance Governance Intelligence
Need to monitor specific governance provisions?
Compliance includes provision-level monitoring, governance timelines, regulatory mapping, and audit-ready analysis.
Built from archived source documents, structured governance mappings, and historical version tracking.
The policy establishes an age-based restriction on data collection consistent with COPPA in the US; the restriction applies to services not directed at children, but does not address the full range of minors' privacy protections under GDPR Article 8 or state laws that apply to users under 16 or 18.
Parents of children under 13 should be aware that NVIDIA states it does not knowingly collect data from this age group and that deletion of inadvertently collected data can be requested; users in the EU/EEA should note that GDPR Article 8 may set the age of digital consent at up to 16 depending on member state, potentially creating a gap …
ConductAtlas has identified this type of provision across 2 platforms. See the full comparison.
No. ConductAtlas is an independent monitoring service. We are not affiliated with, endorsed by, or sponsored by NVIDIA NIM.