Which regulatory agencies enforce this type of clause?

{'agency': 'FTC', 'reason': "The FTC is the primary enforcement authority for COPPA and has brought major enforcement actions against platforms for inadequate protections for children's personal data.", 'complaint_url': 'https://reportfraud.ftc.gov/'}

What is the severity of this clause?

ConductAtlas classifies this Children's Data Policy clause as medium severity. Severity reflects the magnitude of rights affected, the breadth of users impacted, and the degree of discretion the platform retains.

Children's Data Policy — Runway

Share 𝕏 Share in Share 🔒 PDF

What it is

Runway's service is not intended for children under 13, and the company says it will delete any data it discovers was collected from children under 13.

Consumer impact (what this means for users)

If your child under 13 uses Runway — including features that collect biometric data like facial scans and voice recordings — Runway should delete that data if notified, but the policy does not describe proactive age verification measures to prevent this collection in the first place.

Cross-platform context

See how other platforms handle Children's Data Policy and similar clauses.

Compare across platforms →

Need full compliance memos? See Professional →

Why it matters (compliance & risk perspective)

While Runway states it does not target children under 13, the policy does not describe any active age verification measures — meaning children could inadvertently use the service and have their data, potentially including biometric data, collected.

View original clause language

The Service is not directed to children under the age of 13, and we do not knowingly collect personal information from children under the age of 13. If we learn that we have collected personal information of a child under such age, we will take steps to delete such information from our files as soon as possible.

Institutional analysis (Compliance & legal intelligence)

(1) REGULATORY FRAMEWORK: COPPA 15 U.S.C. §6501 et seq. and 16 CFR §312 (prohibits collection of personal information from children under 13 without verifiable parental consent; requires a clear and conspicuous privacy policy describing data practices; enforced by the FTC with civil penalties up to $51,744 per violation); GDPR Art. 8 (consent of child for information society services; member states may set age threshold between 13-16); UK GDPR and Age Appropriate Design Code (ICO Children's Code — requires high privacy by default for children's services). (2)

🔒

Compliance intelligence locked

Regulatory citations, enforcement risk, and due diligence action items.

Watcher $9.99/mo Professional $149/mo

Watcher: regulatory citations. Professional: full compliance memo.

Applicable agencies

FTC

The FTC is the primary enforcement authority for COPPA and has brought major enforcement actions against platforms for inadequate protections for children's personal data.
File a complaint →

Provision details

Document information

Document

Runway Privacy Policy

Entity

Runway

Document last updated

April 29, 2026

Tracking information

First tracked

April 30, 2026

Last verified

April 30, 2026

Record ID

CA-P-004255

Document ID

CA-D-00446

Evidence Provenance

Source URL

https://runwayml.com/privacy-policy

Wayback Machine

View archived versions →

SHA-256

abffd085133cb5579dda66c35fe22ffd6d418b7de61e23341f0e752e65e63459

Verified

✓ Snapshot stored ✓ Change verified

How to Cite

ConductAtlas Policy Archive
Entity: Runway | Document: Runway Privacy Policy | Record: CA-P-004255
Captured: 2026-04-30 07:30:40 UTC | SHA-256: abffd085133cb557…
URL: https://conductatlas.com/platform/runway/runway-privacy-policy/childrens-data-policy/
Accessed: May 2, 2026

Classification

Severity

Medium

Children's Data Policy