App Store Accountability Act
- Bill Number
- H.R. 3149
- Origin Chamber
- House
- Congress
- 119th Congress, Session 1
- Policy Area
- Commerce
- Status
- Introduced
- Latest Action
- 2025-12-11: Forwarded by Subcommittee to Full Committee (Amended) by Voice Vote.
- Last Updated
- 2026-02-24T19:08:50Z
AI-Generated Summary
Purpose
The App Store Accountability Act aims to protect children and minors by requiring app stores and app developers to verify user ages, obtain verifiable parental consent for minors' app downloads and purchases, and provide parents with clear information about app content, data collection, and privacy practices. It seeks to prevent unauthorized access to apps by minors and ensure transparency in digital marketplaces.
Key Provisions
- Definitions (Section 2): Establishes terms like "age category" (divided into adult, teenager, child, and young child based on ages 18+, 16-17, 13-15, and under 13), "covered app store provider" (operators of app stores with over 5 million U.S. users, e.g., Apple App Store or Google Play), "verifiable parental consent" (informed agreement from a verified parent via a parental account), "personal data" (as defined under the Children's Online Privacy Protection Act, or COPPA, meaning information tied to an identifiable child), and "significant change" (major updates to an app's data practices, ratings, or features).
- App Store Obligations (Section 3): Covered app stores must:
- Verify user age at account creation using reliable methods.
- For minors (under 18), link accounts to a verified parental account and obtain parental consent before allowing app downloads, purchases, or in-app buys.
- Notify users (and parents for minors) of significant app changes and re-obtain consent if needed.
- Share only the user's age category and parental consent status with app developers.
- Protect age-related data with strict limits on collection and strong security measures (e.g., encryption).
- Display age ratings and content descriptions clearly in simple language.
- Provide real-time "signals" to developers about user age categories.
- App Developer Obligations (Section 4): Developers must:
- Use app store methods to verify user ages and parental consent.
- Notify stores of significant changes and request updated consent when needed (e.g., at download or major updates).
- Limit use of age data to enforcing age restrictions, legal compliance, or app features; prohibit sharing with unrelated third parties or enforcing contracts against minors without consent.
- Provide accurate, plain-language age ratings and content descriptions.
- Rely on app store signals as proof of user age.
- Compliance and Guidance (Section 5): The Federal Trade Commission (FTC) must issue non-binding guidance within one year, create a certification process for app stores' compliance (valid for one year, with public notices to Congress), and handle complaints.
- Enforcement (Sections 6-7): Violations are treated as unfair or deceptive practices under FTC rules, allowing FTC investigations, penalties, and remedies. State attorneys general can also sue on behalf of residents, with notice to the FTC (and FTC intervention rights), but cannot act if the FTC is already pursuing the same case.
- Safe Harbor (Section 8): App developers are protected from liability if they good-faith rely on app store age data, follow their obligations, and use industry-standard age ratings.
- Preemption (Section 9): Overrides conflicting state or local laws on these topics but preserves state contract and tort laws.
- Other (Sections 10-11): Includes severability (invalid parts don't affect the whole) and takes effect one year after enactment.
Significant Changes to Existing Law
This bill builds on COPPA by incorporating its definition of personal data and parental consent but introduces new, specific mandates for app stores and developers not previously required. It expands beyond websites to focus on mobile app ecosystems, mandating real-time age signals, parental notifications for changes, and certification processes. Unlike COPPA's focus on operators collecting data from children under 13, this applies to all minors under 18 and emphasizes app distribution platforms' roles in verification and consent, potentially closing gaps in how apps reach young users.
Potential Impacts
- Government Agencies: The FTC gains expanded enforcement tools and administrative duties (e.g., guidance, certifications, complaint reviews), increasing workload but aligning with its consumer protection role. State attorneys general can pursue cases, potentially leading to more localized oversight.
- Citizens: Parents of minors will receive clearer disclosures about app data practices, content ratings, and privacy measures, empowering informed consent and reducing risks of inappropriate exposure. Minors may face barriers to unapproved apps, enhancing safety but possibly limiting access. Adult users' experiences remain largely unchanged, though age verification could add minor friction at account setup.
- International Relations: Minimal direct impact, as the bill targets U.S.-available app stores and applies to U.S. users; however, global providers (e.g., international tech firms) must comply for their U.S. operations, potentially influencing worldwide app policies.
Overall, it could raise compliance costs for tech companies (e.g., implementing verification systems), foster safer digital environments for youth, and encourage industry-wide privacy improvements.
Main Stakeholders Affected
- Covered App Store Providers: Major platforms like Apple and Google, required to overhaul age verification, consent processes, and data sharing.
- App Developers: Thousands of U.S.-available app creators, obligated to integrate store signals, update disclosures, and limit data use.
- Parents and Minors: Families benefit from protections but may need to manage parental accounts and consents.
- Federal Trade Commission (FTC): Leads enforcement and compliance support.
- State Attorneys General: Gain authority to protect state residents through lawsuits.
- Consumers and Advocacy Groups: Broader public and child safety organizations may influence or benefit from increased transparency.
Notable Legal, Constitutional, or Political Implications
- Legal: Strengthens child privacy enforcement by linking to FTC Act violations, enabling civil penalties without new criminal measures. The safe harbor and preemption provisions limit developer liability and standardize rules nationwide, reducing patchwork state regulations but preserving general tort claims (e.g., for negligence). References to "know" (actual knowledge or willful disregard) set a liability threshold.
- Constitutional: Includes protections against restricting political, religious, or other viewpoints, addressing potential First Amendment concerns over content ratings or blocking. Age verification mandates could raise privacy issues under the Fourth Amendment, but data safeguards (e.g., encryption, minimal collection) mitigate this.
- Political: Introduced bipartisanship (by Reps. James and Bilirakis) signals cross-aisle support for child online safety. It empowers federal oversight while allowing state involvement, balancing national uniformity with local action; however, tech industry pushback on costs or innovation stifling could spark debates in Congress. The one-year delayed effective date allows preparation time, potentially easing adoption.
This summary was generated by AI and may contain inaccuracies. Refer to the official source document for the authoritative text.
Sponsor
Cosponsors (2)
Rep. Bilirakis, Gus M. [R-FL-12], Rep. Houchin, Erin [R-IN-9]
Recent Actions
- 2025-12-11: Forwarded by Subcommittee to Full Committee (Amended) by Voice Vote.
- 2025-12-11: Subcommittee Consideration and Mark-up Session Held
- 2025-05-01: Referred to the Subcommittee on Commerce, Manufacturing, and Trade.
- 2025-05-01: Referred to the House Committee on Energy and Commerce.
- 2025-05-01: Introduced in House
- 2025-05-01: Introduced in House
Bill Versions
- App Store Accountability Act — issued 2025-05-01 — PDF (21 pages)