Phosra — child-safety compliance, handled

About this standard

What 5Rights Standard asks for.

The 5Rights Foundation, led by Baroness Beeban Kidron, developed the framework behind the UK's Age Appropriate Design Code (Children's Code) — the most influential piece of child online safety regulation globally. Their five rights — to remove, to know, to safety, to digital literacy, and to agency — have shaped legislation in the UK, EU, and California. Families using Phosra can enforce these rights as platform rules — including data deletion requests, algorithmic transparency, and privacy-by-default settings.

Adopt this standard

Add this standard to your child's profile. Phosra will automatically enforce all rules across every connected platform.

Get started free →

How Phosra enforces it

5Rights Standard, mapped to the Phosra API.

Enforce 5Rights Standard rules individually or adopt the entire standard in one call. Each rule decomposes into the OCSS rule vocabulary a conformant router carries across every surface.

5Rights Standard

Adopt entire standard

Enforce all 6 rules from 5Rights Standard across every connected platform with a single API call.

POST /v1/enforcement/standards

bash

curl -X POST https://api.phosra.com/v1/enforcement/standards \
  -H "Authorization: Bearer sk_live_..." \
  -H "Content-Type: application/json" \
  -d '{
    "child_id": "ch_emma_01",
    "standard_id": "5rights-foundation",
    "enforce_all_rules": true
  }'

Right to remove

Data Deletion Request

data_deletion_request

Powered byPrivacy

Enforces the data deletion request rule via the Phosra API.

POST /v1/rules — Right to remove

bash

curl -X POST https://api.phosra.com/v1/rules \
  -H "Authorization: Bearer sk_live_..." \
  -H "Content-Type: application/json" \
  -d '{
      "child_id": "ch_emma_01",
      "rule_category": "data_deletion_request",
      "value": "Data erasure on demand",
      "platforms": [
          "*"
      ]
  }'

Right to know

Algorithmic Audit

algorithmic_audit

Powered byAudit

Enforces the algorithmic audit rule via the Phosra API.

POST /v1/rules — Right to know

bash

curl -X POST https://api.phosra.com/v1/rules \
  -H "Authorization: Bearer sk_live_..." \
  -H "Content-Type: application/json" \
  -d '{
      "child_id": "ch_emma_01",
      "rule_category": "algorithmic_audit",
      "value": "Algorithmic transparency",
      "platforms": [
          "*"
      ]
  }'

Privacy by default

Data Sharing Restriction

privacy_data_sharing

Powered byPrivacy

Minimizes third-party data sharing for the child's accounts.

POST /v1/rules — Privacy by default

bash

curl -X POST https://api.phosra.com/v1/rules \
  -H "Authorization: Bearer sk_live_..." \
  -H "Content-Type: application/json" \
  -d '{
      "child_id": "ch_emma_01",
      "rule_category": "privacy_data_sharing",
      "value": "Highest privacy settings",
      "platforms": [
          "*"
      ]
  }'

Location privacy

Geolocation Opt In

geolocation_opt_in

Powered byPrivacy

Enforces the geolocation opt in rule via the Phosra API.

POST /v1/rules — Location privacy

bash

curl -X POST https://api.phosra.com/v1/rules \
  -H "Authorization: Bearer sk_live_..." \
  -H "Content-Type: application/json" \
  -d '{
      "child_id": "ch_emma_01",
      "rule_category": "geolocation_opt_in",
      "value": "Off by default",
      "platforms": [
          "*"
      ]
  }'

Parental consent

Parental Consent Gate

parental_consent_gate

Powered byConsent

Enforces the parental consent gate rule via the Phosra API.

POST /v1/rules — Parental consent

bash

curl -X POST https://api.phosra.com/v1/rules \
  -H "Authorization: Bearer sk_live_..." \
  -H "Content-Type: application/json" \
  -d '{
      "child_id": "ch_emma_01",
      "rule_category": "parental_consent_gate",
      "value": "Required for data collection",
      "platforms": [
          "*"
      ]
  }'

No data profiling

Commercial Data Ban

commercial_data_ban

Powered byPrivacy

Enforces the commercial data ban rule via the Phosra API.

POST /v1/rules — No data profiling

bash

curl -X POST https://api.phosra.com/v1/rules \
  -H "Authorization: Bearer sk_live_..." \
  -H "Content-Type: application/json" \
  -d '{
      "child_id": "ch_emma_01",
      "rule_category": "commercial_data_ban",
      "value": "Block commercial profiling",
      "platforms": [
          "*"
      ]
  }'

Included rules · 6

Every rule this standard turns on.

When adopted, these rules are automatically enforced across all connected platforms.

Right to remove

Data erasure on demand

Right to know

Algorithmic transparency

Privacy by default

Highest privacy settings

Location privacy

Off by default

Parental consent

Required for data collection

No data profiling

Block commercial profiling

ukinternationaldigital rightslegislationprivacyage appropriate design

Related legislation

The laws this standard helps you meet.

Statutes and regulations that share rule categories with 5Rights Standard. A shared category is evidence you can weigh — never a compliance determination.

PA Online Safety

Kids Code / KOSA-style legislation requiring platforms to conduct data protection impact assessments before launching services for minors. Prohibits collecting or selling child geolocation data, profiling children by default, and using design patterns that lead children to provide personal information.

Pennsylvania, United States5 shared rules

COPPA 2.0

Extends COPPA to teens under 17, bans all targeted advertising to minors, and creates an Eraser Button for data deletion. Passed the Senate 91-3 as part of KOSMA in July 2024 (118th Congress) but the House never voted and the bill expired Jan 3, 2025. Reintroduced in the 119th Congress as S.836 (Senate, March 2025, Senators Markey & Cassidy) and H.R.6291 (House, November 2025). Not yet signed into law.

United States (Federal)4 shared rules

GDPR Art. 8

GDPR Article 8 establishes conditions for child consent to data processing, requiring parental consent for children under 16 (or 13, depending on member state).

European Union (27 member states)4 shared rules

ID GR 17

Indonesian government regulation requiring platforms to implement age verification, content rating, and privacy protections for children accessing digital services.

Indonesia4 shared rules

BR LGPD

Brazil's data protection law includes specific child provisions banning targeted advertising to minors, supplemented by the Digital ECA bill strengthening children's digital rights.

Brazil4 shared rules

CL PDP

Chilean personal data protection bill with specific provisions for children's data, establishing a data protection authority and rights including data deletion for minors.

Chile4 shared rules

Related parental controls

Tools aligned with this standard.

Parental control tools that support capabilities aligned with 5Rights Standard.

🔒

Norton Family

Norton's parental control solution with web supervision, time management, search monitoring, and location tracking backed by NortonLifeLock's threat intelligence.

1 matching capability

🌿

Canopy

AI-based content filtering that blocks explicit images and videos in real-time on the device without taking screenshots or logging private messages.

1 matching capability

🏫

Securly

Cloud-based student safety platform trusted by over 20,000 schools, extending AI-powered web filtering and wellness monitoring from the classroom to home.

1 matching capability

🍎

Apple Screen Time

Apple's built-in parental controls for iPhone, iPad, and Mac with app limits, downtime scheduling, content restrictions, communication limits, and Family Sharing integration.

1 matching capability

👨‍👩‍👧

Google Family Link

Google's built-in parental controls for Android and ChromeOS with app approval, screen time limits, device location, content filtering, and Google account supervision.

1 matching capability

5Rights Standard

What 5Rights Standard asks for.

Adopt this standard

5Rights Standard, mapped to the Phosra API.

Every rule this standard turns on.

Right to remove

Right to know

Privacy by default

Location privacy

Parental consent

No data profiling

The laws this standard helps you meet.

PA Online Safety

COPPA 2.0

GDPR Art. 8

ID GR 17

BR LGPD

CL PDP

Tools aligned with this standard.

Norton Family

Canopy

Securly

Apple Screen Time

Google Family Link

Adopt 5Rights Standard. Let Phosra enforce it.