this post was submitted on 02 Mar 2026
654 points (97.3% liked)

Technology

technology@lemmy.world
82227 readers
4510 users here now

This is a most excellent place for technology news and articles.

Our Rules

  1. Follow the lemmy.world rules.
  2. Only tech related news or articles.
  3. Be excellent to each other!
  4. Mod approved content bots can post up to 10 articles per day.
  5. Threads asking for personal tech support may be deleted.
  6. Politics threads may be removed.
  7. No memes allowed as posts, OK to post as comments.
  8. Only approved bots from the list below, this includes using AI responses and summaries. To ask if your bot can be added please contact a mod.
  9. Check for duplicates before posting, duplicates may be removed
  10. Accounts 7 days and younger will have their posts automatically removed.

Approved Bots

founded 2 years ago
MODERATORS
L3s@lemmy.world
enu@lemmy.world
technopagan@lemmy.world
L4s@lemmy.world
L3s@hackingne.ws
654
California introduces age verification law for all operating systems, including Linux and SteamOS — user age verified during OS account setup (www.tomshardware.com)
submitted 3 days ago by Amoxtli@thelemmy.club to c/technology@lemmy.world
385 comments fedilink hide all child comments
you are viewing a single comment's thread
view the rest of the comments
[–] pulsewidth@lemmy.world 19 points 2 days ago* (last edited 2 days ago) (19 children)

Many people here are going off on wild tangents over this. You should just read the law, it's only a couple thousand words of quite plain English.

Many here have taken completely incorrect assumptions from the title. This law is for developers, not users.

Summary:

  1. Requires OS devs ask for DOB, age, or both at account creation time.
  2. Requires an API that allows app store devs to request this age data for the account. At minimum this API must signal that the account is a member of one of these categories: 'user under 13, user over 13 and under 16, user is over 16 and under 18, user is over 18'.
  3. Explicitly bars OS devs from sending more data than explicitly necessary to meet 1 (hint: photo ID, facial recognition).
  4. Explicitly bars app devs recieving the data from requesting more data from the OS nor the App store.
  5. Bars app stores from using the data for any other reason and specifically calls out anticompetitive practices.
  6. Bars app store and OS devs from sharing this data with any third party for any other reason than to comply with this law.
  7. Has injunctions and civil penalties of $2500 (max per user) affected by negligent violations (eg a child account is served adult content), and $7500 (max per user) affected by intentional violations.

The only problem I have with this is that it should only apply to commercial software (app stores and OS). Libre/FOS software should not have to police ages on their app stores, due to their far reduced budgets (often zero), developer time, and the nature of the software being generally anti-centralized and anti-surveillance-capitalism. Though I'd be fine with it for FOSS software distributed via commercial app stores, as long as they gave a longer lead time to implement (EG a couple of years).

[–] rumba@lemmy.zip 4 points 2 days ago (3 children)

It says that OS developers must track users or be fined, so they will track users.

Explicitly bars OS devs from sending more data than explicitly necessary to meet 1

The statute does not define:

What counts as "minimum"

How necessity is measured

Whether "minimum" refers to data fields, granularity, frequency, or retention

Whether metadata (e.g., device ID, timestamp, API call logs) is included or excluded

This legislature calls App Providers and developers to track people and barely even gives lipservice to what is allowed.

We don't want our OS's tied to our identities. This does not explicitly forbid that

[–] pulsewidth@lemmy.world 2 points 2 days ago (1 child)

Read the law (its barely 1000 words) because your claims are not substantiated by it.

[–] rumba@lemmy.zip 2 points 2 days ago (1 child)

I already read it. That's how i came up with what I wrote man.

You go re-read it and tell me

What counts as “minimum”

How necessity is measured

Whether “minimum” refers to data fields, granularity, frequency, or retention

They don't cover shit about ANY of that.

[–] pulsewidth@lemmy.world 1 point 2 days ago* (last edited 2 days ago)

It literally explains the minimum as asking the user for their age, DOB, or both. It then says delopers may not ask for more than the minimum data.

Further, the law states that if a developer intentionally breaches any part of the law (which would include the requirements) there is a $7500 fine per impacted user, and injunctions. Accidental breaches are $2500 per user, and injuctions. These are very high penalties in context - someone like Microsoft would be on the hook for trillions, and as such, corpos will not be rushing to play fools and test the law by asking more than the bare minimum.

If this is confusing then please seek out one of the many legal blogs/videos covering it by lawyers because I can't break it down further than I already have.

load more comments (1 reply)
load more comments (16 replies)