The UK’s independent authority set up to uphold information rights in the public interest, promoting openness by public bodies and data privacy for individuals.

Standard 1 of the Children’s code requires online services to treat the best interests of the child as a primary consideration when designing and developing online services likely to be accessed by a child.

To consider whether you are acting in the best interests of children, you must consider how your use of their data impacts on the range of rights they hold under the United Nations Convention on the Rights of the Child.

We have created a range of tools and guidance to assist you with this, that support you at different stages of your conformance journey:

Preparing to undertake an assessment of whether you are meeting children’s best interests

Our best interests assessment guidance covers all the steps you will need to take to conform with the best interests of the child standard, from beginning to end.


Considering the impact of your data processing on children’s rights

This is a core part of a best interests assessment mentioned above. The best interests framework supports you to consider this impact.


Conducting a detailed data protection risk assessment of your digital service for both the UK GDPR and the Children's code

The self-assessment risk tool gives practical steps for you to apply a risk-based approach to ensuring children’s protection and privacy. It's best suited for medium to large organisations.


If you want further reading to understand what the United Nations Convention on the Rights of the Child is and what it means for online services, this article should help.