Why does COPPA apply to Snapchat AR Try-On ads when the campaigns are not directed at children?

COPPA's application to Snapchat AR Try-On campaigns is non-obvious because the Children's Online Privacy Protection Act applies to operators of websites or online services directed to children under 13 or that have actual knowledge of collecting personal information from children under 13. Snapchat's official platform position is that the service is for users 13 and older, and Snap requires age confirmation at signup. The position would seem to exempt Snapchat-based campaigns from COPPA obligations. The exemption is incomplete for three structural reasons that affect Beauty AR Try-On specifically. The first reason is the actual-knowledge standard. COPPA imposes obligations when an operator has actual knowledge of collecting personal information from children under 13, regardless of the operator's stated audience policy. Beauty brands running AR Try-On campaigns on Snapchat with high-engagement creator partnerships, broad targeting that reaches younger Snapchat audiences, or campaign signals that indicate substantial under-13 engagement may produce actual-knowledge situations. The actual-knowledge analysis considers the campaign's targeting parameters, the creative's audience appeal, the engagement patterns observed, and any direct signals indicating under-13 users. Brands that close their eyes to these signals do not avoid COPPA obligations; the actual-knowledge standard is interpreted to include constructive knowledge in some enforcement contexts. The second reason is the directed-to-children analysis. COPPA's directed-to-children test applies a multi-factor analysis covering the campaign's subject matter, visual content, music, language, age of models or characters, presence of child celebrities, and other relevant factors. Beauty campaigns can be directed to children even when the brand's stated target audience is adults if the campaign's content uses child-appealing aesthetics, features young models, includes child-oriented music or language, or otherwise produces directed-to-children signals. AR Try-On campaigns specifically often use playful, gamified, or fantasy aesthetics that can produce directed-to-children signals even when the underlying product is positioned for adults. The third reason is the platform-side responsibility chain. COPPA imposes obligations on operators of online services including platforms, and Snapchat's compliance with COPPA affects the advertiser's compliance posture through the platform-side chain. When Snapchat is operating as a COPPA-compliant service for users 13 and older but the advertiser's campaign produces effective targeting of under-13 users through campaign design or actual-knowledge signals, the advertiser inherits compliance obligations even though the platform operates with its own COPPA framework. The cumulative effect is that beauty brands running AR Try-On campaigns on Snapchat should treat COPPA as a baseline compliance consideration rather than assuming the platform's age policy exempts the brand. The structured compliance posture includes campaign targeting that excludes signals indicating under-13 users, creative that does not produce directed-to-children signals, monitoring of campaign engagement patterns for under-13 indicators, and documentation of the compliance review process. The compliance posture protects against both direct FTC enforcement (the FTC has authority to enforce COPPA against advertisers as well as platforms) and against parallel state attorneys general enforcement. For comprehensive COPPA compliance framework see the Kids and Teens Compliance guide and the FTC influencer compliance guide .

What state biometric privacy laws apply to AR face processing in Snapchat Try-On ads, and what specific obligations do they impose?

State biometric privacy laws have proliferated through 2018-2026 and now form a complex multi-state framework that affects AR face processing in Snapchat Try-On ads. The framework's complexity stems from the absence of a federal biometric privacy law and the variation in state-level approaches. The most consequential state laws include Illinois BIPA, Texas CUBI, Washington H.B. 1493, and more recent enactments in New York, Colorado, Virginia, Connecticut, and other states. Illinois BIPA (Biometric Information Privacy Act) is the most consequential state biometric law for several reasons. BIPA imposes broad obligations including written informed consent before collection or use of biometric identifiers or information, publicly available retention and destruction schedules, prohibition on selling or trading biometric data, reasonable care standards for biometric data security, and a private right of action with statutory damages ($1,000 per negligent violation, $5,000 per intentional violation). The private right of action has produced extensive class action litigation through 2017-2026 with material damages awards. BIPA applies to biometric processing of Illinois residents regardless of where the processing occurs, and AR face processing on Snapchat that includes Illinois-resident users triggers BIPA obligations. Texas CUBI (Capture or Use of Biometric Identifiers) imposes consent requirements before capturing biometric identifiers and is enforced by the Texas Attorney General. CUBI does not include a private right of action, which produces lower litigation risk than BIPA but does not reduce regulatory exposure. Washington H.B. 1493 imposes consent requirements for biometric identifier collection and is enforced by the Washington Attorney General. New York biometric provisions in various state acts impose obligations on biometric collection by certain operators. The newer comprehensive state privacy laws (Colorado CPA, Virginia CDPA, Connecticut CTDPA, Utah UCPA, and others enacted through 2021-2026) include biometric data as sensitive category data with specific consent and processing requirements. The AR face processing in Snapchat Try-On ads can produce biometric data within each of these frameworks' definitions, with the specific question being whether the processing creates a biometric identifier or biometric information as the state law defines those terms. The legal interpretation of whether AR face processing creates biometric identifiers is contested and varies across jurisdictions, but the conservative compliance posture treats AR face processing as biometric and applies the state law requirements. The advertiser obligations include consent infrastructure that captures informed consent before AR processing begins (notice of the processing, the purpose, the retention, the data subject rights), retention and destruction policies that specify how AR processing data is handled, security measures appropriate to biometric data, and documentation that supports defense against claims. The platform-side compliance through Snapchat does not exempt the advertiser; the advertiser inherits joint obligations through the campaign relationship. The compliance practice should be coordinated with the platform's own framework but should not depend solely on the platform's compliance. For broader state privacy law framework see the US state privacy laws guide and the US compliance reference .

How does Snapchat's age-gating system actually work, and where are the gaps that beauty brands must close themselves?

Snapchat's age-gating system operates through layered mechanisms with documented limitations that affect beauty brand compliance posture. The base layer is age confirmation at signup. Users entering Snapchat for the first time confirm a birth date through the signup flow, and Snapchat applies the confirmed age to the user's account properties. Users under 13 are not permitted to use Snapchat per the platform's terms of service, and the platform applies enforcement against accounts identified as under-13. The age confirmation is self-reported and has documented evasion patterns. The verification layer for sensitive content uses additional age verification mechanisms in specific contexts. The mechanisms include facial age estimation, document-based verification (where applicable), and behavioural signals that indicate age. The verification layer applies primarily to age-restricted content categories (alcohol, gambling-adjacent, certain mature content) rather than to general advertising. Beauty AR Try-On is typically not subject to the verification layer's full requirements. The platform-side targeting controls allow advertisers to set minimum age targeting parameters and exclude users below specified ages. The targeting controls are based on the platform's age signal which derives from confirmed age and behavioural validation. The controls are useful for excluding users below the minimum age the advertiser is comfortable with, but the underlying age signal has known accuracy limitations particularly for users in the 13-17 range. The platform-side content suitability controls allow advertisers to set content suitability parameters that affect ad placement near specific content categories. The controls reduce adjacency to sensitive content but do not directly address user-side age verification. The gaps in the system include several specific patterns that beauty brands should address through their own compliance practice. The first gap is the under-13 leakage from accounts where the user falsely confirmed age above 13 at signup. The leakage is estimated to be material based on regulatory enforcement findings against various platforms, and Snapchat-specific estimates suggest that under-13 users represent a small but non-trivial portion of accounts. Brands cannot rely on the platform's age policy to exclude all under-13 users. The second gap is the 13-15 age range exposure where users are technically permitted on the platform but may not be appropriate audience for certain beauty content. The minimum-age targeting controls help here but rely on the platform's age signal. The third gap is the targeting parameter precision where age-based targeting interacts with other parameters in ways that can produce younger audiences than the advertiser intends. Lookalike audiences, interest-based targeting, and engagement-based optimization can shift the effective audience below the stated age target. The fourth gap is the engagement-pattern feedback where ads that produce strong engagement among younger users may be optimized for further delivery to similar audiences through Snap's algorithmic systems. The optimization can produce younger effective audiences than the campaign's stated targeting. The compliance practice to close the gaps includes targeting parameters set conservatively above the platform's minimum (typically 18+ for beauty AR campaigns), audience definitions that exclude signals correlated with younger users, creative that does not produce age-appeal signals to younger users, engagement monitoring for under-target indicators, and documentation of the compliance posture. The practice should be documented and applied consistently rather than ad-hoc per campaign. The cumulative effect of the practice is that the advertiser closes the gaps in the platform's age-gating system through the advertiser's own campaign design, producing a compliance posture that does not depend solely on the platform's framework. For broader teen-advertising framework see the Kids and Teens Compliance guide .

What specific beauty brand AR Try-On compliance failures have surfaced through enforcement or litigation, and what do they signal about regulatory priorities?

Beauty brand AR Try-On compliance failures have surfaced through several channels including FTC enforcement, state attorney general action, BIPA class action litigation, EU regulatory action, and platform-side investigation findings through 2020-2026. The cumulative record signals regulatory priorities that beauty brands should treat as predictive of future enforcement. The FTC enforcement record includes actions against beauty and adjacent brands for inadequate disclosure of AI-generated or AR-modified imagery, claim substantiation failures where AR effects produced results not achievable with the actual product, and targeting violations where campaigns reached audiences below the brand's stated targeting. The actions have produced consent orders requiring affirmative compliance practices, civil penalties for repeated violations, and ongoing FTC monitoring. The state attorney general record includes parallel actions to FTC enforcement and state-specific actions on biometric processing, age-targeting violations, and consumer protection concerns. State AGs have produced settlements requiring affirmative practices and material monetary outcomes. The BIPA class action record includes multiple actions against beauty brands and platforms for biometric processing without informed consent, retention failures, and security inadequacies. The actions have produced material damages awards through settlement and verdict, with the scale reflecting BIPA's statutory damages framework. The EU regulatory record includes data protection authority action under GDPR on biometric processing without adequate legal basis, consent failures, and data subject rights violations. The actions have produced GDPR fines (up to 4% of global turnover) and ongoing supervisory action. The platform-side investigation record includes Snap-specific and broader platform investigations on age-targeting failures, targeting violations affecting minors, and content moderation issues affecting young audiences. The investigations have produced platform-side enforcement against advertisers including campaign restrictions, account holds, and partnership tagging restrictions. The cumulative record signals several regulatory priorities. The first priority is biometric processing with strong attention to consent infrastructure, retention practices, and security measures. The priority has been consistent across enforcement bodies through 2018-2026 and shows continuing strength. The second priority is age-targeting and youth-audience exposure with strong attention to actual-knowledge analysis, directed-to-children determinations, and effective audience composition. The priority has elevated through 2022-2026 as multiple state and federal frameworks have expanded youth protection. The third priority is disclosure of AI-modified or AR-modified imagery with strong attention to consumer perception, claim substantiation, and material connection. The priority has emerged through 2023-2026 as AI and AR techniques have expanded in advertising. The fourth priority is consumer protection in advertising claims with strong attention to AR effect representation, product claim substantiation, and consumer expectation. The priority has been consistent and shows continuing strength. Beauty brands should treat the priorities as predictive of future enforcement attention. The structured compliance posture includes biometric processing compliance through state and federal frameworks, age-targeting compliance through COPPA and platform mechanisms, disclosure compliance through FTC and platform requirements, and consumer protection compliance through claim substantiation and presentation. The compliance practice should be documented and tested against the established failure patterns. For consumer protection framework see the Healthcare and Personal Care Compliance guide and the Policy Change Tracker .

What does a structured beauty brand compliance workflow look like for Snapchat AR Try-On campaigns?

The structured compliance workflow operates as a documented end-to-end practice covering campaign concept, creative production, audience definition, technical implementation, monitoring, and audit. The workflow should be applied consistently across all Snap AR Try-On campaigns rather than treated as ad-hoc per campaign. The campaign concept phase establishes the campaign's product positioning, target audience, regulatory considerations, and compliance baseline. The phase identifies the applicable frameworks (COPPA, state biometric laws, EU GDPR, FTC consumer protection, Snap platform policy), the specific obligations under each, and the compliance baseline the campaign will meet. The phase documents the compliance approach before creative production begins. The creative production phase produces the AR Try-On creative with compliance integrated into the design. The phase includes disclosure design for AI-modified or AR-modified imagery (clear disclosure that the effect is computer-generated and not achievable with the actual product), claim substantiation for product claims made in conjunction with the AR effect (the AR effect should support rather than misrepresent the actual product), age-appeal review (the creative should not produce directed-to-children signals), and brand safety review (the creative should meet the brand's safety standards for the platform audience). The phase produces creative that supports compliance rather than retrofitting compliance to finished creative. The audience definition phase produces the targeting parameters with compliance posture built in. The phase includes minimum age targeting above the platform's baseline (typically 18+ for beauty AR), exclusion parameters for under-target signals, audience definitions that exclude lookalike or interest-based targeting correlated with younger users, and platform-supplied content suitability controls. The phase documents the audience approach. The technical implementation phase covers the consent infrastructure, retention mechanics, and security measures for biometric processing. The phase includes consent capture before AR processing begins (notice of processing, purpose, retention, data subject rights), retention schedule documentation (how long data is retained, why, when it is destroyed), destruction mechanics (technical implementation of data destruction at retention end), and security measures (appropriate to biometric data sensitivity). The phase coordinates with platform-side compliance through Snap's infrastructure but does not depend solely on platform compliance. The monitoring phase tracks campaign delivery and compliance signals. The phase includes audience composition monitoring (verifying delivered audience matches targeting), engagement pattern review (identifying under-target signals), compliance signal monitoring (any platform notices, regulatory developments, audience feedback indicating compliance concerns), and response triggers (defined thresholds that initiate remediation workflow). The phase produces ongoing visibility into compliance posture. The audit phase aggregates campaign outcomes and compliance learnings. The phase includes post-campaign compliance review (verification that the campaign met the documented compliance posture), pattern analysis (identification of systemic issues across multiple campaigns), structural improvements (changes to the workflow based on audit findings), and documentation maintenance (updated processes, templates, and training materials). The phase produces ongoing improvement to the workflow. The workflow should be supported by tooling that automates routine compliance checks, documentation that captures the compliance posture per campaign, training that ensures consistent application across the brand's marketing organization and agency partners, and governance that ties compliance outcomes back to broader marketing accountability. For workflow tooling and aggregate practice see the AI Compliance Audit and the Kids and Teens Compliance guide .

Snapchat AR Try-On Ads 2026: Beauty COPPA Crossover

Snapchat AR Try-On Ads 2026: Beauty Brands and the COPPA Crossover

Where Beauty AR Collides with COPPA

Beauty brands have invested heavily in Snapchat AR Try-On through 2020-2026 because the format produces measurable conversion uplift, supports product discovery for shade-dependent categories, and aligns with Snap's audience demographic position. The investment produces a compliance crossover that beauty brands frequently underestimate — the format processes face data, the platform's audience skews young, and the underlying campaign mechanics produce COPPA, state biometric, and EU GDPR exposure that requires structured compliance posture beyond what the platform's own framework provides.

The crossover is consequential because each of the underlying frameworks operates with significant enforcement infrastructure. COPPA produces FTC and state AG enforcement against advertisers that meet the directed-to-children or actual-knowledge tests. State biometric privacy laws (BIPA most prominently) produce class action litigation with statutory damages frameworks. EU GDPR produces fines up to 4% of global turnover for biometric processing failures. The cumulative regulatory exposure is material for beauty brands at scale, and the structured compliance posture is non-optional rather than discretionary.

"Operators are responsible for COPPA compliance whether they actually know they are collecting personal information from children under 13 or whether the service is directed to children. The actual-knowledge analysis includes constructive knowledge from campaign signals.
— FTC framing on COPPA actual-knowledge standard, consistent through 2026 enforcement"

This guide covers how Snapchat AR Try-On actually processes face data, the COPPA framework applied to AR beauty, state biometric laws and AR face processing, age-gating mechanics and their limits, and the structured beauty brand compliance workflow. For broader kids-and-teens framework see the Kids and Teens Compliance guide and the Policy Change Tracker.

How Snapchat AR Try-On Actually Processes

Snapchat AR Try-On processing runs through Snap's Lens infrastructure with specific mechanics that produce the format's compliance profile. The processing has on-device and platform-side components.

Processing Components

Component	Processing Location	Data Implication
Face detection and landmarks	On-device through Snap Lens SDK	Face geometry data; biometric within state law definitions
Expression and movement tracking	On-device	Behavioural data; supports interactivity
AR effect rendering	On-device	Creative output; the rendered try-on visual
Engagement and interaction telemetry	Platform-side	Aggregated metrics; supports ad measurement
Content sharing if user shares modified content	Platform-side and user-initiated	Modified content uploaded to platform if shared

Compliance Profile

On-device processing reduces some data transmission risk but does not eliminate biometric processing legal characterization.
Engagement telemetry reaches platform infrastructure and connects to broader Snap data systems.
Modified content sharing creates additional data flow when users share AR-modified content.
Conservative legal interpretation treats AR face processing as biometric for state law purposes regardless of processing location.

For format context see the Snapchat Advertising Guide.

COPPA Framework Applied to AR Beauty

COPPA applies to operators of online services directed to children under 13 or that have actual knowledge of collecting personal information from children under 13. The application to beauty AR campaigns requires deliberate analysis.

COPPA Application Tests

Directed-to-children test: Multi-factor analysis of subject matter, visual content, music, language, model age, child celebrities.
Actual-knowledge standard: Includes constructive knowledge from campaign signals indicating under-13 engagement.
Effective audience analysis: Considers delivered audience composition rather than stated targeting alone.
Joint responsibility: Advertiser and platform both face obligations under different aspects of the framework.

Compliance Implications for Beauty AR

Creative review must avoid producing directed-to-children signals.
Targeting review must exclude signals correlated with under-13 audiences.
Engagement monitoring must identify under-13 indicators.
Documentation must support compliance posture in regulator inquiry.
Verifiable parental consent required if processing children's personal information.

For COPPA framework deep-dive see the Kids and Teens Compliance guide.

State Biometric Laws and AR Face Processing

State biometric privacy laws form a multi-state framework that affects AR face processing in Snapchat Try-On ads. The framework's complexity stems from variation in state-level approaches.

Key State Laws

Law	State	Key Requirements	Enforcement
BIPA	Illinois	Written consent; retention schedule; security; no sale	Private right of action; statutory damages
CUBI	Texas	Consent before capture	Texas AG
H.B. 1493	Washington	Consent for collection	Washington AG
Various biometric provisions	NY, CO, VA, CT, UT, others	Sensitive data treatment; consent; opt-out	State AGs; varies by state
EU GDPR	EU member states	Article 9 special category; explicit consent or legal basis	Data protection authorities; up to 4% global turnover

Conservative Compliance Posture

Treat AR face processing as biometric for state law purposes regardless of processing location.
Consent infrastructure capturing informed consent before AR processing begins.
Retention and destruction policies specifying handling of AR processing data.
Security measures appropriate to biometric data sensitivity.
Documentation supporting defense against claims and regulator inquiry.

For broader state privacy framework see the US state privacy laws guide.

Age-Gating Mechanics and Their Limits

Snapchat's age-gating system operates through layered mechanisms with documented limitations that beauty brands must close themselves through campaign design.

Platform Mechanisms

Self-reported age at signup — base layer with known evasion patterns.
Verification layer for specific sensitive content categories.
Targeting controls using platform age signals.
Content suitability controls for placement adjacency.

Known Gaps

Gap	Mechanism	Closing Practice
Under-13 signup leakage	Users falsely confirmed age above 13	Conservative targeting (18+); creative review for child-appeal signals
13-15 exposure	Permitted users but not appropriate audience	Higher minimum targeting; audience exclusion parameters
Targeting precision	Other parameters shift effective audience younger	Audience definition review; exclude correlated signals
Engagement-pattern feedback	Optimization toward younger engagers	Optimization parameter review; engagement monitoring

For compliance practice see the Kids and Teens Compliance guide.

Beauty Brand Compliance Workflow

The structured compliance workflow operates as a documented end-to-end practice covering six phases. The workflow should be applied consistently across all Snap AR Try-On campaigns.

Workflow Phases

Campaign concept: Identify applicable frameworks (COPPA, state biometric, GDPR, FTC, Snap policy); document compliance baseline.
Creative production: Disclosure of AR modification; claim substantiation; age-appeal review; brand safety review.
Audience definition: Minimum age above platform baseline; exclusion parameters; documentation.
Technical implementation: Consent capture; retention schedules; destruction mechanics; security measures.
Monitoring: Audience composition; engagement patterns; compliance signals; response triggers.
Audit: Post-campaign review; pattern analysis; structural improvements; documentation maintenance.

Workflow Support

Tooling automating routine compliance checks.
Documentation capturing compliance posture per campaign.
Training ensuring consistent application across organization and agency partners.
Governance tying compliance outcomes to marketing accountability.

For workflow tooling and aggregate practice see the AI Compliance Audit.

Beauty AR Compliance Checklist

[ ] Applicable frameworks identified — COPPA, state biometric, GDPR, FTC, Snap policy
[ ] Creative reviewed against directed-to-children signals
[ ] Disclosure of AR or AI modification in creative
[ ] Claim substantiation supports AR-rendered effect
[ ] Audience targeting set at 18+ minimum for beauty AR campaigns
[ ] Audience exclusion parameters for under-target signals
[ ] Lookalike and interest-based parameters reviewed for younger-skew
[ ] Consent infrastructure captures informed consent before AR processing
[ ] Retention schedule documented with destruction mechanics
[ ] Security measures appropriate to biometric data
[ ] Audience composition monitored against intended targeting
[ ] Engagement patterns monitored for under-target indicators
[ ] Post-campaign compliance audit completed

For comprehensive beauty brand compliance audit run the AI Compliance Audit and reference the Kids and Teens Compliance guide.

Frequently Asked Questions

For ongoing tracking of biometric privacy law, COPPA, and platform policy updates, see the Policy Change Tracker.

Don't miss the next policy change.

Subscribe to the Policy Tracker — get weekly digests or instant Pro alerts across all 8 platforms. Or try our free Keyword Risk Checker first.

Subscribe Free

Report Keywords — Run AI Compliance Audit

#Snapchat Ads#AR Try-On#Beauty#COPPA#Biometric Data#Age Gating#Ad Compliance#Kids and Teens#Brand Safety#Advertisers#2026 Policy#Compliance Guide 2026

Share This Report

Tweet Share

Snapchat AR Try-On Ads 2026: Beauty Brands and the COPPA Crossover