Geo
May 26, 20261
50%
California's Operating System Age Verification Law Set to Launch in 2027, Raising Privacy Concerns
California's Digital Age Assurance Act will require major operating systems to collect user age information starting January 1, 2027, classifying users into age brackets that apps must recognize. Though the law requires only self-attestation rather than ID verification, privacy advocates worry companies will demand more personal data in practice, and similar laws may spread to other states and potentially nationwide.
Quick Facts
Who
California state assembly member Buffy Wicks
What
Operating systems required to collect user age during device setup
When
January 1, 2027 (California law takes effect)
Where
California (primary jurisdiction)
- Operating systems required to collect user age during device setup
- Age bracket information shared with applications
- Application developers gain legal knowledge of user age ranges
- Similar bills advancing in other states
- Proposed federal Parents Decide Act could expand age verification nationwide
California will become the first US state to require operating systems to collect user age information when the Digital Age Assurance Act (AB 1043) takes effect on January 1, 2027. The law mandates that Windows, macOS, Android, ChromeOS, and Linux distributions ask users for their age during device setup and share an age bracket signal with applications running on those systems. Users will be classified into one of four age ranges: under 13, 13-16, 16-18, or over 18.
The legislation aims to protect minors by ensuring app developers have "actual knowledge" of user age ranges, creating legal obligations for different treatment of minors under existing laws such as the federal Children's Online Privacy Protection Act (COPPA). This could affect dating, gaming, and social media applications. However, the law currently requires only self-attestation of age rather than government ID verification, a deliberate privacy protection according to data privacy attorney Nichole Rocha, who represents Children Now, the organization that backed the measure.
Despite the broad geographic origin of the law, its impact will likely extend far beyond California's borders. Aaron Mackey, deputy legal director at the Electronic Frontier Foundation, warns that technology companies rarely build separate operating systems for different states, meaning the age verification system will "likely be rolled out for everyone who uses [operating systems], including the billions of folks outside of California." This has raised concerns among privacy advocates, open-source developers, and some lawmakers about the future of computing.
California is unlikely to remain the only state with such requirements. Similar bills are advancing in other states, while the proposed federal Parents Decide Act could expand age verification at the operating system level nationwide if passed. Privacy advocates express concern that while the law does not mandate government ID verification, tech companies in practice may require more personal information than the law technically requires, potentially involving credit cards or biometric verification depending on how future laws evolve.
Why This Matters
This law will fundamentally change how operating systems function and how apps serve content to users across the US, even beyond California. It establishes a precedent for government-mandated age verification at the OS level that could influence how companies collect and use personal data. For consumers, understanding these requirements is critical because tech companies may go beyond legal minimums and demand sensitive personal information like biometric data or credit cards. For businesses developing apps or operating systems, compliance with this and similar emerging state laws will become operationally complex and costly.
Timeline & Sources
May 26, 2026
WireReddit article published discussing California's upcoming age verification requirements
Jan 1, 2027
WireCalifornia Digital Age Assurance Act (AB 1043) takes effect