The question is, how are you sure there's control to make a reasonable effort to verify that consent is given or authorized by the holder of parental responsibility? Also, how can you take into consideration available technologies? Here we suffer from the relationship between data collection and the rest of the legal system. Within the member states, apart from differences in considering whether a child is an adult or not, we have divergent approaches to contract law. This is why the GDPR says that the paragraph I mentioned shall not affect the contract law of those member states concerning the validity or the effect of a contract in relation to a child. So in the workplace you may have a different approach to the validity of the relevant contract for employment and the rules on data protection. This is part of our contradictions.
On June 13th, 2017. See this statement in context.