also Rem, from what i'm reading, the whole COPPA revolves around websites with users below 13 y/o
The Children's Online Privacy Protection Act, effective April 21, 2000, applies to the online collection of personal information from children under 13.
However, they never got any proof of it. And the website never allowed a -13 child to register. I'm okay with them acting due to suspicion, but they aren't directed nor pretend to provide service to -13 kids. THat's why they save the information that he agreed to use an unstransferable service that forces you to be 13 or older.
However it may be one of those laws that get a mass reaction in the US when not complied, even if your service wasn't in the scope of the COPPA. So I guess I can understand why they locked him out as soon as they spotted a vague clue.