Preparing For GDPR As An Affiliate
Data collection has become an essential part of the operations of most organisations, especially those operating online. While it is effective, it has also given rise to a number of concerns surrounding how that data can both be misused, and become the target of theft.
This GDPR is a new legislative agenda that aims to improve the safety of individuals’ data, as well as regulate how that data is collected, processed and used.
As of the 25th of May, businesses of all shapes and sizes, will need to ensure that they are fully compliant with this new legislation if they serve customers (have traffic) originating from the EU – and affiliates are no exception.
The purpose of affiliate sites is to drive traffic to merchants and operators in order to earn a commission. The more savvy of affiliates, will collect data in numerous ways in order to be able to remarket to their users, if not only to understand their users better, improve customer journey, and in turn, conversion rates.
The data collected on those users most likely falls under the realms of GDPR, and with some heavy penalties of up to €20,000,000, or 4% of annual turnover, it isn’t just another ‘inconvenience’ that should be ignored.
How to Ensure Compliance
Understand what Personal Information is
Personal information includes obvious data such as name, email address and phone number. Many affiliates won’t collect this kind of data, unless they at least have a newsletter subscription form on their website. However, it’s likely that all affiliates have some kind of website tracking/analytics software installed on their website.
Under GDPR’s definition of personal data, it includes “any information relating to an identified or identifiable natural person”.
It then continues to explain that “an identifiable natural person is one who can be identified, directly or indirectly, in particular by reference to an identifier such as a name, an identification number, location data, an online identifier or to one or more factors specific to the physical, physiological, genetic, mental, economic, cultural or social identity of that natural person”.
Note the use of the terms “identification number”, “location data” and “online identifier”. Under GDPR, collection of IP addresses and the storing of cookies could be deemed to be deserving of consent from the individual prior to collection, if that data could be used to identify them. Note also, that it doesn’t necessarily mean personally identifying them – if cookies are being used to create a ‘profile’ on an individual, which is being processed on subsequent visits or across websites, then that is deemed as identifying them.
The key to the GDPR’s vision is the role of consent. Consent must be obtained from all individuals prior to collecting data on them that could be used to identify them “directly, or indirectly”, as well as an explanation as to the purpose for processing that data.
Consent must be “clear and distinguishable from other matters” and “provided in an intelligible and easily accessible form”. This means that it can no longer be hidden away in the midst of a website’s T&Cs, and in fact it must be entirely separate and written in clear and plain language.
All affiliates should review their privacy policies (or create one if they don’t already have one), and ensure it complies with GDPR. The request for consent must explain what data is being collected, why it’s being collected, how it will be used, and how long it will be kept for.
If affiliates’ privacy policies and “opt-in” practices don’t satisfy the condition of GDPR, then reconfirmation or re-permission must be obtained.
Users should also have the ability to easily opt-out or close their account with immediate effect if they no longer wish to be subscribed or for their data to be used. It must be “as easy to withdraw consent as it is to give it”.
What does this mean for cookies, and website analytics software?
If the cookies set by your analytics software are collecting data that will be used across websites (i.e. for advertising), then you must obtain consent from users before using it. The standard Google Analytics code doesn’t have Advertising Features turned on, and so technically it doesn’t even fall under the ‘Cookie Law’.
Affiliates should limit the features and data they collect to an absolute minimum. E.g. if they don’t need or use demographic reports in Google Analytics, then they should disable Advertising Features. Relying on consent should be avoided at all times where possible.
Provide Access to Data
Individuals will have the right to request a copy of the data held on them under GDPR. Requests must be fulfilled within 1 month, and the data supplied free of charge, in an easily accessible, understandable, and electronic format. They also have the right to correct or amend any information they see as inaccurate.
Affiliates should therefore prepare for the eventuality that one of their users exercises such a request.
Right To Be Forgotten
Individuals will also have the power to request that any information held on them be deleted. This will most certainly include personally identifiable data held in affiliates’ databases and 3rd party tools, but will also include any data which is ‘linked’ to from affiliates’ systems. For example, Google Analytics has a feature allowing the linking of User IDs and tracking cookies. The purpose is to track users across devices, and count them as the same user, rather than 2 or more unique users. Google have announced a tool which allows deletion of any data linked to such User IDs.
Security should be a top priority anyway, even a before GDPR was on the horizon. Nevertheless, affiliates should review their website security and ask themselves what they are doing to prevent a breach, as well as the ways in which data could be stolen/abused in the event of a breach. Historically only passwords were encrypted, however there is now more of a case than ever to encrypt other data too.
If an affiliate is unfortunate enough to suffer a breach, they will need to make the appropriate Data Protection Authority (DPA) aware of it. All organisations have 72 hours to report the breach, and organisations acting as data processors will be required to notify their customers (data controllers).
Appoint a Data Protection Officer
A DPO will only be required if your organisation handles a large volume of data, or is involved in monitoring this data on a large scale. In most cases this doesn’t apply to affiliates, however, they will still need to act responsibly, review their internal record keeping, and ensure that consent and data collected is auditable.
Be Paranoid about Privacy
Under the GDPR, failure to implement adequate precautions when it comes to data protection and privacy will result in the most serious penalties they have to offer. And this doesn’t only relate to online privacy.
Affiliates should review the existing safeguards they have in place to prevent data getting into the wrong hands, both online and offline i.e. in their home office or work premises. Staff should be restricted to accessing information that is absolutely critical to their role and thought should be given to what physical data would be at risk in the event of a physical break-in.
This article contains general information for affiliates to make their own informed decisions about the upcoming GDPR. You must not rely on the information in this article as an alternative to professional legal advice. The article has been contributed by Pavlos Sideris of Cashbacker – the leading gambling cashback community.
SLOTS TEMPLE GETS LICENSED IN UK, FREE SLOTS SITE NOW OFFERING CASH PRIZES
Slots Temple is first affiliate to win UKGC licensing, allowing it to offer real-money prizes for slots tournaments
Free online slots platform Slots Temple has become the first affiliate site to be awarded a UK Gambling Commission licence. That’s good news for slots fans. It means the company can now legally give out cash prizes for winners of its free-to-play tournaments.
Slots Temple offers free casino games and tournaments to players over the age of 18, where they can compete against others to get to the top of the leaderboard and win prizes.
The platform hosts more than 10,000 slots from some of the world’s best casino games studios, including Push Gaming, Relax Gaming ReelPlay and 4ThePlayer. The difference is, Slots Temple does not take any stake money. All its slots are completely free to play, no catch.
Instead, the company generates affiliate revenues when players sign up to real-money online casinos by clicking through banner advertising, although there is no obligation to do so.
Until now, Slots Temple has been unable to offer real-money prizes, just merchandise. But now, players can play their favourite slots while competing to win cash prizes of up to £5,000.
As well as cash prizes, Slots Temple will be launching a range of new tournament formats. These include Turbo Tournaments, which run for a short time only, and Risk Tournaments, where players are given a fixed balance and can adjust their bet size on each spin.
Currently, tournaments run daily, as well as weekly and monthly, so there’s plenty of opportunity to win those points and work your way up the leaderboard.
Fraser Linkleter, Director at Slots Temple said: “It’s always great to achieve an industry first, and we’re proud to be the first affiliate site to receive UKGC licensing. Licensees are held to high regulatory standards, and we believe this demonstrates our long-held commitment to social responsibility. But above all, the licence adds excitement and value for our users, who get to compete for cash while paying nothing up front. And what’s not to like about that?”
Largest Dutch poker affiliate complies with regulatory changes post introduction of new Dutch gambling law
PokerKamers.nl, one of the Netherlands’ first and largest poker affiliate sites, introduced a new policy that fully complies with the regulatory changes that came in effect after the Dutch Gambling Authority (Kansspelautoriteit/ KSA) introduced its set of rules for operators to offer legal poker in the Netherlands.
As of October 2021, PokerKamers.nl, a Dutch spoken website existing since 2006, launched its new website. The founders introduced a policy to comply with new regulations, after the new Dutch gambling law took effect on October 1st of 2021.
“Being fully compliant meant saying farewell to online poker sites that did not receive a license to legally operate in the Netherlands; this includes renowned sites like partypoker and bwin, as parent company Entain’s initial application got rejected,” said PokerKamers.nl founder Joris Koningsberg.
Entain plc, one of the world’s largest gambling/ gaming, poker, and betting operators, did not receive a license to offer their brands in the Netherlands, including their online poker sites, because they continued to accept Dutch customers after the market closed due to the Dutch Remote Gambling Act (Kansspel op Afstand/ KOA) on April 1st of 2021.
“It was an easy decision, because the only other option was working with illegal poker sites. And besides, one of our favorite partners (ed: Hillside plc’s bet365) did receive their license,” said Joris Koningsberg.
Meanwhile, all Entain brands now comply to the Dutch Gambling Authority’s cooling off period and the company is expected to obtain a license in the first half of 2022.
With the decision to be fully compliant to Dutch law and regulations, PokerKamers.nl also improved the overall quality of its website. A new look and feel, a comprehensive audit of all existing pages and many new, were completed before the launch of their new website.
“And there is more,” said PokerKamers.nl co-owner Oscar Oosterling, “We have added a poker course, several tools including a tournament filter and the M-Calculator, and poker cheat sheets. And our to-do list is only getting bigger.”
PokerKamers.nl is a website to keep on your radar the next few months. New gambling licenses will be issued, and this website will only list the very best of them. You can expect continuous updates and new features that improve the overall quality and user experience. And with PokerKamers.nl being a compliant poker affiliate, you can rest assured that you’re not going to be misled into signing up with shady – or illegal poker sites.
GiG adds Matching Visions to its growing list of partners for GiG Comply
Gaming Innovation Group Inc. (GiG) has signed an agreement with Malta-based affiliate network, Matching Visions, recently acquired by Acroud AB, for the provision of its B2B marketing compliance software, GiG Comply.
GiG’s automated marketing compliance solution allows operators and affiliate networks like Matching Visions to scan web pages for content, links and iGaming code red words. The rules engine based software analyses snapshots from advertising campaigns and provides insights in real-time of the content, which is being used by affiliates to promote operators brands.
As more markets regulate, the excelled need for brands to have a strong digital presence has resulted in heightened advertising regulations. It’s now more important than ever that operators and affiliate networks alike invest in marketing compliance software.
GiG Comply will support Matching Visions with its compliance strategy, helping to ensure that responsible gaming measures are visible on relevant pages, and terms and conditions are correct and up to date throughout all markets, it operates in.
Jonas Warrer, CMO at GiG, said: “ We look forward to supporting Matching Visions in its efforts to enhance its affiliate marketing compliance. The excelled demand for GiG Comply is a clear sign that more and more affiliates like Matching Visions are placing strong value on creating a more responsible and sustainable gaming movement – this makes us very proud.
Dennis Dyhr-Hansen, CEO at Matching Visions, said: It’s extremely important for us to ensure we remain 100% compliant no matter which geo or brand we are sending traffic to. We want to be completely transparent to all brands that work with us that we take compliance very seriously and will do what it takes to be at the forefront of compliance. We are proud to partner up with GiG Comply to make this happen!
Fiat & Crypto: King Billy players get the best of both worlds
See how the casino players can deposit in crypto and play in fiat. Since the dawn of e-gaming robust...
Records tumble as iGB Affiliate London grows attendance by 40% with delegates travelling from 101 nations
The 2023 edition of iGB Affiliate London has broken all records with more attendees travelling from more countries than...
Casino Guru Awards invites you to watch the live ceremony on February 22
The Casino Guru Awards Ceremony is just a week away with the grand date set for Wednesday, February 22...
Representatives of the Ukrainian IBOX BANK and LEO IPS took part in the ICE London 2023 conference
On February 7-9, the management of IBOX BANK and the LEO International Payment System (IPS) participated in one of...
Soft2Bet launches a new affiliate management system ReferOn
A new, feature-filled affiliate management system powered by the platform provider Soft2Bet, a top-notch online platform provider has recently...
Arsenal legend Ray Parlour and Southampton’s Francis Benali MBE confirmed for Partners.io stand at iGB Affiliate London
Visitors to the Partners.io stand (L50) at iGB Affiliate London (8th – 11th February, show open days 9th –...
AffPapa surpasses 500 registrants for iGaming Club London
iGaming Club London, the latest in a series of global events powered by AffPapa, has exceeded all expectations after...
FAVBET switches to Single Wallet for increased player comfort and smoother operations
FAVBET is doing away with the practice of creating several wallets in the player’s personal account on favbet.com...
Ad Fraud and Affiliate Marketing Strategies: How Online Gaming Companies Can Transform Their ROI
By: Richard Metcalf, Global VP, Sports Betting & Online Gaming, TrafficGuard Betting companies can adopt cutting-edge technology and...
“Cheer for those who cheer for us”: FAVBET calls on Ukrainian football fans to support Ukraine’s allies at the 2022 World Cup
November 20 marked the kickoff of the 2022 FIFA World Cup in Qatar. An event long anticipated by football...
News5 years ago
Paddy Power departs the Italian market
Affiliate Success2 years ago
Blexr has been crowned Best Casino Affiliate at this year’s IGB Affiliate Awards
News6 years ago
Use of Social Media for Online Gambling Affiliates
Affiliate Announcements4 years ago
How to Stand Out on Georgia’s Profitable Gambling Market? Leading Experts to Discuss Best Practices at Georgia iGaming Affiliate Conference
Affiliate Success6 years ago
Affiliate Interviews: CasinoDaddy (Mathias, Anton, and Erik Joelsson)
News4 years ago
Casino Games for Real Money – Choosing One to Play
News5 years ago
Henrik Persson Ekdahl announces sale of stake in Catena Media
Affiliate Success6 years ago
Exclusive Interview with Christoph C. Cemper Founder & CEO of LinkResearchTools and Link Detox