Compliance Updates
EGBA Demonstrates Commitment To GDPR With Sectoral Code Of Conduct For Data Protection
New Code establishes rules and best practices to strengthen data protection in the online gambling sector and is one of Europe’s first sector-specific initiatives to support compliance with the GDPR.
BRUSSELS, 10 June 2020 – The European Gaming and Betting Association (EGBA) has published a Code of Conduct on data protection which establishes dedicated sector-specific rules and best practices to ensure compliance with the EU General Data Protection Regulation 2016/679 and promotes the highest standards of data protection in the online gambling sector.
The Code of Conduct on Data Protection in Online Gambling sets long-term data protection standards for Europe’s online gambling sector and is intended to complement and reinforce the sector’s compliance with the GDPR. The Code is one of Europe’s first ever sector-specific self-regulatory initiatives to support compliance with the GDPR. The Code is part of EGBA’s wider efforts to drive standards in the online gambling sector and is in accordance with the GDPR, which encourages the use of sector-specific codes to support the proper application of its provisions[1].
The Code introduces specific measures and best practices on:
- Enhancing portability rights – including rules to enable customers to transfer their personal data from company to company in an easier and secure way (including rules for player account registration, transactions history, marketing preferences, etc).
- Supporting transparency – specifying what needs to be contained in a company’s privacy policy and which are the possible exceptions to the transparency principle, in view of the specificities of the sector.
- Protecting against breaches of personal data – online gambling companies are required to introduce a plan to prevent and/or mitigate against breaches of personal data.
- Establishing VIP accounts – how companies should establish player accounts for “VIP” customers in a way which respects privacy and the use of personal data.
- Safer gambling – how companies should balance a customer’s privacy rights against the need to protect them from problem gambling.
- Direct marketing – guidance on how to protect customer data during direct marketing and to prevent self-excluded customers from receiving direct marketing.
- Detecting fraud – measures to prevent fraud and ensure data is used to comply with applicable laws.
All EGBA members will adhere to the Code and it is also open for signature to other online gambling companies licensed in the EU/EEA. Compliance with the Code will be monitored by an independent third-party monitoring body.
In line with the requirements of the GDPR, the Code has now been submitted to the Maltese Data Protection Authority for formal approval of the Code’s compliance with GDPR. This is a process which involves data protection authorities in other EU countries, and the European Data Protection Board, and can last between 18-24 months.
“On the 2-year anniversary of the GDPR, issues around data protection, privacy and the use of personal data are still a concern for many European citizens. That’s why we’re pleased to introduce this new code which demonstrates the online gambling sector’s commitment to protecting the personal data of our 16.5 million customers and supporting the success of the GDPR. We’re pleased to be one of Europe’s first industry sectors to introduce a self-regulatory code which supports compliance with GDPR. Data, and how it is used, is playing an increasing important role in how citizens and business interact online – and the online gambling sector is no different. This code outlines how online gambling companies should ensure their customers understand how their personal data is being used and provides important guidance on how companies should use personal data in their interactions with customers, including how they identify and address problem gambling behavior in their customers.” – Maarten Haijer, Secretary General, EGBA.
[1] Article 40, General Data Protection Regulation 2016/679.
Powered by WPeMatico
Reading Time: < 1 minute
The Danish Gambling Authority has called attention to FATF’s (Financial Action Task Force) updated lists of high-risk jurisdictions: the Grey List (jurisdictions under increased monitoring) and Black List (call for actions). Among other things, gambling operators must include FATF’s lists of high-risk jurisdictions when risk assessing players.
Jurisdictions listed on the Grey List:
Algeria, Angola, Bolivia, Bulgaria, Cameroon, the Ivory Coast, DR Congo, Haiti, Kenya, Laos, Lebanon, Monaco, Namibia, Nepal, South Sudan, Syria, Venezuela, Vietnam, the Virgin Islands and Yemen.
Jurisdictions listed on the Black List:
Democratic People’s Republic of Korea, Iran and Myanmar
Gambling operators are required to conduct enhanced customer due diligence (EDD) pursuant to section 17(1) of the Danish AML Act, if a player is assessed to impose a higher risk of the gambling operator being misused for money laundering or terrorist financing.
Gambling operators shall conduct this risk assessment based on Annex 3 to the AML Act (high-risk factors) which includes the FATF high-risk country lists (the so called black list and grey list)
It is not required that gambling operators perform EDD if a country is listed on the FATF’s list. EDD are only a requirement for players from jurisdictions listed in the EU Regulation of High Risk Third Country list pursuant to. 17(2) of the AML Act.
The post Updated FATF Lists of High-risk Jurisdictions appeared first on European Gaming Industry News.
Reading Time: 2 minutes
Soon it may be possible to play bingo via walkie-talkie and on local radios. A bill is currently being considered by the Danish Parliament to introduce a new type of licence for bingo via walkie-talkie and local radio. The Danish Gambling Authority expects the rules to come into force as early as 1 January 2026.
If the bill is passed, providers of walkie-talkie bingo and local radio will be able to apply for a licence from 1 January 2026. The Danish Gambling Authority will update this news article when the rules are finally adopted.
How to apply for a licence
If you want to offer bingo via walkie-talkie or radio, you need a licence from the Danish Gambling Authority. You can expect to apply as early as 1 January 2026.
When applying for a licence, you must use the form “Apply for a walkie-talkie or radio bingo licence” (no. 1-02). The form will be available on the page “revenue-restricted licenses”.
The application form will also be published in a digital version, but it will not be available on virk.dk until January.
The Danish Gambling Authority strives to process all applications as quickly as possible.
As an applicant, you will be assigned a contact person who can guide you through the legislation during the application process. The contact person will generally remain the same throughout the period of validity of your licence.
Report on the first year of offering games
Licences for radio and walkie-talkie bingo are regulated by the Gambling Act and the Executive Order on Online Casino. The legislation sets out a number of requirements for licensed gambling operators. Among other things, the licence holder must complete a report on the first year of offering gambling.
The report is prepared one year after the licence has been put into use and must be sent to the Danish Gambling Authority no later than 14 months after the date when the licence has been put into use.
The licence holder can fill out the report themselves.
The report must account for how the licence holder has provided gambling in accordance with the conditions of the licence and legislation during the past year.
The report template will be available on the Danish Gambling Authority’s website as form no. 1-04.
The post Spillemyndigheden: New licence type coming soon: Bingo via walkie-talkie and local radio appeared first on European Gaming Industry News.
Andrew Jackson
Scientific Games Adds to Information and Security Management Certifications, Continues Setting Global Industry Gold Standard
Reading Time: 2 minutes
Scientific Games’ UK, Channel Islands and Ireland facilities are the latest in the company’s global operations to achieve international certifications, further strengthening its information security framework and commitment to setting the lottery industry’s gold standard for integrity. The newest certifications are from the World Lottery Association and the British Standards Institute, as Scientific Games continues to expand its business serving government-regulated lotteries worldwide.
Scientific Games’ new National Logistics Centre in Warrington, UK serving The National Lottery, SG Studios digital game development center in Jersey, Channel Islands and lottery retailer technology facility in Ireland have earned certification to the WLA’s Level 2 Security Control Standard. This international security standard for WLA members specifies the required practices for an effective security management structure to maintain the integrity, availability and confidentiality of information vital to the company’s secure operation.
All three facilities also earned a Certificate of Registration for Information Security Management System, achieving the International Standards Organization’s ISO/IEC 27001:2022, the world’s best-known standard for information security management systems. This certification confirms that Scientific Games has implemented a comprehensive framework to manage risks related to data security in accordance with internationally recognised best practices and principles.
“Earning these certifications is about much more than compliance—it’s about trust. Our customers and their players rely on us to protect data and uphold the integrity of every transaction. These certifications reflect the dedications of our teams in the UK, Channel Islands and Ireland, and across our worldwide operations, to maintaining the highest standards of excellence when it comes to information security,” said Andrew Jackson, VP of Corporate Responsibility for Scientific Games.
Scientific Games has also achieved international certifications for operational best practices, including Quality Management Systems (ISO: 9001), Environmental Management (ISO: 14001), Occupational Health and Safety (ISO: 45001) and the World Lottery Association’s Responsible Gaming certification.
With operations spanning five continents and serving 150 lotteries in 50 countries, Scientific Games earned its latest information security management certifications following an extensive independent, international auditing process.
The post Scientific Games Adds to Information and Security Management Certifications, Continues Setting Global Industry Gold Standard appeared first on European Gaming Industry News.
-
Andrew Jackson7 days agoScientific Games Adds to Information and Security Management Certifications, Continues Setting Global Industry Gold Standard
-
Eastern Europe7 days ago
HIGHLIGHT GAMES LIVE IN ROMANIA WITH FORTUNA ENTERTAINMENT GROUP
-
Best Solutions for iGaming Industry in Romania 20257 days ago
Soft2Bet Nominated for Best Solutions for iGaming Industry in Romania 2025
-
Australia7 days ago
BetMakers Signs Multi-Year Agreement to Launch CrownBet
-
Latest News4 days agoBoomerang Partners has been included in 3 prestigious industry Awards, which will be presented in January 2026
-
Fernando Di Carlo CEO of Yellow Elephant Studios4 days ago
SCCG Announces Strategic Partnership with Yellow Elephant Studios to Expand Multi-Channel Gaming Content Worldwide
-
Latest News7 days ago
Atlaslive Shortlisted in Three Categories at the European iGaming Awards 2026
-
Balkans6 days ago
Bragg Gaming Wins Online Platform of the Year at BEGE Awards 2025
