Compliance Updates
First and Only GLI-GSF-1 v1.0 Gaming Information Security (GIS) Common Controls Audit Re-Released for Public Comment
Gaming Laboratories International (GLI®) has achieved another milestone, releasing the first and only gaming information security standard, “GLI Gaming Security Framework Module 1 (GLI-GSF-1): Gaming Information Security (GIS) Common Controls Audit.” Now the company has re-released the draft of the module for initial industry-wide comment.
“GLI developed the GSF to address the industry’s strong demand for a comprehensive framework for gaming security,” said Joseph Bunevith, GLI’s Vice President of Government and Regulatory Affairs. “To create the GLI-GSF, we drew on 35 years of knowledge and insights into the gaming industry and conducted a thorough review of global best practices for information security. We worked closely with Bulletproof Solutions and gathered feedback from industry stakeholders to establish this framework for gaming security.”
The draft of the GLI-GSF-1 is provided to industry stakeholders for review and comment. Stakeholders include wagering, gaming and lottery regulators, suppliers, test laboratories, security firms, operators, and industry trade associations. The previous comment period was to familiarize stakeholders with the CIS Controls, while this second comment period will introduce additional common controls specific to the gaming industry, along with Gaming Implementation Group indications.
The comment period is underway and concludes on August 31, 2024. Written comments are encouraged and should be recorded in the comment template linked below and submitted to the “GLI Compliance” mailbox at [email protected].
GLI-GSF-1 v1.0 Public Comment Draft
GLI-GSF-1 v1.0 Comment Template
GLI will process the comments received from industry stakeholders and collaborate as needed to address their interpretation, evaluation, and resolution in the context of the revision to this module.
This module of GLI-GSF sets forth the common controls necessary for auditing a gaming organization. These common controls apply to all forms of gaming, effectively replacing the technical security controls previously established in GLI-27 for land-based gaming operations and, in the near future, will replace the technical security controls previously established in Appendix B of GLI-19 and GLI-33 for interactive gaming and event wagering as other modules are released.
This module of the GLI-GSF integrates the CIS Controls, developed by the Center for Internet Security (CIS), as foundational components to ensure robust security measures across all aspects of gaming operations. The CIS Controls represent a globally recognized set of cybersecurity best practices designed to help organizations bolster their security posture and defend against a wide range of cyber threats. These controls serve as foundational pillars for building a resilient and secure gaming environment, safeguarding against evolving cyber threats, and ensuring the integrity of gaming organizations. The CIS Controls are available for free download at www.cisecurity.org.
Each module in the GLI-GSF is a culmination of industry best practices and is continually updated based on industry feedback. The GLI-GSF was created using a collaborative approach that involved thousands of gaming industry stakeholders. This framework was intended to assist regulators by creating baseline security guidelines that they can adopt and/or utilize as they see fit. In addition to assisting regulators, this framework is of tremendous value to gaming organizations seeking comprehensive guidance and recommendations for enhancing security across all aspects of gaming operations, saving both time and expense.
The wait is over: The Finnish Parliament has officially approved the new gambling legislation. In a decisive plenary session, MPs voted 158 in favor to 9 opposed, with 32 abstaining. The text remained unchanged from the version presented in previous weeks, solidifying the framework for Finland’s transition from a monopoly to a licensed market.
With the political uncertainty resolved, the focus now shifts to implementation. For operators, this means the race to compliance—and market entry—has effectively begun.
The Confirmed Timeline
With the legislation passed, the roadmap to the market opening is now set. Operators must use the coming months to prepare for a rigorous licensing process.
-
Early 2026: The application window is expected to open. The regulator will begin accepting and reviewing license applications.
-
2026 (Throughout): The “preparatory year.” This period is dedicated to vetting applicants, ensuring technical compliance, and establishing the new supervisory authority.
-
January 1, 2027: The regulated Finnish market officially opens. Licensed operators can go live with betting and online casino services.
Entering the Finnish Market with Nordic Legal
Navigating a new jurisdiction is complex, but it doesn’t have to be inefficient. With extensive experience advising on gaming licences across the Nordic markets, Nordic Legal brings a proven, practical approach to the Finnish process.
Efficiency Through Synergy If you already work with us in Denmark or Sweden, we ensure your Finnish licence application isn’t a “start from scratch” project. We build directly on our existing knowledge of your organisation and systems.
Your usual Nordic Legal contact will coordinate directly with our Helsinki team at no extra cost. This integrated approach saves you time and avoids the frustration of duplicating work you’ve already done for other Nordic licenses.
Our Approach We focus on smart compliance:
-
Reusing documentation where regulations overlap.
-
Anticipating regulatory questions before they are asked.
-
Aligning requirements for technical standards and responsible gambling.
-
Engaging constructively with the Finnish authority to ensure a smooth process.
The Finnish Licence Application Package
To support your entry, we offer a comprehensive package designed to handle the heavy lifting:
-
Translation of all required documents.
-
Guidance and completion of complex application forms.
-
Full project management from start to submission.
-
Direct communication with the Finnish regulator on your behalf.
Next Steps
The window for preparation is narrowing. Contact your usual Nordic Legal advisor today to discuss the new legislation or our Licence Application Package. Alternatively, reach out to us directly to secure your place in Finland’s upcoming regulated market.
The post Finland’s Gambling Reform Is Official – What Happens Next? appeared first on Gaming and Gambling Industry Newsroom.
Reading Time: < 1 minute
The Danish Gambling Authority has called attention to FATF’s (Financial Action Task Force) updated lists of high-risk jurisdictions: the Grey List (jurisdictions under increased monitoring) and Black List (call for actions). Among other things, gambling operators must include FATF’s lists of high-risk jurisdictions when risk assessing players.
Jurisdictions listed on the Grey List:
Algeria, Angola, Bolivia, Bulgaria, Cameroon, the Ivory Coast, DR Congo, Haiti, Kenya, Laos, Lebanon, Monaco, Namibia, Nepal, South Sudan, Syria, Venezuela, Vietnam, the Virgin Islands and Yemen.
Jurisdictions listed on the Black List:
Democratic People’s Republic of Korea, Iran and Myanmar
Gambling operators are required to conduct enhanced customer due diligence (EDD) pursuant to section 17(1) of the Danish AML Act, if a player is assessed to impose a higher risk of the gambling operator being misused for money laundering or terrorist financing.
Gambling operators shall conduct this risk assessment based on Annex 3 to the AML Act (high-risk factors) which includes the FATF high-risk country lists (the so called black list and grey list)
It is not required that gambling operators perform EDD if a country is listed on the FATF’s list. EDD are only a requirement for players from jurisdictions listed in the EU Regulation of High Risk Third Country list pursuant to. 17(2) of the AML Act.
The post Updated FATF Lists of High-risk Jurisdictions appeared first on European Gaming Industry News.
Reading Time: 2 minutes
Soon it may be possible to play bingo via walkie-talkie and on local radios. A bill is currently being considered by the Danish Parliament to introduce a new type of licence for bingo via walkie-talkie and local radio. The Danish Gambling Authority expects the rules to come into force as early as 1 January 2026.
If the bill is passed, providers of walkie-talkie bingo and local radio will be able to apply for a licence from 1 January 2026. The Danish Gambling Authority will update this news article when the rules are finally adopted.
How to apply for a licence
If you want to offer bingo via walkie-talkie or radio, you need a licence from the Danish Gambling Authority. You can expect to apply as early as 1 January 2026.
When applying for a licence, you must use the form “Apply for a walkie-talkie or radio bingo licence” (no. 1-02). The form will be available on the page “revenue-restricted licenses”.
The application form will also be published in a digital version, but it will not be available on virk.dk until January.
The Danish Gambling Authority strives to process all applications as quickly as possible.
As an applicant, you will be assigned a contact person who can guide you through the legislation during the application process. The contact person will generally remain the same throughout the period of validity of your licence.
Report on the first year of offering games
Licences for radio and walkie-talkie bingo are regulated by the Gambling Act and the Executive Order on Online Casino. The legislation sets out a number of requirements for licensed gambling operators. Among other things, the licence holder must complete a report on the first year of offering gambling.
The report is prepared one year after the licence has been put into use and must be sent to the Danish Gambling Authority no later than 14 months after the date when the licence has been put into use.
The licence holder can fill out the report themselves.
The report must account for how the licence holder has provided gambling in accordance with the conditions of the licence and legislation during the past year.
The report template will be available on the Danish Gambling Authority’s website as form no. 1-04.
The post Spillemyndigheden: New licence type coming soon: Bingo via walkie-talkie and local radio appeared first on European Gaming Industry News.
-
Latest News7 days agoBoomerang Partners has been included in 3 prestigious industry Awards, which will be presented in January 2026
-
Latest News6 days ago
Kazakhstan Authorities Dismantle Large-Scale Illegal Payment Scheme Linked to Online Casinos
-
Fernando Di Carlo CEO of Yellow Elephant Studios7 days ago
SCCG Announces Strategic Partnership with Yellow Elephant Studios to Expand Multi-Channel Gaming Content Worldwide
-
Alyona Suvorova6 days ago
Law enforcement officers from Kazakhstan eliminated the organized financial criminal group organized by Vadim Gordievsky, Larisa Ivchenko, and Alyona Suvorova from Ukraine
-
Latest News6 days ago
LoopMe research: Increasing GenAI adoption paves the way for an explosion in mobile gaming ad potential
-
Boomerang Partners7 days ago
Boomerang Partners has been included in 3 prestigious industry Awards, which will be presented in January 2026
-
Latest News6 days ago
The Top South African No-Deposit for 2025
-
Latest News7 days ago
N1 Partners Takes Action at Affiliate World Asia 2025 with a New Award and Key Event Collaborations
