Malta's gaming regulator identifies critical gaps in self-exclusion systems after mystery shopping exercise across 58 gaming URLs.
The Malta Gaming Authority (MGA) has exposed significant weaknesses in how online operators implement self-exclusion protections, following a comprehensive review triggered by reports of problem gamblers accessing multiple brands despite active exclusions.
The regulator's 2025 thematic review examined real-world performance across 20 licensees and 58 active URLs, employing mystery shopping exercises to assess the effectiveness of self-exclusion processes, cross-brand account controls, and responsible gambling protections at critical gameplay moments.
While the majority of licensees assessed demonstrated practices broadly in line with regulatory expectations, the MGA identified several systemic issues that undermine player protection effectiveness across the sector.
The review uncovered delays in activating self-exclusion requests, creating windows where vulnerable players remained exposed to gambling opportunities. More concerning, investigators found instances where exclusions were lifted without applying mandatory cooling-off periods – a fundamental breach of responsible gambling protocols.
20
Licensees Examined
58
Active URLs Reviewed
2,025
Review Year
Perhaps most significant for multi-brand operators, the study revealed challenges in detecting duplicate or closely matching player identity details across different gaming brands. This technical shortcoming allows self-excluded players to circumvent protections by creating accounts with slightly altered personal information.
The assessment also identified gaps in proactive player protection measures, including the absence of limit-setting prompts during registration processes and incomplete information displayed within Reality Check pop-ups designed to interrupt extended gaming sessions.
Important
The MGA has communicated findings directly to affected licensees, requiring each to submit detailed rectification plans with ongoing supervisory monitoring.
The review forms part of the MGA's broader risk-based oversight approach, aimed at promoting higher and more consistent standards of player protection across Malta's influential gaming jurisdiction.
Beyond individual compliance issues, the findings highlight the technical complexity of implementing effective self-exclusion systems in an increasingly consolidated industry where operators manage multiple brands and shared player databases.
Compliance Best Practice
Multi-brand operators should invest in robust cross-platform identity verification systems to prevent self-excluded players from accessing services through different brands with altered personal information. Implementing automated cooling-off period enforcement and proactive limit-setting prompts during registration can significantly strengthen responsible gambling protections.
This comprehensive assessment signals the MGA's willingness to conduct detailed operational reviews rather than relying solely on desktop compliance checks. The mystery shopping methodology provides regulators with real-world evidence of system performance under actual gaming conditions.
The publication of detailed findings creates a compliance benchmark for the broader European gaming industry, particularly as other regulators increasingly focus on the effectiveness of responsible gambling implementations rather than mere policy existence. The Dutch regulator's enforcement approach demonstrates how oversight priorities are evolving across jurisdictions.
According to Malta Gaming Authority.
Legal Disclaimer
This content reflects a general overview of regulatory frameworks based on publicly available information. It does not constitute legal advice or a legal opinion. iGamingWriter.blog disclaims any liability arising from reliance on this material.
Written by
Olga MuntyanDirector of Project Management
Olga has been leading project management at We–Right™ Factory since 2020, coordinating multilingual content delivery for iGaming operators and affiliates. She manages timelines, team capacity, and cross-market workflows that keep large-scale content production on track. On iGamingWriter.blog, Olga writes about project coordination, content pipeline management, and operational efficiency in iGaming content teams.
Sponsored content, banner placements & newsletter features for iGaming brands.
Dutch gambling authority KSA has issued a binding directive to bet365 operator Hillside for inadequate affordability checks and player protection.
The Dutch gambling authority imposed a €750,000 fine on ComeOn operator Tulipa Ent Limited for failing to adequately protect vulnerable players from problem gambling.
Over half of Dutch people feel uncomfortable discussing gambling addiction, despite nearly half gambling regularly, according to new Kansspelautoriteit research.
Get regulation updates, content insights, and market news delivered to your inbox every week.
No spam. Unsubscribe anytime.
