Professional Documents
Culture Documents
ITMEDIA NewAffiliateOnboardingCompliancePackage v2
ITMEDIA NewAffiliateOnboardingCompliancePackage v2
ITMEDIA NewAffiliateOnboardingCompliancePackage v2
COMPLIANCE PACKAGE
[Last updated August 16, 2019]
ITMEDIA NEW AFFILIATE ONBOARDING COMPLIANCE PACKAGE
TABLE OF CONTENTS
INTRODUCTION ........................................................................................................................................... 2
NEW AFFILIATE COMPLIANCE REVIEW ....................................................................................................... 3
Online Lenders Alliance ........................................................................................................................... 6
RELEVANT LAWS.......................................................................................................................................... 8
CAN-SPAM Act ......................................................................................................................................... 8
.Com Disclosures ...................................................................................................................................... 8
E-Sign Act ................................................................................................................................................. 9
Gramm-Leach-Bliley Act .......................................................................................................................... 9
Telemarketing Sales Rule ....................................................................................................................... 10
Telephone Consumer Protection Act ..................................................................................................... 10
Truth in Lending Act ............................................................................................................................... 11
Unfair, Deceptive, or Abusive Practices Act ........................................................................................... 11
PROHIBITED TERMS AND PHRASES .......................................................................................................... 13
COMPLIANCE MONITORING ..................................................................................................................... 15
1
ITMEDIA NEW AFFILIATE ONBOARDING COMPLIANCE PACKAGE
INTRODUCTION
The purpose of the ITMEDIA (“Company”) New Affiliate Onboarding Compliance Package
is to assist new affiliates in adhering to all applicable laws and regulations, including the Online
Lenders Alliance (“OLA”) Best Practices when working with Company. The contents in this
package discusses the Company’s new affiliate compliance review process that all affiliates must
go through before working with Company, the important compliance laws in our heavily
regulated industry that our affiliates must follow, terms and phrases that an affiliate is prohibited
from using when advertising to consumers, and how Company will conduct compliance
monitoring on its affiliates. You can reach out to your affiliate manager should you have any
questions in regard to any topic in this New Affiliate Onboard Compliance Package.
Please note that the materials in this New Affiliate Onboarding Compliance Package are
for informational purposes only, and not for the purpose of providing legal advice. You should
contact your attorney to obtain advice with respect to any particular issue or problem.
2
ITMEDIA NEW AFFILIATE ONBOARDING COMPLIANCE PACKAGE
Before Company can start working with a new affiliate, Company will assign a Compliance
Officer to conduct a comprehensive compliance review on the affiliate. Once the review is
completed, the Compliance Officer will make one of three recommendations to Company: (1)
The affiliate is in compliance with all applicable laws, therefore Company can start working with
the affiliate; (2) The affiliate is not in compliance with all applicable laws, but will give the affiliate
time to cure the deficiencies before Company can start working with the affiliate; or (3) The
affiliate is not in compliance with all applicable laws, and recommends Company to not work with
the affiliate since the deficiencies found are so great that even curing it may still harm Company.
Affiliates will be required to complete and submit the following documents to Company:
• Affiliate Agreement
• Insertion Order (IO)
• Affiliate Compliance Questionnaire
• Affiliate’s Form W-9 or W-8
• Affiliate’s Banking Information for Payments
To conduct an adequate due diligence review of a potential affiliate, Company conducts
the following affiliate selection due diligence (as is appropriate for the subject affiliate):
• Confirm that the affiliate holds current and appropriate licenses and bonds.
• Confirm that the affiliate has adequate security measures in place to protect consumer
information at rest, in transit, and from a data breach.
• Confirm that lead data traffic is from consumers located in the United States.
• Review the affiliate’s websites and any creatives.
• Confirm industry knowledge and experience of key professionals.
• Require representations and warranties that the affiliate does business in compliance with all
laws. Seek indemnifications for any future breaches of those representations.
• Require affiliate to disclose any past or present legal actions or investigations.
• Confirm the types of products or services the affiliate offers.
• Ask the affiliate to fill out a questionnaire that identifies key compliance issues – licenses,
bonds, experience, staffing, complaints, enforcement actions by regulators, outstanding
litigation, audits, etc.
• Review the affiliate’s policies, practices, training manuals, and scripting.
• Review the affiliate’s complaint handling procedures.
• Ask for references and recommendations.
• Ask for professional accreditations and memberships.
3
ITMEDIA NEW AFFILIATE ONBOARDING COMPLIANCE PACKAGE
Depending on the affiliate campaign(s), the Compliance Officer will review the following
areas in order to ensure compliance:
Website used for POST
4
ITMEDIA NEW AFFILIATE ONBOARDING COMPLIANCE PACKAGE
• The content shown on the website is appropriate for ad placement. Some examples of
inappropriate websites include but not limited to offensive, pornographic, political, and
websites tailored to minors.
• No false or misleading statements that would violate UDAAP (Unfair, Deceptive, or Abusive
Acts or Practices)
• If the affiliate is using their own creative, then the creative (content and images) must be
approved by the Compliance Officer
• The content shown on the website is appropriate for email campaign. Some examples of
inappropriate websites include but not limited to offensive, pornographic, political, and
websites tailored to minors.
• Fully Secured Website and Forces HTTPS
• Sufficient opt-in language near the call-to-action
o Consumer agrees to receive marketing materials from partners via email
• Adequate privacy policy and/or disclaimers
o Stating that consumer’s information will be shared with partners for the purpose of
sending consumer marketing materials via email
• A way for consumers to unsubscribe their email address
• If the affiliate is using their own creative, then the creative (content and images) must be
approved by the Compliance Officer
• No false or misleading statements that would violate UDAAP (Unfair, Deceptive, or Abusive
Acts or Practices)
• Emails sent must comply with the CAN-SPAM Act
• Affiliate agrees to our email publishing guidelines
• Affiliate uses our suppression list
• Affiliate uses Company’s unsubscribe links
• The content shown on the website is appropriate for SMS campaign. Some examples of
inappropriate websites include but not limited to offensive, pornographic, political, and
websites tailored to minors
• Fully Secured Website and Forces HTTPS
• Adequate privacy policy and/or disclaimers
5
ITMEDIA NEW AFFILIATE ONBOARDING COMPLIANCE PACKAGE
o Stating that consumer’s information will be shared with partners for the purpose of
sending consumer marketing materials via SMS
• Proper disclosure next to the call-to-action
o i.e.: I agree and consent to receiving marketing SMS on the phone number provided.
I understand that consent is not a condition to use the service.
• A way for consumers to unsubscribe their telephone number
• No false or misleading statements that would violate UDAAP (Unfair, Deceptive, or Abusive
Acts or Practices)
• SMS campaign and creatives must be compliant with the Telephone Consumer Protection Act
(TCPA)
• SMS creatives must be approved by the Compliance Officer
o Please note that the consumer’s prior express written consent was obtained by the
affiliate, therefore the SMS creatives used must not imply that it is from the Company
Mobile Apps
• The content shown on the mobile app is appropriate for ad placement. Some examples of
inappropriate mobile apps include but not limited to offensive, pornographic, political, and
mobile apps tailored to minors.
• Terms and Conditions
• Adequate privacy policy and data security
• No false or misleading statements that would violate UDAAP (Unfair, Deceptive, or Abusive
Acts or Practices)
• If the affiliate is using their own creative, then the creative (content and images) must be
approved by the Compliance Officer
It is important that Company has your most up-to-date business information. The duty
falls on the affiliate to notify the Company of any changes to the affiliate’s information, including
but not limited to billing, contact information, and websites.
6
ITMEDIA NEW AFFILIATE ONBOARDING COMPLIANCE PACKAGE
recommends the affiliate to read the OLA Best Practices. The Best Practices can be found at this
link: http://onlinelendersalliance.org/best-practices/
7
ITMEDIA NEW AFFILIATE ONBOARDING COMPLIANCE PACKAGE
RELEVANT LAWS
This section provides brief summaries of some of the most prominent laws and
regulations that apply to Company and its Affiliates. These summaries are intended to provide
affiliates with a better understanding of how these rules apply to their day-to-day business
practices. It is the affiliate’s responsibility to fully comply with these standards. Please contact
your affiliate manager if you have any questions in regard to complying with these laws.
CAN-SPAM Act
The CAN-SPAM Act is intended to control “spam” emails. The act regulates all commercial
email messages, meaning that it applies to all of the affiliate’s email campaigns. A single email in
violation of CAN-SPAM can result in fines of over $40,000, meaning that even one small violation
in an email creative could result in millions of dollars in fines when that email is sent to numerous
consumers. As such, it is imperative that Company ensures that all affiliate email campaigns are
fully comply with CAN-SPAM by adhering to the following:
• The “From,” “To,” “Reply-To,” and routing information – including the originating domain
name and email address – must be accurate and identify the person or business who initiated
the message
• The subject line must accurately reflect the content of the message
• You must state that the email is an advertisement
• You must include your valid physical postal address
• You must include an unsubscribe link
• The unsubscribe link on the email must be valid for at least 30 days after the email is sent
• You must honor a recipient’s unsubscribe request within 10 business days
• You must monitor and ensure compliance of the affiliates that are sending emails on your
behalf
.Com Disclosures
The .Com Disclosures are guidelines set forth by the Federal Trade Commission (FTC) to
apply existing consumer prohibition on “unfair or deceptive acts or practices” to online
advertising and sales. The disclosures must be clear and conspicuous. Affiliates can comply with
the .Com Disclosures by:
8
ITMEDIA NEW AFFILIATE ONBOARDING COMPLIANCE PACKAGE
• Making sure the hyperlink that leads to a disclosure is properly labeled, easily visible, placed
as close as possible to the relevant information, and takes consumers directly to the
disclosure.
• Displaying disclosures before consumers make a decision to buy. For example, before the
“add to shopping cart.” Disclosures may have to be repeated before purchase to ensure that
the disclosures are adequately presented to consumers.
• Repeat disclosures, as needed, on lengthy websites and in connection with repeated claims.
• Use plain language and syntax so that consumers understand the disclosures.
E-Sign Act
The E-Sign Act provides a general rule of validity for electronic records and signatures for
transaction in or affecting interstate or foreign commerce. The E-Sign Act allows the use of
electronic records to satisfy any statute, regulation, or rule of law requiring that such information
be provided in writing, if the consumer has affirmatively consented to such use and has not
withdrawn such consent. To be compliant with the E-Sign Act, affiliates must do the following:
Gramm-Leach-Bliley Act
The Gramm-Leach-Bliley Act requires that companies who offer financial products and/or
services take adequate steps to protect sensitive consumer data, and provide consumers with
explanations regarding how their data is used, shared, and protected. In practice, this means that
companies must utilize data encryption and other security protocols when dealing with consumer
information. It also means that companies must have adequate Privacy Policies that the
consumer can access to learn about how their information is handled. In order to comply with
the Gramm-Leach-Bliley Act, all affiliates must:
• Make sure that websites have current security certificates and use encryption to protect data
submitted by consumers.
• Make sure that there is a privacy policy that discloses how the company handles consumer
information.
9
ITMEDIA NEW AFFILIATE ONBOARDING COMPLIANCE PACKAGE
• Call times are restricted to the hours between 8:00am to 9:00pm (the caller’s time zone).
o Please note that some states have stricter call hours.
• When making an outbound call, the telemarketer must disclose (1) the business name, (2)
that the purpose of the call is to sell goods or services, and (3) the nature of the goods or
services being offered.
• The telemarketer must disclose (1) the total costs for the service, (2) any restrictions,
limitations, or conditions for the service, (3) any policies of refunds, cancellations, exchanges,
or repurchases, and (4) if it includes a negative option feature. Negative option feature means
that the consumer will be charged if they do not act to avoid the charge.
• The telemarketer must not threaten, intimidate, or use profane or obscene language.
10
ITMEDIA NEW AFFILIATE ONBOARDING COMPLIANCE PACKAGE
• Make sure that advertisements clearly state all the material terms and conditions of the
product/service.
• Make sure that all disclaimers are clear and conspicuous.
o Do not attempt to hide important information in disclaimers.
o Do not use headers or ad copy that contradict the information in the disclaimers.
11
ITMEDIA NEW AFFILIATE ONBOARDING COMPLIANCE PACKAGE
• Do not omit information about terms and/or conditions that are important to the consumer’s
decision making process.
• Only advertise products and services that are actually available.
o Do not advertise lower interest rates, or higher loan amounts, than the consumer can
actually obtain.
• Don’t mislead the consumer by using “bait-and-switch” or similar techniques.
o The consumer should fully understand what they are being offered and/or why they
are providing their personal information.
• Even if a claim is literally true, it still may be “misleading.” If so, the claim cannot be used.
• Claims that are not false or misleading may still be abusive. You cannot take advantage of a
consumer lack of knowledge of a product or service, or of their inability to understand risks
involved with a product or service.
• Make it clear who you are and do not misrepresent your role. For example, you cannot make
it appear that you are a lender or that you are not getting compensated for your role.
12
ITMEDIA NEW AFFILIATE ONBOARDING COMPLIANCE PACKAGE
• Match you to the: best lenders, best loans, best rates, lowest fee, lowest rate
o These phrases are considered Unfair, Deceptive, or Abusive because we use the ping
tree to connect consumers to the first lender that is willing to offer them a loan, so
the consumer may not be receiving the loan offer they are requesting for or the best
loan offer out there
o Alternative phrase: Connect you to a lender that can work for you
• No credit check
o This phrase is considered Unfair, Deceptive, or Abusive because some lenders perform
a credit check even if they are not using one of the three major credit reporting
agencies
o A soft pull is considered a credit check
• Bad credit ok / No credit ok
o This phrase is considered Unfair, Deceptive, or Abusive because it leads consumers to
believe that anyone with bad credit or no credit will get a loan
o Alternative phrase: All credit types welcome
• No faxing
o This phrase is considered Unfair, Deceptive, or Abusive because some lenders may ask
consumers to fax additional information or paperwork to them
• You will be approved, you will get a loan, 100% approval, guaranteed approval, instant
approval
o These phrases are considered Unfair, Deceptive, or Abusive because it leads
consumers to believe that anyone who submits a loan request will get a loan
o Alternative phrase: You may qualify for a loan
• You are pre-qualified, you are pre-approved
o These phrases are considered Unfair, Deceptive, or Abusive because the consumer
has not submitted their loan request, therefore there is no way for the affiliate to
know that they are pre-qualified or pre-approved
o Alternative phrase: See if you qualify for a loan
• Get your cash immediately, get cash now
o These phrases are considered Unfair, Deceptive, or Abusive because many lenders are
unable to send funds to the consumer’s checking account now, immediately, or on
the same day, especially if it is after the bank’s cut-off time, on a Sunday, or on a bank
holiday
o Alternative phrase: Get your funds as early as the next business day
• Your information is 100% secured
13
ITMEDIA NEW AFFILIATE ONBOARDING COMPLIANCE PACKAGE
14
ITMEDIA NEW AFFILIATE ONBOARDING COMPLIANCE PACKAGE
COMPLIANCE MONITORING
Company monitors its affiliates to ensure that their relevant policies, processes and
practices (including marketing, origination, collections and processing) comply with applicable
laws, regulations, and industry guidelines and best practices. Company reserves the right to
terminate relationships with those who fail to do so, immediately and in its sole discretion.
All affiliates are required to agree to and comply with Company’s compliance monitoring,
in an appropriate form, manner, and frequency based on the affiliate’s services and relationship
with Company. Company will monitor compliance on all its affiliates by (1) manually reviewing
the affiliate’s websites and marketing materials; (2) using a web crawler to automatically search
for noncompliant terms and phrases on affiliate’s websites; and (3) any other methods deemed
appropriate by Company.
In addition to monitoring affiliates for noncompliant words, phrases, disclosures, etc.,
mentioned in the previous sections in this New Affiliate Onboard Compliance Package, Company
will also monitor affiliates for the following:
15
ITMEDIA NEW AFFILIATE ONBOARDING COMPLIANCE PACKAGE
• Written Warning. Company will issue a written warning to the affiliate. The written warning
shall state the nature of the noncompliance, and demand that the affiliate cures the
noncompliance within a specific timeframe. In addition, the affiliate must take steps to
making certain that the noncompliance will not happen again.
• Suspension. Company may suspend the relationship with an affiliate when the affiliate (1) has
one or more Written Warnings, (2) the noncompliance is severe enough to warrant a
suspension, or (3) is not cooperating with Company’s investigation or requests. The Company
may give the affiliate a specific timeframe to cure the noncompliance, and take steps to make
certain that the noncompliance will not happen again. Lifting the affiliate’s suspension is at
the discretion of Company.
16
ITMEDIA NEW AFFILIATE ONBOARDING COMPLIANCE PACKAGE
• Termination. Company may terminate the relationship with an affiliate when the affiliate (1)
has one or more Written Warnings, (2) has been suspended at least once, (3) the
noncompliance is severe enough to warrant the termination, or (4) is not cooperating with
Company’s investigation or requests. Once the relationship between Company and the
affiliate has been terminated, there will be no opportunity for reinstatement.
17