11/12/2018

We’ve taken a look at the big questions around KYC to help decipher what it’s all about.

What is KYC?

KYC stands for Know Your Customer. This process involves online casinos requesting documents from players in order to verify their age and other personal information, and to determine that the funds being used, as well as the accounts the funds are moving to and from, belong to them.

Why do FunFair-powered casino players have to KYC?

FunFair Technologies is working to create a world of fairer, safer and more socially responsible gaming. We are also required by law to take steps to prevent underage gambling, protect the vulnerable from harm and ensure that gambling is not linked to criminal activity. As part of licensing conditions and codes, online casinos will collect customer information on age, identity and funds verification.

When am I KYC’d as part of the FunFair process?

The FunFair platform currently requires all players to pass through our KYC process prior to being allowed to play for real money (i.e. FUN tokens). Once a player has passed FunFair’s KYC process they can then freely move between any FunFair-powered casino without the need to repeat the process each time.

Who am I providing my details to?

FunFair currently uses a third-party partner called Yoti to manage the verification process. To complete the KYC process with Yoti, players must:

Install the Yoti mobile app

Take and upload a photo of themselves

Confirm and verify their mobile number

Record a five second video where they repeat three randomly generated words to prove they are human

Upload a photo of their driving licence or passport

Yoti verifies and matches the player’s details to their biometrics with a trained team performing extra checks in a secure ‘Cleanroom’ to ensure all details and documents are genuine.

Yoti undergoes regular independent penetration tests to ensure data is safe with HackerOne, MWR and Cigital all having performed tests.

Where is my data stored?

Once a player has submitted their Yoti profile, a hash of their Ethereum public key is marked as having a ‘FunPass’ on the blockchain by FunFair, with none of the player’s personal information stored or processed on the blockchain at any point.

Yoti uses AES 256-bit encryption to secure the player’s data with details like the player’s name and date of birth stored separately, meaning there is no ‘profile’ of the player for hackers to target. The private key for this data is then stored safely on the player’s phone where only the player can access it. Nobody else, not even Yoti, can access these keys.