APMA Attribution Audit: What UK Program Managers Need to Know

The Affiliate and Partner Marketing Association published findings this week from the first independent audit of attribution rules across ten UK affiliate networks and platforms. The results confirm what many program managers suspected: attribution safeguards exist and work most of the time, but implementation varies enough to create operational risk.

For program managers working with browser extensions, cashback partners, or on-site conversion tools, this audit provides the first evidence-based assessment of how last-click attribution conflicts are handled in the UK market.

Kevin Edwards, Director of the APMA said , “The intention of the audit was twofold. Firstly we wanted to explain how different attribution solutions work and how common they are. I think there is a general lack of awareness that industry has worked over the years to assimilate new business models within an increasingly crowded ecosystem. When the Honey news hit the headlines it was clear that the wider mainstream media was unaware of the nuances of the channel. If nothing else, the audit forensically explains the various solutions that are out there and how they are applied. Secondly, we wanted to independently assess how well the solutions are applied and whether there is work to do to ensure they’re universally adopted. “ 

The Core Finding

Attribution rules protected earlier-funnel affiliates in 80% of test scenarios. Two mechanisms drove this protection: soft-click (platform-level blocking that prevents certain affiliates from overwriting prior referrals) and stand-down (affiliate-level suppression when earlier traffic is detected).
The audit ran between March and May 2025, testing real consumer journeys across discount browser extensions, cashback browser extensions, and on-site marketing technologies. The independent consultant deliberately activated these technologies after an initial affiliate referral to determine whether the original affiliate retained credit or whether the conversion tool claimed the sale.
Twenty-one scenarios showed stand-down behaviour, three showed soft-click, and four showed soft-click operating as backup protection. The remaining 20% of tests defaulted to standard last-click attribution with no protection applied.

“Generally speaking most networks and platforms were compliant and in around 80% of our tests we found stand down or soft click technology kicked in to reward the earlier funnel affiliates. We obviously encourage all networks and platforms to regularly audit themselves and ensure their systems are robust. We also provide some additional recommendations that we hope brands will take note of and adopt alongside their network and platform suppliers” says Edwards. 

What This Means for Your Program

If you work with browser extensions or on-site tools: The variance matters more than the average. While most platforms apply some protection, inconsistency means you cannot assume safeguards work without verification. Technical errors, advertiser configuration changes, and browser differences all caused stand-down mechanisms to fail during testing.

If you rely on content affiliates for upper-funnel activity: These results confirm conversion-oriented technologies can still overwrite publisher contributions, particularly on platforms without soft-click implementation. The audit identified scenarios where discount extensions claimed full credit despite earlier referrals, and where consumers manually reactivated stand-down extensions, immediately restoring last-click logic.

If you manage attribution across multiple networks: Expect operational variation. Soft-click appeared primarily on European platforms and was uncommon overall. Stand-down showed inconsistent implementation, with some affiliates providing clear consumer messaging while others left passive indicators encouraging reactivation.

The Technical Detail That Matters

Stand-down depends on affiliates correctly identifying prior traffic through URL parameters. No industry standard exists for this recognition. Some use proprietary detection methods, others rely on utm parameters, and implementation varies by affiliate and platform. When advertiser setups change or parameters shift, stand-down can fail without warning.

Soft-click operates at platform level and proved more reliable when implemented. The challenge: it appeared in only three of ten tested platforms as primary safeguard. Where it existed, soft-click consistently prevented overwriting even when affiliates were manually reactivated by consumers.

On-site marketing technologies performed strongest overall, with only one failure traced to misconfigured tracking. These tools stood down reliably when prior affiliate traffic was detected.

Seven Recommendations Worth Implementing

The APMA issued specific guidance based on audit findings:

1. Networks and platforms should expand soft-click adoption beyond current limited implementation
2. Cashback and loyalty extensions must implement mandatory stand-down with no consumer-facing prompts for reactivation
3. Manual reactivation should not restore last-click attribution for non-loyalty extensions
4. Industry-wide standardization of traffic recognition parameters (similar to the US AFSRC=1 convention)
5. Clear platform signposting identifying which affiliates operate under attribution rules
6. Dual implementation of both soft-click and stand-down where commercially appropriate
7. Preventing circumvention through subnetworks unless equivalent attribution logic can be guaranteed

What to Do Next

For program managers: audit your current partner mix against these findings. If you work with platforms that showed gaps in the audit, request specific confirmation of their attribution approach for your program. Ask which affiliates in your program are subject to soft-click or stand-down, and whether manual reactivation restores last-click logic. Understanding how attribution models affect your program economics becomes particularly critical as AI platforms introduce additional complexity to the attribution landscape.

For agencies managing multiple client programmes: standardised attribution tagging becomes critical infrastructure. The audit revealed that stand-down failures often stemmed from inconsistent parameter usage rather than affiliate misbehaviour. Implementing consistent tracking conventions across clients reduces this vulnerability.

For publishers concerned about credit attribution: the audit confirms your contributions are protected in most scenarios, but “most” is not sufficient for financial planning. Understanding which platforms offer the strongest safeguards becomes a partnership selection criterion.

The Broader Context

This audit arrived following the Honey browser extension controversy in late 2024, which triggered renewed industry attention to attribution conflicts. A US judge dismissed the main class-action lawsuit against PayPal/Honey on 21 November 2025, but the operational questions remain relevant for UK program managers. The findings validate that UK networks and platforms have implemented attribution logic more consistently than public perception might suggest. The industry developed these safeguards over a decade ago, well before the recent browser extension controversy. The audit exposes inconsistency of implementation rather than absence of protection.

Why This Matters Now

Attribution accuracy determines programme economics. When conversion tools overwrite upper-funnel contributions, budgets shift toward technologies that capture rather than create demand. This gradually erodes the publisher relationships that drive new customer acquisition. As the industry grapples with tracking challenges in a cookieless world, attribution hijacking has emerged as a distinct and documented threat beyond privacy regulation.

The audit provides the evidence base for informed commercial decisions. Program managers can now assess platform capabilities against documented performance rather than vendor claims. Where gaps exist, the APMA recommendations provide specific remediation steps rather than generic best practices.

Platforms that cannot demonstrate reliable attribution protection through either soft-click or properly implemented stand-down now operate outside documented industry standards.

Access the Full Report

The complete 24-page audit includes detailed methodology, comprehensive findings across all three affiliate types tested, and technical specifications for implementing the seven recommendations. Download the full report directly from the APMA: https://theapma.co.uk/apma-audit-shows-network-backing-for-early-funnel-affiliates/