💡 律咖编者按
本文由律咖网社群读者 bornella 投稿分享。
为了方便大家阅读,律咖网编辑 JingJing(微信:lvga2015)对原文进行了细致的逻辑润色与合规性整理。希望能给正在 丹麦 创业路上的你带来真实的参考。

I didn’t think much of customer reviews until one got me flagged.

I’m based in Kolding, running an Amazon store that sells home goods — mostly sourced from China, shipped through Fulfillment by Amazon. My team is small: two part-timers, one VA in Manila, and me. I’m 29. From Shanghai. Studied pharmacy. No one expected me to be here. But here I am.

Last December, I got an email from Amazon Seller Central: “Your account is under review due to potential policy violations related to third-party user data.”

I thought it was a mistake. We don’t collect emails. We don’t scrape reviews. We just list products.

Turns out, we didn’t need to.

The trigger wasn’t us.

It was a client — a Danish guy who used to run a small e-commerce shop in Aarhus. He sold Korean beauty products. He’d bought Naver accounts from Taobao. Not for himself. For “social proof.” He’d created fake reviews using those accounts, then linked them to his Amazon listing.

He thought it was harmless.

He didn’t know that between December 2024 and December 2025, the Korea Internet & Security Agency (KISA) logged 363 cases of Naver account trades on Chinese platforms — and 97 for Kakao. Coupang was in the mix too, after a major breach last year.

The data went to EU authorities. Amazon got a notice.

And suddenly, every account linked to a Korean IP — even if it was just a review left from a VPN in Copenhagen — got flagged as “suspicious activity.”

My client’s account got suspended.

Mine got pulled into the audit.

I spent three weeks digging through logs.

I checked every review. Every device fingerprint. Every login timestamp.

We had 17 reviews from IPs matching Korean domains. All from 2024. All on products we’d just launched.

I asked the VA: “Who wrote these?”

She said: “You told me to get five-star reviews fast. I found a service. Cheap. 2 euros per review.”

I didn’t say that.

But I didn’t ask.

That’s the gap.

That’s the information asymmetry.

I thought compliance was about invoices, VAT numbers, product safety labels. I didn’t think about the invisible layer: the digital footprints left by fake accounts, the ghost users created on platforms I didn’t even use.

It’s not about fraud. It’s about correlation.

Amazon’s system doesn’t care if you bought the reviews. It cares that the same IP that posted on Naver also posted on your listing.

And KISA’s report? It’s public.

So now, every EU marketplace is scanning for these patterns.

I didn’t lose my account. But I lost trust.

And I realized: customer reviews aren’t marketing. They’re forensic evidence.

I’m not here to tell you how to fix this.

I’m here to say: you’re not safe just because you didn’t do it yourself.

Here’s what I learned, in order of priority:

1. Review sources are not what you think

Even if you use “legit” review services, if they use proxies from Korea, China, or Russia — and those IPs have ever been linked to account trading — your listing is at risk.

Action: Audit all reviews from 2024 onward. Filter by IP geolocation. If you see any from Korea, China, or Southeast Asia — delete them. Don’t ask why. Just remove them.

2. Your VA doesn’t know the law — and shouldn’t be trusted with it

I assumed she knew the difference between “boosting” and “fake.” She didn’t.

Action: Create a one-page compliance checklist for your team. No jargon. Just:

  • Don’t buy reviews
  • Don’t use non-EU IPs to post
  • Don’t link accounts from Taobao, Xianyu, or Baidu
    Print it. Sign it. Keep a copy.

3. Compliance isn’t a department — it’s a habit

I used to think “cybersecurity compliance” was for SaaS startups with CISOs.

I was wrong.

In Kolding, a small Amazon seller can trigger a transnational investigation because someone in Hangzhou sold a Naver login for €1.50.

Action: Set a monthly 15-minute review. Check:

  • Any new review from non-EU IPs?
  • Any sudden spike in “verified purchase” reviews?
  • Any changes in Amazon’s “Prohibited Practices” page?

It takes 15 minutes. But it saves weeks.

I used to think time was my enemy.

Now I think time is my only ally.

The longer I wait to fix this, the more data accumulates — and the harder it becomes to prove innocence.

I spent €800 on legal consultation. No one promised me a resolution. But the lawyer said: “If you can show you started cleaning up in February 2026 — before any enforcement action — that’s your best defense.”

So I did.

I removed 43 reviews.

I changed all login credentials.

I disabled third-party review tools.

I didn’t tell anyone.

I didn’t expect praise.

I just wanted to sleep without checking my inbox.

FAQ

Q: How do I check if my Amazon reviews are linked to compromised Korean accounts?

Step 1: Download your review history from Seller Central > Reports > Customer Reviews.
Step 2: Use a free IP geolocation tool like IPinfo.io or AbuseIPDB to check the IP behind each review.
Step 3: Flag any reviews from IPs matching South Korea, China, or Russia — especially if they appear in clusters (e.g., 5 reviews in 2 hours).
Step 4: Delete flagged reviews manually. Do not report them as “fake” — that triggers an automatic investigation.

Q: Can I still use review services based in the Philippines or India?

Step 1: Ask the provider: “Do you use residential IPs from outside the EU?”
Step 2: If they say “yes,” or hesitate — walk away.
Step 3: Only use services that guarantee EU-based IPs and no proxy networks.
Step 4: Request logs of every review submission — including timestamp, device ID, and IP. Keep them for 24 months.

Q: Where can I find official guidance on cybersecurity compliance for Amazon sellers in Denmark?

Path 1: Visit Amazon Seller Central > Policy > Prohibited Practices > Review Fraud.
Path 2: Check the Danish Data Protection Agency (Datatilsynet) website: https://datatilsynet.dk — search for “online marketplace data processing.”
Path 3: Review the EU’s Digital Services Act (DSA) Article 24 — it applies to all platforms with users in the EU, including Amazon.
Step 4: Bookmark these. Revisit every quarter.

I didn’t start this business to become a cybersecurity analyst.

I started it because I wanted to work for myself.

But here’s the truth: in cross-border e-commerce, compliance isn’t a cost. It’s the price of staying visible.

I’m not proud of how I ignored the signs.

I’m not proud of trusting someone else’s shortcuts.

But I’m proud that I fixed it — quietly, slowly, without drama.

If you’re reading this and you’re in Kolding, in Aarhus, in Odense — and you’re running a store, managing reviews, trying to stay under the radar — you’re not alone.

We don’t need to be heroes.

We just need to be careful.

If you’ve had a similar experience — whether it was a flagged account, a weird review spike, or just a gut feeling that something didn’t add up — I’d like to hear it.

I don’t have answers. But I know someone who listens.

前几天我和编辑 JingJing 聊起这件事。她说:“很多人以为合规是律师的事。其实,是每个卖家每天的选择。”

如果你也想聊聊丹麦的合规细节、客户评价的灰色地带、或者只是需要一个人听你说完这段经历 — 你可以加她微信:lvga2015

她不卖服务。她只是记得,每个创业者都值得被认真听一次。

延伸阅读

🔸 UK locked me out, says girl stuck in Denmark over passport rules 🗞️ 来源: The Times – 📅 2026-03-31
🔗 阅读原文

🔸 Denmark shares higher at close of trade; OMX Copenhagen 20 up 1.59% 🗞️ 来源: Investing.com – 📅 2026-03-30
🔗 阅读原文

🔸 Commission publishes study on the enforcement of intellectual property rights in the EU 🗞️ 来源: Eureporter – 📅 2026-01-29
🔗 阅读原文

请知悉:律咖网(Lvga.com)是跨境创业公开信息与内容分享平台,不提供法律、税务、会计或合规服务。
本文内容基于公开资料,并由人工编辑与 AI 工具协助整理,仅供信息参考之用,不构成任何法律、投资、移民或商业决策建议。
政策可能随时间变化,请以官方渠道与当地持牌专业人士意见为准。
如内容有需要修订之处,欢迎随时与我联系。