Laws governing the collection of personal data from consumers have been passed by countries around the world, including Canada (PIPEDA), the European Union (GDPR), and the state of California (CalOPPA).
These laws affect affiliate marketers who collect personal data from their blogs/website users.
Whether you live in those jurisdictions or not, you must still comply with these laws if you collect personal data from citizens of those jurisdictions.
Departments like America's Federal Trade Commission (FTC) exist to protect consumers and naturally they have designed rules for affiliate marketers.
According to the FTC, the merchant is responsible for the activities of its affiliate marketers. However, the law is not strictly enforced, and as long as a merchant strives to ensure that affiliates follow the rules, they can be penalized if an affiliate secretly exceeds a limit.

Affiliate marketing is a way to earn commissions by promoting other parties' products and services.
As an affiliate marketer, we are responsible for complying with privacy and disclosure laws.
As a website owner that collects data from users, you should have a Privacy Policy and make it easily accessible on your website.
The way to comply with the law as an affiliate is to include disclosure statements next to the link to the product you are promoting, and a clause describing the use of cookies to track a user's clicks should be included in your Privacy Policy.