They took the same approach for the Steam Deck, so given that this is a repeating MO, anyone wanting to abuse the system had time to prepare accounts.

The payment addresses sound trickier to work around, but abusers can just invent a fake billing address; many payment methods neither receive nor validate this.