CAN-SPAM Basics

I. BACKGROUND

The CAN-SPAM Act of 2003 (Controlling the Assault of Non-Solicited Pornography and Marketing Act) establishes requirements for those who send commercial email, spells out penalties for spammers and companies whose products are advertised in spam if they violate the law, and gives consumers the right to ask emailers to stop spamming them.

The law, which became effective January 1, 2004, covers email whose primary purpose is advertising or promoting a commercial product or service, including content on a Web site.

A "transactional or relationship message" - email that facilitates an agreed-upon transaction or updates a customer in an existing business relationship - may not contain false or misleading routing information, but otherwise is exempt from most provisions of the CAN-SPAM Act.

The U.S. Federal Trade Commission is authorized to enforce the CAN-SPAM Act. CAN-SPAM also gives the U.S. Department of Justice the authority to enforce its criminal sanctions.

Other federal and state agencies can enforce the law against organizations under their jurisdiction, and companies that provide Internet access may sue violators, as well.

II. WHAT THE LAW REQUIRES

A. It bans false or misleading header information. Your email's "From," "To," and routing information - including the originating domain name and email address - must be accurate and identify the person who initiated the email.

B. It prohibits deceptive subject lines. The subject line cannot mislead the recipient about the contents or subject matter of the message.

C. It requires that your email give recipients an opt-out method. You must provide a return email address or another Internet-based response mechanism that allows a recipient to ask you not to send future email messages to that email address, and you must honor the requests. You may create a "menu" of choices to allow a recipient to opt out of certain types of messages, but you must include the option to end any commercial messages from the sender.

Any opt-out mechanism you offer must be able to process opt-out requests for at least 30 days after you send your commercial email. When you receive an opt-out request, the law gives you 10 business days to stop sending email to the requestor's email address. You cannot help another entity send email to that address, or have another entity send email on your behalf to that address. Finally, it's illegal for you to sell or transfer the email addresses of people who choose not to receive your email, even in the form of a mailing list, unless you transfer the addresses so another entity can comply with the law.

D. It requires that commercial email be identified as an advertisement and include the sender's valid physical postal address. Your message must contain clear and conspicuous notice that the message is an advertisement or solicitation and that the recipient can opt out of receiving more commercial email from you. It also must include your valid physical postal address.

III. PENALTIES

Each violation of the above provisions is subject to fines of up to $11,000. Deceptive commercial email also is subject to laws banning false or misleading advertising.

Additional fines are provided for commercial emailers who not only violate the rules described above, but that also:

A. "Harvest" email addresses from Web sites or Web services that have published a notice prohibiting the transfer of email addresses for the purpose of sending email generate email addresses using a "dictionary attack" - combining names, letters, or numbers into multiple permutations

B. Use scripts or other automated ways to register for multiple email or user accounts to send commercial email

C. Relay emails through a computer or network without permission - for example, by taking advantage of open relays or open proxies without authorization.

The law allows the U.S. Department of Justice to seek criminal penalties, including imprisonment, for commercial emailers who do - or conspire to:

A. Use another computer without authorization and send commercial email from or through it

B. Use a computer to relay or retransmit multiple commercial email messages to deceive or mislead recipients or an Internet access service about the origin of the message

C. Falsify header information in multiple email messages and initiate the transmission of such messages

D. Register for multiple email accounts or domain names using information that falsifies the identity of the actual registrant

E. Falsely represent themselves as owners of multiple Internet Protocol addresses that are used to send commercial email messages.

Glen Littlejohn, Esq. http://www.mortgagemarketingtsunami.com

When 'Viagra' Comments on Your Blog, and Other Spam Red Flags PCWorld Matt Mullenweg, the creator of WordPress, actually created a spam blocker for WordPress called Akismet in 2005, partially so his mom wouldn't be assaulted by Viagra ads while writing her blog. Today, spam blockers do a good job of nabbing most spam, ... and more »

Trend Micro Titanium Maximum Security 2012 review PC Advisor Trend Micro Titanium Maximum Security 2012 starts out with traditional modules, including AV protection, an improved firewall, a spam blocker, parental control, a system tuner, protection against data theft and 10GB of online storage.

WatchGuard Breaks Quarterly Billings, Profit and Units Shipped Records MarketWatch (press release) Currently, WatchGuard offers seven add on security services for XTM appliances, including: Application Control, WebBlocker, Gateway Antivirus, Reputation Enabled Defense, spamBlocker, Intrusion Prevention and LiveSecurity. and more »

NEWS ROUND-UP: The latest from WatchGuard, Compuware, and Island Pacific ARNnet WatchGuard currently offers seven add-on security services for XTM appliances: Application Control, WebBlocker, Gateway Antivirus, Reputation Enabled Defence, spamBlocker, Intrusion Prevention, and LiveSecurity. Technology performance company ... and more »

Tucson victim stalked for nearly 2 decades Tucson Citizen ... in consequence of which she tells numerous falsehoods to create the illusion of danger, purely to get someone incarcerated for up to 10 years merely because she doesn't want to use the spam blocker of her e-mail address account,” Shepard wrote. and more »

When 'Viagra' comments on your blog, and other spam red flags Computerworld New Zealand Matt Mullenweg, the creator of WordPress, actually created a spam blocker for WordPress called Akismet in 2005, partially so his mom wouldn't be assaulted by Viagra ads while writing her blog. Today, spam blockers do a good job of nabbing most spam, ... and more »

Gothamist

After Stalking Woman For 18 Years, Man Faces Five Year Sentence Gothamist ... conscience or both, in consequence of which she tells numerous falsehoods to create the illusion of danger, purely to get someone incarcerated for up to 10 years merely because she doesn't want to use the spam blocker of her e-mail address account. and more »

Demand for business security 'at an all-time high' TechDay.co.nz ... core SMB market is 'solid', the company is experiencing 'accelerated demand' among mid-market and enterprise organisations, Robertson adds. Users are also increasingly taking up add-on services, such as Application Control, WebBlocker and spamBlocker.

ITespresso.fr

Sécurité IT : l'éditeur WatchGuard veut séduire les TPE et les PME ITespresso.fr ... sécurité spécifiques comme le WebBlocker de WatchGuard (blocage des sites Web malveillants et des contenus Web inappropriés), le spamBlocker ou encore le Reputation Enabledd Defense, un service cloud de protection contextuelle contre les menaces.

Anti-Spam-Lösung für Unternehmen erhält Update IT-Business ... das Reporting und Backups für geschützte Exchange-Cluster zentralisieren. Die Anti-Spam-Lösung ist Teil der Unternehmenslösung Kaspersky Open Space Security. Neben dem reinen Spam-Blocker gehören auch Antivirus-Funktionen mit zum Lieferumfang. and more »