The CAN SPAM Act of 2003
Unsolicited commercial email, or spam, has been an unforgiving intrusion for nearly a decade on America’s 136 million email users. At the end of 2003, President Bush signed into law new legislation that is designed to protect you from the continued onslaught of spam.
At any given moment, spam accounts for at least 40% of the email traveling across the Internet.
The CAN SPAM Act, officially called the “Controlling the Assault of Non-Solicited Pornography and Marketing Act of 2003,” took effect on January 1, 2004. While it does not place a ban on spam, it does create a set of strict rules that spammers must follow in order to continue their practices legally.
According to this new law, spam:
- must include an Opt-Out or Unsubscribe mechanism:
Spam must contain a working “unsubscribe” option. This can be achieved by allowing users to reply to spam messages to unsubscribe, or by providing a link to an unsubscribe page. Spammers are required to honor unsubscribe requests within 10 days.
- must include a valid physical postal address for the sender:
Spam must contain a valid physical postal address in the body of the email that can be used to contact the spammer through the U.S. Postal Service.
- must use a functioning return e-mail address:
Spam must contain a valid return email address that can be used to contact the spammer. This return address must remain valid for at least 30 days after the distribution of the spam.
- must include an advertisement (ADV) label in the subject line:
Recipients of spam must be given upfront explicit knowledge that the email is spam, by having “ADV” in the subject of the email.
- must use valid header information:
Spammers are forbidden from sending emails with deceptive or misleading information in the “From” and “Subject” lines of the message. Spammers are also forbidden from disguising the origin of the email in any way — including using false information in email account or domain name registration, or by falsifying information in the extended header of an email.
- must include a warning label advising sexual content:
Spam containing sexual content must have a warning label describing the nature of the content in the subject line. There is a 5-year jail penalty for non-compliance with this requirement.
- must have properly managed lists of addresses:
Spammers may not send spam to addresses obtained through illegitimate means—including the use of email harvesters, dictionary attacks, or random email generators. Furthermore, once an email address has been removed from a spammer’s mailing list, it can no longer be sold to another spammer.
- must not send spam through servers without authorized access:
Spammers must not gain unauthorized access to servers in order to usurp network and computer resources for the purpose of sending spam.
- must not send spam through an open relay server:
Open relay servers, which make it possible for an unscrupulous third party to route large volumes of email, must not be used for distributing spam.
Unfortunately, the CAN SPAM Act offers no protection from spam originating outside of the United States. It does stipulate, however, the eventual creation of a reward system that will benefit people who turn in violators of the CAN SPAM Act. Under this proposed system, people who turn in CAN SPAM violators may be entitled to 20% of fines paid.
Read the complete act here: CAN SPAM Act .