In March, the California court made a new ruling about email sender identification that now has marketers across the U.S. scratching their heads, wondering how to modify their campaigns to stay out of the legal fire.
This new law is all about discouraging the sending of promotional emails that contain false or misrepresenting header information. It strictly demands that commercial email advertisements (in other words, email sent specifically to sell a product or advertise a service) must include a domain name which is registered to the sender in the "from" line of the email, or the name of the sender or marketer on whose behalf the email was sent.
How do I know if I have to worry about the spam law?
First and foremost, California's spam law applies to any U.S.-based company sending email to consumers within California.
The "Golden State" has one of the most important anti-spam statutes in America, simply because historically it's been an area where consumers and the government have been highly active in enforcing the law.
All U.S. businesses need to be concerned about this spam law because, under the United States Supreme Court Guidelines, if you are advertising to somebody in California, then you are subject to their jurisdiction.
As a result, if you are sending email even to a single person living in California (whether you know they're located there or not) you may already be at risk.
Key differences between the federal CAN-Spam law and California spam law
Everyday companies that are doing online marketing will really need to be careful about sending their email campaigns only if they're compliant with both state law and federal law.
It takes a lot more than complying with the CAN-Spam Act if you want to be in full adherence with the various state-wide spam laws that are out there. In fact, part of the reason why the federal CAN-Spam Act was passed was merely to serve as a general standard and point of reference that's enforceable on a country-wide scale, because of the variances in state laws.
Which law rules then, you may ask?
Here's how it works:
Whenever spam complaints make it to court, the burden is on the sender of the email to show that everything they did was correct, in this case demonstrating not only compliance with California law, but U.S. federal law as well.
Further considerations for sending email to and within California
California State has long been known to enact statutes that are more stringent, more limiting, and more particular than the CAN-Spam national standard.
For instance, one of the major general differences is that CAN-Spam requires there to be an opt-out mechanism in every email and that the advertisers comply with opt-out requests within 10 business days. But in California, there is no demand for an opt-out mechanism, nor is there any rule that the recipient must actually opt-out.
This means that if somebody receives a commercial email that they didn't sign up for, they don't have to request to be removed from the sender's list. In fact, the recipient is free to wait and collect loads of emails, and then later sue the sender for a tidy sum of $1,000 per email.
So if you're an active bulk email marketer, these penalties can add up very quickly indeed.
While most business people may think that as long as they have an opt-out they're safe, in California, that's not true. Even if the advertiser can prove that they have mechanisms and procedures in place to prevent sending unsolicited emails and that the recipient was inboxed unintentionally or mistakenly, the penalty is still at least $100 per message.
And that's just the beginning of it: California also has other laws which apply to the body of the email. For example, if you are sending an email that says "you opted in" on date X, "using IP address" Y, and that information is incorrect, you'd be running afoul of the Consumers' Legal Remedies Act.
Another problem that often occurs is when somebody signs up to a mailing list using an email address that doesn't belong to them personally. And then, when the advertiser sends an eflyer to that email address, the individual who really owns it will actually not have opted in, and by Californian definition, it will count as a legally punishable, unsolicited commercial email.
Of course, if you manage your list subscriptions via a double opt-in mechanism where new sign-ups are emailed first to confirm their interest after submitting their contact details (which is not demanded by Can-Spam or California law), you should be able to steer clear of this hazard.