SlideShare uma empresa Scribd logo

CASL vs CAN-SPAM - Canada’s Anti‐Spam Law

Now Dentons
Now Dentons

Please visit the updated version of this presentation on our Dentons Global slideshare account: http://www.slideshare.net/DentonsGlobal/comparing-casl-to-canspam-22498536

NegóciosTecnologiaNotícias e política
1 de 40
Baixar para ler offline
Comparing CASL to CAN-SPAM Canada’s Anti-Spam Law Raising the bar for online business communications in North America Margot Patterson, Counsel margot.patterson@fmc-law.com http://ca.linkedin.com/in/margotpatterson Updated January 2013 1
Canada’s Anti-Spam Law (CASL) • CASL was enacted in December 2010 and is expected to enter into force in late 2013, or 2014 • CASL is intended to promote e-commerce by deterring spam, identity theft, phishing, spyware, viruses, botnets, and misleading commercial representations online • CASL creates new offences, enforcement mechanisms and penalties to address these online threats 2
Canada’s Anti-Spam Law (CASL) • Canada is the last of the G-8 countries to introduce an over- arching law to combat spam, which continues to represent about 80% of all global e-mail traffic • Canada has distinguished itself in making its legislation tough: – Higher consent standards – Detailed content requirements – significant penalties: “Canada’s $10 million anti-spam law” 3
Comparing CASL to U.S. CAN-SPAM Act: A Snapshot 4
Comparing CASL to CAN-SPAM Some Similarities – both CASL and CAN-SPAM: • Are aimed at unsolicited online communications, and unfair/deceptive online practices • Require consent to send commercial electronic messages • Directly impact business communications with customers, prospective clients, and subscribers 5
Comparing CASL to CAN-SPAM Key Differences – CASL has: • Clear reach outside Canada – CASL expressly applies to messages “accessed from a computer system in Canada”: message can be sent from outside Canada • Higher standard for consent – Opt-in (CASL) versus Opt-out (CAN-SPAM) • Broader application – CASL also applies to installation of computer programs • Higher penalties – $10 million maximum penalty for CASL contravention 6
Comparing CASL to CAN-SPAM • The Implications: • More online activities will be caught by CASL • More activities affecting Canadians will be caught by CASL, even if initiated outside Canada • More steps will be needed under CASL to communicate online • Greater exposure to liability under CASL 7
Comparing CASL to CAN-SPAM Let’s Take a Closer Look at: • Objective of the legislation • Scope: Who, What, Where • Consent • Disclosure (Message Content) • Violations and Enforcement and… • Next Steps for Businesses 8
The Objective 9
The Objective: U.S. CAN-SPAM Act, 2003 U.S. Senator Ron Wyden (D-Ore.), October 22, 2003: "Today, the Senate has sent the message that the government is going on the offensive against kingpin spammers. Americans are tired of just watching and fretting over in-boxes clogged with unwanted e-mail, and this legislation is an important step toward giving them more control." 10
The Objective: CASL, 2010 The Honourable Tony Clement, Minister of Industry, May 25, 2010: “The proposed (legislation) is intended to deter the most damaging and deceptive forms of spam, such as identity theft, phishing and spyware, from occurring in Canada and to help drive spammers out of Canada.” 11
Scope: Who, What and Where 12
Scope: Who (Reach) CASL CAN-SPAM • (For spam) senders of “commercial • (For spam) senders of “commercial electronic messages” electronic mail messages” • Potential vicarious liability: • Directors, officers, employers not – Expressly includes directors, referenced officers, agents or mandataries of a corporation – Expressly includes employers of employees acting within scope of employment 13
Scope: What (Activities) CASL CAN-SPAM • Spam • Spam • Malware, spyware, botnets • Purely malicious spam (i.e. not • Network re-routing “primarily commercial”) not • False or misleading covered representations online • False/misleading transmission • Installation of computer programs information (addresses aspects of network re-routing) • Address harvesting • Installation of computer programs not covered • Address harvesting 14
Scope: What (Messages) CASL CAN-SPAM A “commercial electronic message” A “commercial electronic mail message” is: is: • An electronic message • An electronic mail message – including text, sound, – email only voice, image • Sent to an electronic address – including e-mail, IM, phone or “any similar account” 15
Scope: What (Messages) CASL CAN-SPAM A “commercial electronic message”: A “commercial electronic mail message”: • Has as its purpose or one of its • The primary purpose of which is purposes… – commercial advertisement or – considering message content, promotion of a commercial hyperlinks, or contact info… product or service – to encourage participation in – Including content on a a commercial activity: website operated for a • transaction, act or conduct of commercial purpose a commercial character • whether or not in • Excludes “transactional or expectation of profit relationship” messages 16
Scope: Where (Jurisdiction) CASL CAN-SPAM • Activities outside Canada • Activities outside U.S. – Spam: computer system in – Not expressly addressed in CAN- Canada used to send or access SPAM Act message – Considered case-by-case – Software installation: computer pursuant to conflict of laws rules system receiving the program in Canada (or if installer is in • See: Facebook, Inc. v. Guerbuez, Canada, or operating under 2008 U.S. Dist. LEXIS 108921 (N.D. direction of person in Canada) Cal. 2008) [enforced by Quebec Superior Court in 2010] – Altering transmission data: computer system in Canada used to send/route or access message 17
Consent 18
Consent CASL CAN-SPAM • CEMs can be sent if: • CEMs can be sent unless: – You have the express or – The recipient opts out of implied consent of the future commercial email recipient (“opt-in”), OR if – consent is not required under CASL 19
Consent CASL CAN-SPAM • Exceptions to the consent requirement: • Exception to consent – “transactional or relationship messages” are not CEMs: – Message between individuals with personal or family relationship – Facilitating or confirming transaction that – An inquiry or application to a person the recipient already has agreed to; engaged in a commercial activity – Warranty, recall, safety, or security – Quote or estimate, requested by recipient information about a product or service; – Facilitating, completing or confirming a pre- – Information about a change in terms or existing transaction features or account balance information regarding a membership, subscription, – Warranty, product recall or safety/security account, loan or other ongoing commercial information relationship; – Factual information regarding subscription, – Information about an employment membership, account, loan relationship or employee benefits; or – Ongoing information about recipient’s – Delivering goods or services as part of a employment or benefit plan transaction the recipient already – Delivering a product, good or service, agreed to including updates/upgrades, as part of a transaction the recipient already agreed to 20
Consent • See also Draft Industry Canada regulations for further proposed exceptions to the consent requirement: 1. Limited Exemptions for Certain Types of Message (within businesses, between organizations in a business relationship, legal notices) 2. Third-Party Referrals 3. Clarifying What is Required where Sender is an “Unknown Third Party” 4. Clarifying Membership in a Club, Association or Voluntary Organization 5. Limited Exemptions for Protecting, Upgrading and Updating Computer Networks • Comments on these Draft regulations due February 5, 2013 21
Consent CASL CAN-SPAM • Implied consent: • Implied consent generally available for – Commercial transaction with the unsolicited messages, where the recipient recipient OR has not opted out of receiving them – Business, investment or gaming opportunity with recipient  within the previous two years – Inquiry from the recipient in the previous six months about the above – Written contract with the recipient, still in effect or expired within previous two years – Recipient has conspicuously published his or her electronic address, and message is relevant to his or her business role or function – Recipient has disclosed electronic address, and the message is relevant to his or her business role or function 22
Consent CASL CAN-SPAM • Getting express consent: • No corresponding requirement – Purpose for the consent since consent is generally – Name “opt out” – Mailing address, and either phone number, e-mail or web address – Statement that the person can withdraw consent – See CRTC Guidelines 23
Disclosure (Message Content) 24
Disclosure (Message Content) CASL CAN-SPAM The message must: The message must: – In message itself or via clear and prominent website link: • Identify the sender (including • Identify the sender (CAN-SPAM defines “sent on behalf of”); who designated “sender” is) • Include mailing address, and • Include physical postal address either phone, email or web • Include email address or other form of address; and Internet-based communication to unsubscribe • Include an unsubscribe mechanism – See CRTC Guidelines 25
Violations and Enforcement 26
Violations and Enforcement CASL CAN-SPAM • CRTC: primary enforcement • FTC: primary enforcement agency, agency, including administrative including administrative penalties monetary penalties (AMPs) – Each individual email in violation – Maximum penalty is $10 million of CAN-SPAM is subject to for an organization, per violation penalties of up to $16,000 – Relevant factors include purpose of penalty, nature & scope of violation, history, financial benefit, ability to pay – May enter into compliance undertaking with CRTC 27
Violations and Enforcement CASL CAN-SPAM • Directors and officers’ liability / • D&O and employers’ liability not Employers’ liability expressly set out in legislation • Importance of “due diligence”: – No liability where due diligence taken to prevent the violation 28
Violations and Enforcement CASL CAN-SPAM • Private Right of Action • Private Right of Action – For individual or organization – No PRA for an individual affected by a contravention: can – PRA available to a “provider of obtain court order for compensation Internet access service”, “adversely – Acts or omissions (e.g. spam-related) affected by a violation” – Remedies include compensation for • Injunctive relief loss or damage suffered or expenses • Monetary damages for actual loss incurred, and a maximum penalty of: incurred • $200 per contravention of anti-spam; • Statutory damages based on number • max $1 million per day for spam, of unlawful messages transmitted malware, spyware, message routing, – PRA taken by ISPs, MySpace, PI harvesting, misrepresentation; and FaceBook • max $1 million per act of aiding, inducing, procuring breach of spam, malware, spyware, message routing. • Class Actions? 29
Next Steps: for CASL 30
Next Steps: for CASL • Regulations – CRTC regulations on CEM content & consent final March 2012 – Draft Industry Canada regulations issued for consultation • Entry into force – Expected 2013 or 2014 – Some steps should be taken now to be compliant in time – See “Next Steps for Doing Business in Canada” • Spam Reporting Centre – Once operational, will accept electronic messages, analyze trends in spam and other “threats to electronic commerce” 31
Next Steps: for CASL New roles and responsibilities for three government agencies: • Canadian Radio-television and Telecommunications Commission (CRTC) – spam, malware, botnets, network re-routing • Competition Bureau – false/misleading representations online • Office of the Privacy Commissioner – address harvesting, dictionary attacks, spyware (personal information) 32
Next Steps: for CASL • International Cooperation – CASL mandates the three agencies to share information and consult with their international equivalents, including FTC • Bulletins / Interpretive Guidelines? – Many definitions and requirements remain broad and unclear in CASL and the regulations – CRTC has issued Information Bulletins on interpreting the Regulations, and on Opt-in Consent (“toggling”) 33
Next Steps: for Doing Business in Canada 34
Next Steps: for Businesses • Three-Year Transition Period – For three years after entry into force of anti-spam and computer program update/upgrade provisions: • Implied consent where existing business or non-business relationship – In all cases, recipient can still withdraw consent at any time – Businesses must obtain express consent during the three-year transition period, to continue afterwards. 35
Next Steps: for Businesses • CASL Audit – Conduct an audit of online communications with clients, prospects, and third parties, including: • bulk email, automated messages, periodic client newsletters and updates • processes for installation of software updates/upgrades • CASL Checklist – Review above communications (e-mail, computer program installation) against CASL requirements: • consent, unsubscribe, and disclosure • available exceptions 36
Next Steps: for Businesses • CASL Compliance Policy should: – Update your website and internal Privacy Policy – Update forms and procedures that document consent – Address unsubscribe requirements and timeframes – Update existing customer service processes – Include information/training for employees, management and Board of Directors – Address third-party contract requirements (limitation of liability, representations & warranties), including address rental • Consider insurance (traditional policies may not cover) 37
Next Steps: for Businesses • When operating in the North American market… meet both CASL and CAN-SPAM requirements 38
The preceding presentation contains examples of the kinds of issues companies dealing with anti-spam could face. If you are faced with one of these issues, please retain professional assistance as each situation is unique.
More Information on CASL: www.fmc-law.com/AreaOfExpertise/Anti_Spam.aspx http://www.datagovernancelaw.com/category/anti_spam Questions? Margot Patterson margot.patterson@fmc-law.com (613) 783-9693

Recomendados

Subnetting scenarios
Subnetting scenariosSubnetting scenarios
Subnetting scenarios
aibad ahmed
 
Unix - Filters/Editors
Unix - Filters/EditorsUnix - Filters/Editors
Unix - Filters/Editors
ananthimurugesan
 
Wireshark
Wireshark Wireshark
Wireshark
antivirusspam
 
QSpiders - Unix Operating Systems and Commands
QSpiders - Unix Operating Systems and CommandsQSpiders - Unix Operating Systems and Commands
QSpiders - Unix Operating Systems and Commands
Qspiders - Software Testing Training Institute
 
wireshark
wiresharkwireshark
wireshark
Mirza Baig
 
File management
File managementFile management
File management
Mukund Trivedi
 
SMTP STS (Strict Transport Security) vs. SMTP with DANE
SMTP STS (Strict Transport Security) vs. SMTP with DANESMTP STS (Strict Transport Security) vs. SMTP with DANE
SMTP STS (Strict Transport Security) vs. SMTP with DANE
Men and Mice
 
SNMP Protocol
SNMP ProtocolSNMP Protocol
SNMP Protocol
Mohd Sajjad
 

Recomendados

Subnetting scenarios
Subnetting scenariosSubnetting scenarios
Subnetting scenarios
aibad ahmed
 
Unix - Filters/Editors
Unix - Filters/EditorsUnix - Filters/Editors
Unix - Filters/Editors
ananthimurugesan
 
Wireshark
Wireshark Wireshark
Wireshark
antivirusspam
 
QSpiders - Unix Operating Systems and Commands
QSpiders - Unix Operating Systems and CommandsQSpiders - Unix Operating Systems and Commands
QSpiders - Unix Operating Systems and Commands
Qspiders - Software Testing Training Institute
 
wireshark
wiresharkwireshark
wireshark
Mirza Baig
 
File management
File managementFile management
File management
Mukund Trivedi
 
SMTP STS (Strict Transport Security) vs. SMTP with DANE
SMTP STS (Strict Transport Security) vs. SMTP with DANESMTP STS (Strict Transport Security) vs. SMTP with DANE
SMTP STS (Strict Transport Security) vs. SMTP with DANE
Men and Mice
 
SNMP Protocol
SNMP ProtocolSNMP Protocol
SNMP Protocol
Mohd Sajjad
 
Vagrant e Docker a confronto;scegliere ed iniziare
Vagrant e Docker a confronto;scegliere ed iniziareVagrant e Docker a confronto;scegliere ed iniziare
Vagrant e Docker a confronto;scegliere ed iniziare
Daniele Mondello
 
Bash shell scripting
Bash shell scriptingBash shell scripting
Bash shell scripting
VIKAS TIWARI
 
Samba
SambaSamba
Samba
tmavroidis
 
Topic #3 of outline Server Environment.pptx
Topic #3 of outline Server Environment.pptxTopic #3 of outline Server Environment.pptx
Topic #3 of outline Server Environment.pptx
AyeCS11
 
Nmap basics
Nmap basicsNmap basics
Nmap basics
itmind4u
 
Network Administrator Project PowerPoint
Network Administrator Project PowerPointNetwork Administrator Project PowerPoint
Network Administrator Project PowerPoint
Steven Washington
 
Lex vs alexa
Lex vs alexaLex vs alexa
Lex vs alexa
Sam Machin
 
Linux
LinuxLinux
Linux
International Islamic University
 
Windows Registry
Windows RegistryWindows Registry
Windows Registry
primeteacher32
 
Ftp server
Ftp serverFtp server
Ftp server
pawnbeeta
 
configure a DHCP server on Fedora.pdf
configure a DHCP server on Fedora.pdfconfigure a DHCP server on Fedora.pdf
configure a DHCP server on Fedora.pdf
Hussein Younis
 
Basic Server PPT (THDC)
Basic Server PPT (THDC)Basic Server PPT (THDC)
Basic Server PPT (THDC)
Vineet Pokhriyal
 
Systems Analysis and Design | Final Project
Systems Analysis and Design | Final Project Systems Analysis and Design | Final Project
Systems Analysis and Design | Final Project
Amber Raiford
 
Cisco Packet Tracer Overview
Cisco Packet Tracer OverviewCisco Packet Tracer Overview
Cisco Packet Tracer Overview
Ali Usman
 
007 nms smi, oid, snmp method
007 nms smi, oid, snmp method007 nms smi, oid, snmp method
007 nms smi, oid, snmp method
Hamdamboy (함담보이)
 
What is Socket?
What is Socket?What is Socket?
What is Socket?
Sardar Kaukaz
 
Active-Directory-Domain-Services.pptx
Active-Directory-Domain-Services.pptxActive-Directory-Domain-Services.pptx
Active-Directory-Domain-Services.pptx
JavedAjmal1
 
The 3 aspects of network performance management
The 3 aspects of network performance managementThe 3 aspects of network performance management
The 3 aspects of network performance management
ManageEngine
 
Microsoft Active Directory.pptx
Microsoft Active Directory.pptxMicrosoft Active Directory.pptx
Microsoft Active Directory.pptx
masbulosoke
 
Remote server
Remote serverRemote server
Remote server
Rijosh vk
 
Anti-Spam 101: Risks and Implications for Businesses - Complying with the new...
Anti-Spam 101: Risks and Implications for Businesses - Complying with the new...Anti-Spam 101: Risks and Implications for Businesses - Complying with the new...
Anti-Spam 101: Risks and Implications for Businesses - Complying with the new...
Now Dentons
 
Fall Into Compliance - CASL
Fall Into Compliance - CASLFall Into Compliance - CASL
Fall Into Compliance - CASL
Act-On Software
 

Mais conteúdo relacionado

Mais procurados

Network Administrator Project PowerPoint
Network Administrator Project PowerPointNetwork Administrator Project PowerPoint
Network Administrator Project PowerPoint
Steven Washington
 

Mais procurados (20)

Vagrant e Docker a confronto;scegliere ed iniziare
Vagrant e Docker a confronto;scegliere ed iniziareVagrant e Docker a confronto;scegliere ed iniziare
Vagrant e Docker a confronto;scegliere ed iniziare
 
Bash shell scripting
Bash shell scriptingBash shell scripting
Bash shell scripting
 
Samba
SambaSamba
Samba
 
Topic #3 of outline Server Environment.pptx
Topic #3 of outline Server Environment.pptxTopic #3 of outline Server Environment.pptx
Topic #3 of outline Server Environment.pptx
 
Nmap basics
Nmap basicsNmap basics
Nmap basics
 
Network Administrator Project PowerPoint
Network Administrator Project PowerPointNetwork Administrator Project PowerPoint
Network Administrator Project PowerPoint
 
Lex vs alexa
Lex vs alexaLex vs alexa
Lex vs alexa
 
Linux
LinuxLinux
Linux
 
Windows Registry
Windows RegistryWindows Registry
Windows Registry
 
Ftp server
Ftp serverFtp server
Ftp server
 
configure a DHCP server on Fedora.pdf
configure a DHCP server on Fedora.pdfconfigure a DHCP server on Fedora.pdf
configure a DHCP server on Fedora.pdf
 
Basic Server PPT (THDC)
Basic Server PPT (THDC)Basic Server PPT (THDC)
Basic Server PPT (THDC)
 
Systems Analysis and Design | Final Project
Systems Analysis and Design | Final Project Systems Analysis and Design | Final Project
Systems Analysis and Design | Final Project
 
Cisco Packet Tracer Overview
Cisco Packet Tracer OverviewCisco Packet Tracer Overview
Cisco Packet Tracer Overview
 
007 nms smi, oid, snmp method
007 nms smi, oid, snmp method007 nms smi, oid, snmp method
007 nms smi, oid, snmp method
 
What is Socket?
What is Socket?What is Socket?
What is Socket?
 
Active-Directory-Domain-Services.pptx
Active-Directory-Domain-Services.pptxActive-Directory-Domain-Services.pptx
Active-Directory-Domain-Services.pptx
 
The 3 aspects of network performance management
The 3 aspects of network performance managementThe 3 aspects of network performance management
The 3 aspects of network performance management
 
Microsoft Active Directory.pptx
Microsoft Active Directory.pptxMicrosoft Active Directory.pptx
Microsoft Active Directory.pptx
 
Remote server
Remote serverRemote server
Remote server
 

Semelhante a CASL vs CAN-SPAM - Canada’s Anti‐Spam Law

Fall Into Compliance - CASL
Fall Into Compliance - CASLFall Into Compliance - CASL
Fall Into Compliance - CASL
Act-On Software
 
Anti-Spam Presentation
Anti-Spam Presentation Anti-Spam Presentation
Anti-Spam Presentation
Miles Williams
 

Semelhante a CASL vs CAN-SPAM - Canada’s Anti‐Spam Law (20)

Anti-Spam 101: Risks and Implications for Businesses - Complying with the new...
Anti-Spam 101: Risks and Implications for Businesses - Complying with the new...Anti-Spam 101: Risks and Implications for Businesses - Complying with the new...
Anti-Spam 101: Risks and Implications for Businesses - Complying with the new...
 
Fall Into Compliance - CASL
Fall Into Compliance - CASLFall Into Compliance - CASL
Fall Into Compliance - CASL
 
Bill C-28: What is it and what does it mean for marketers?
Bill C-28: What is it and what does it mean for marketers?Bill C-28: What is it and what does it mean for marketers?
Bill C-28: What is it and what does it mean for marketers?
 
Privacy Concerns in Marketing and Commercial Communications
Privacy Concerns in Marketing and Commercial CommunicationsPrivacy Concerns in Marketing and Commercial Communications
Privacy Concerns in Marketing and Commercial Communications
 
Withstanding FTC and State Scrutiny of Emerging e-Marketing Practices,
Withstanding FTC and State Scrutiny of Emerging e-Marketing Practices,Withstanding FTC and State Scrutiny of Emerging e-Marketing Practices,
Withstanding FTC and State Scrutiny of Emerging e-Marketing Practices,
 
Can Spam At 5
Can Spam At 5Can Spam At 5
Can Spam At 5
 
The Marketer's Guide to Applying CASL
The Marketer's Guide to Applying CASLThe Marketer's Guide to Applying CASL
The Marketer's Guide to Applying CASL
 
CIPS ON CASL presentation Mar 20 2014
CIPS ON CASL presentation Mar 20 2014CIPS ON CASL presentation Mar 20 2014
CIPS ON CASL presentation Mar 20 2014
 
Protecting your castle from CASL
Protecting your castle from CASLProtecting your castle from CASL
Protecting your castle from CASL
 
Casl 2012 Final
Casl 2012 FinalCasl 2012 Final
Casl 2012 Final
 
CAN SPAM Legislation: Is your organization ready?
CAN SPAM Legislation: Is your organization ready?CAN SPAM Legislation: Is your organization ready?
CAN SPAM Legislation: Is your organization ready?
 
CAN-SPAM Act : When Do Corporate Marketing Activities Become SPAM
CAN-SPAM Act : When Do Corporate Marketing Activities Become SPAMCAN-SPAM Act : When Do Corporate Marketing Activities Become SPAM
CAN-SPAM Act : When Do Corporate Marketing Activities Become SPAM
 
Canada Anti-Spam Legislation: Obligations and Opportunity
Canada Anti-Spam Legislation: Obligations and OpportunityCanada Anti-Spam Legislation: Obligations and Opportunity
Canada Anti-Spam Legislation: Obligations and Opportunity
 
Canada's New Anti-Spam Legislation (CASL): What You Need to Know Webinar | Zo...
Canada's New Anti-Spam Legislation (CASL): What You Need to Know Webinar | Zo...Canada's New Anti-Spam Legislation (CASL): What You Need to Know Webinar | Zo...
Canada's New Anti-Spam Legislation (CASL): What You Need to Know Webinar | Zo...
 
Canada's Anti-Spam Legislation (CASL): Everything You Need to Know | ZoomInfo
Canada's Anti-Spam Legislation (CASL): Everything You Need to Know | ZoomInfoCanada's Anti-Spam Legislation (CASL): Everything You Need to Know | ZoomInfo
Canada's Anti-Spam Legislation (CASL): Everything You Need to Know | ZoomInfo
 
Fighting Internet and Wireless Spam Act
Fighting Internet and Wireless Spam ActFighting Internet and Wireless Spam Act
Fighting Internet and Wireless Spam Act
 
Canadian Anti Spam Legislation
Canadian Anti Spam Legislation Canadian Anti Spam Legislation
Canadian Anti Spam Legislation
 
Canada's Privacy and New Anti-spam Laws: What You Need to Know to Comply
Canada's Privacy and New Anti-spam Laws: What You Need to Know to ComplyCanada's Privacy and New Anti-spam Laws: What You Need to Know to Comply
Canada's Privacy and New Anti-spam Laws: What You Need to Know to Comply
 
Anti-Spam Presentation
Anti-Spam Presentation Anti-Spam Presentation
Anti-Spam Presentation
 
Canada CASL Anti-Spam Presentation - Wishart Law Firm LLP
Canada CASL Anti-Spam Presentation - Wishart Law Firm LLPCanada CASL Anti-Spam Presentation - Wishart Law Firm LLP
Canada CASL Anti-Spam Presentation - Wishart Law Firm LLP
 

Mais de Now Dentons

FMC is Now Dentons
FMC is Now DentonsFMC is Now Dentons
FMC is Now Dentons
Now Dentons
 

Mais de Now Dentons (20)

Meet dentons
Meet dentonsMeet dentons
Meet dentons
 
FMC is Now Dentons
FMC is Now DentonsFMC is Now Dentons
FMC is Now Dentons
 
Foreign Workers, International Tax and Oil & Gas Market Update
Foreign Workers, International Tax and Oil & Gas Market UpdateForeign Workers, International Tax and Oil & Gas Market Update
Foreign Workers, International Tax and Oil & Gas Market Update
 
Protecting Your Start-Up Company's IP
Protecting Your Start-Up Company's IPProtecting Your Start-Up Company's IP
Protecting Your Start-Up Company's IP
 
Privacy and Security in Mobile E-Commerce
Privacy and Security in Mobile E-CommercePrivacy and Security in Mobile E-Commerce
Privacy and Security in Mobile E-Commerce
 
Drafting for the Matrimonial Property Act
Drafting for the Matrimonial Property ActDrafting for the Matrimonial Property Act
Drafting for the Matrimonial Property Act
 
Trends in Energy Regulatory Law
Trends in Energy Regulatory LawTrends in Energy Regulatory Law
Trends in Energy Regulatory Law
 
Public M&A Transactions - Deal Points
Public M&A Transactions - Deal PointsPublic M&A Transactions - Deal Points
Public M&A Transactions - Deal Points
 
Giving Away the Farm
Giving Away the FarmGiving Away the Farm
Giving Away the Farm
 
Risk Apportionment in the Purchase and Sale Transaction
Risk Apportionment in the Purchase and Sale TransactionRisk Apportionment in the Purchase and Sale Transaction
Risk Apportionment in the Purchase and Sale Transaction
 
Letters of Intent - Tips and Traps for Commercial Lawyers
Letters of Intent - Tips and Traps for Commercial LawyersLetters of Intent - Tips and Traps for Commercial Lawyers
Letters of Intent - Tips and Traps for Commercial Lawyers
 
Protect you Rights and Avoid Liability! Current Developments and Major Implic...
Protect you Rights and Avoid Liability! Current Developments and Major Implic...Protect you Rights and Avoid Liability! Current Developments and Major Implic...
Protect you Rights and Avoid Liability! Current Developments and Major Implic...
 
Preliminary Economic Assessments
Preliminary Economic AssessmentsPreliminary Economic Assessments
Preliminary Economic Assessments
 
An Introduction to Legal Aspects of Customer Acquisitions for Startups
An Introduction to Legal Aspects of Customer Acquisitions for StartupsAn Introduction to Legal Aspects of Customer Acquisitions for Startups
An Introduction to Legal Aspects of Customer Acquisitions for Startups
 
An Introduction to Letters of Credit for Banking Lawyers
An Introduction to Letters of Credit for Banking LawyersAn Introduction to Letters of Credit for Banking Lawyers
An Introduction to Letters of Credit for Banking Lawyers
 
Preparing the Legal Framework for Mobile and Other Emerging Payments
Preparing the Legal Framework for Mobile and Other Emerging Payments Preparing the Legal Framework for Mobile and Other Emerging Payments
Preparing the Legal Framework for Mobile and Other Emerging Payments
 
Update on Hydraulic Fracturing: Preparing for Gasland 2
Update on Hydraulic Fracturing: Preparing for Gasland 2Update on Hydraulic Fracturing: Preparing for Gasland 2
Update on Hydraulic Fracturing: Preparing for Gasland 2
 
Canada, China and Copyright Law
Canada, China and Copyright LawCanada, China and Copyright Law
Canada, China and Copyright Law
 
Intellectual Property and Business Law
Intellectual Property and Business LawIntellectual Property and Business Law
Intellectual Property and Business Law
 
The Copyright Modernization Act
The Copyright Modernization ActThe Copyright Modernization Act
The Copyright Modernization Act
 

Último

The Path to Product Excellence: Avoiding Common Pitfalls and Enhancing Commun...
The Path to Product Excellence: Avoiding Common Pitfalls and Enhancing Commun...The Path to Product Excellence: Avoiding Common Pitfalls and Enhancing Commun...
The Path to Product Excellence: Avoiding Common Pitfalls and Enhancing Commun...
Aggregage
 
(Anamika) VIP Call Girls Napur Call Now 8617697112 Napur Escorts 24x7
(Anamika) VIP Call Girls Napur Call Now 8617697112 Napur Escorts 24x7(Anamika) VIP Call Girls Napur Call Now 8617697112 Napur Escorts 24x7
(Anamika) VIP Call Girls Napur Call Now 8617697112 Napur Escorts 24x7
Call Girls in Nagpur High Profile Call Girls
 
Call Girls Hebbal Just Call 👗 7737669865 👗 Top Class Call Girl Service Bangalore
Call Girls Hebbal Just Call 👗 7737669865 👗 Top Class Call Girl Service BangaloreCall Girls Hebbal Just Call 👗 7737669865 👗 Top Class Call Girl Service Bangalore
Call Girls Hebbal Just Call 👗 7737669865 👗 Top Class Call Girl Service Bangalore
amitlee9823
 
Quick Doctor In Kuwait +2773`7758`557 Kuwait Doha Qatar Dubai Abu Dhabi Sharj...
Quick Doctor In Kuwait +2773`7758`557 Kuwait Doha Qatar Dubai Abu Dhabi Sharj...Quick Doctor In Kuwait +2773`7758`557 Kuwait Doha Qatar Dubai Abu Dhabi Sharj...
Quick Doctor In Kuwait +2773`7758`557 Kuwait Doha Qatar Dubai Abu Dhabi Sharj...
daisycvs
 
Call Girls Kengeri Satellite Town Just Call 👗 7737669865 👗 Top Class Call Gir...
Call Girls Kengeri Satellite Town Just Call 👗 7737669865 👗 Top Class Call Gir...Call Girls Kengeri Satellite Town Just Call 👗 7737669865 👗 Top Class Call Gir...
Call Girls Kengeri Satellite Town Just Call 👗 7737669865 👗 Top Class Call Gir...
amitlee9823
 
Call Girls In Panjim North Goa 9971646499 Genuine Service
Call Girls In Panjim North Goa 9971646499 Genuine ServiceCall Girls In Panjim North Goa 9971646499 Genuine Service
Call Girls In Panjim North Goa 9971646499 Genuine Service
ritikaroy0888
 
Uneak White's Personal Brand Exploration Presentation
Uneak White's Personal Brand Exploration PresentationUneak White's Personal Brand Exploration Presentation
Uneak White's Personal Brand Exploration Presentation
uneakwhite
 
Call Girls From Pari Chowk Greater Noida ❤️8448577510 ⊹Best Escorts Service I...
Call Girls From Pari Chowk Greater Noida ❤️8448577510 ⊹Best Escorts Service I...Call Girls From Pari Chowk Greater Noida ❤️8448577510 ⊹Best Escorts Service I...
Call Girls From Pari Chowk Greater Noida ❤️8448577510 ⊹Best Escorts Service I...
lizamodels9
 
Call Girls Jp Nagar Just Call 👗 7737669865 👗 Top Class Call Girl Service Bang...
Call Girls Jp Nagar Just Call 👗 7737669865 👗 Top Class Call Girl Service Bang...Call Girls Jp Nagar Just Call 👗 7737669865 👗 Top Class Call Girl Service Bang...
Call Girls Jp Nagar Just Call 👗 7737669865 👗 Top Class Call Girl Service Bang...
amitlee9823
 
Call Girls Zirakpur👧 Book Now📱7837612180 📞👉Call Girl Service In Zirakpur No A...
Call Girls Zirakpur👧 Book Now📱7837612180 📞👉Call Girl Service In Zirakpur No A...Call Girls Zirakpur👧 Book Now📱7837612180 📞👉Call Girl Service In Zirakpur No A...
Call Girls Zirakpur👧 Book Now📱7837612180 📞👉Call Girl Service In Zirakpur No A...
Sheetaleventcompany
 
Insurers' journeys to build a mastery in the IoT usage
Insurers' journeys to build a mastery in the IoT usageInsurers' journeys to build a mastery in the IoT usage
Insurers' journeys to build a mastery in the IoT usage
Matteo Carbone
 

Último (20)

How to Get Started in Social Media for Art League City
How to Get Started in Social Media for Art League CityHow to Get Started in Social Media for Art League City
How to Get Started in Social Media for Art League City
 
Katrina Personal Brand Project and portfolio 1
Katrina Personal Brand Project and portfolio 1Katrina Personal Brand Project and portfolio 1
Katrina Personal Brand Project and portfolio 1
 
It will be International Nurses' Day on 12 May
It will be International Nurses' Day on 12 MayIt will be International Nurses' Day on 12 May
It will be International Nurses' Day on 12 May
 
The Path to Product Excellence: Avoiding Common Pitfalls and Enhancing Commun...
The Path to Product Excellence: Avoiding Common Pitfalls and Enhancing Commun...The Path to Product Excellence: Avoiding Common Pitfalls and Enhancing Commun...
The Path to Product Excellence: Avoiding Common Pitfalls and Enhancing Commun...
 
Business Model Canvas (BMC)- A new venture concept
Business Model Canvas (BMC)- A new venture conceptBusiness Model Canvas (BMC)- A new venture concept
Business Model Canvas (BMC)- A new venture concept
 
(Anamika) VIP Call Girls Napur Call Now 8617697112 Napur Escorts 24x7
(Anamika) VIP Call Girls Napur Call Now 8617697112 Napur Escorts 24x7(Anamika) VIP Call Girls Napur Call Now 8617697112 Napur Escorts 24x7
(Anamika) VIP Call Girls Napur Call Now 8617697112 Napur Escorts 24x7
 
Organizational Transformation Lead with Culture
Organizational Transformation Lead with CultureOrganizational Transformation Lead with Culture
Organizational Transformation Lead with Culture
 
Value Proposition canvas- Customer needs and pains
Value Proposition canvas- Customer needs and painsValue Proposition canvas- Customer needs and pains
Value Proposition canvas- Customer needs and pains
 
Call Girls Hebbal Just Call 👗 7737669865 👗 Top Class Call Girl Service Bangalore
Call Girls Hebbal Just Call 👗 7737669865 👗 Top Class Call Girl Service BangaloreCall Girls Hebbal Just Call 👗 7737669865 👗 Top Class Call Girl Service Bangalore
Call Girls Hebbal Just Call 👗 7737669865 👗 Top Class Call Girl Service Bangalore
 
Quick Doctor In Kuwait +2773`7758`557 Kuwait Doha Qatar Dubai Abu Dhabi Sharj...
Quick Doctor In Kuwait +2773`7758`557 Kuwait Doha Qatar Dubai Abu Dhabi Sharj...Quick Doctor In Kuwait +2773`7758`557 Kuwait Doha Qatar Dubai Abu Dhabi Sharj...
Quick Doctor In Kuwait +2773`7758`557 Kuwait Doha Qatar Dubai Abu Dhabi Sharj...
 
Call Girls Kengeri Satellite Town Just Call 👗 7737669865 👗 Top Class Call Gir...
Call Girls Kengeri Satellite Town Just Call 👗 7737669865 👗 Top Class Call Gir...Call Girls Kengeri Satellite Town Just Call 👗 7737669865 👗 Top Class Call Gir...
Call Girls Kengeri Satellite Town Just Call 👗 7737669865 👗 Top Class Call Gir...
 
Call Girls In Panjim North Goa 9971646499 Genuine Service
Call Girls In Panjim North Goa 9971646499 Genuine ServiceCall Girls In Panjim North Goa 9971646499 Genuine Service
Call Girls In Panjim North Goa 9971646499 Genuine Service
 
RSA Conference Exhibitor List 2024 - Exhibitors Data
RSA Conference Exhibitor List 2024 - Exhibitors DataRSA Conference Exhibitor List 2024 - Exhibitors Data
RSA Conference Exhibitor List 2024 - Exhibitors Data
 
Uneak White's Personal Brand Exploration Presentation
Uneak White's Personal Brand Exploration PresentationUneak White's Personal Brand Exploration Presentation
Uneak White's Personal Brand Exploration Presentation
 
Phases of Negotiation .pptx
Phases of Negotiation .pptx Phases of Negotiation .pptx
Phases of Negotiation .pptx
 
Call Girls From Pari Chowk Greater Noida ❤️8448577510 ⊹Best Escorts Service I...
Call Girls From Pari Chowk Greater Noida ❤️8448577510 ⊹Best Escorts Service I...Call Girls From Pari Chowk Greater Noida ❤️8448577510 ⊹Best Escorts Service I...
Call Girls From Pari Chowk Greater Noida ❤️8448577510 ⊹Best Escorts Service I...
 
Call Girls Jp Nagar Just Call 👗 7737669865 👗 Top Class Call Girl Service Bang...
Call Girls Jp Nagar Just Call 👗 7737669865 👗 Top Class Call Girl Service Bang...Call Girls Jp Nagar Just Call 👗 7737669865 👗 Top Class Call Girl Service Bang...
Call Girls Jp Nagar Just Call 👗 7737669865 👗 Top Class Call Girl Service Bang...
 
A DAY IN THE LIFE OF A SALESMAN / WOMAN
A DAY IN THE LIFE OF A SALESMAN / WOMANA DAY IN THE LIFE OF A SALESMAN / WOMAN
A DAY IN THE LIFE OF A SALESMAN / WOMAN
 
Call Girls Zirakpur👧 Book Now📱7837612180 📞👉Call Girl Service In Zirakpur No A...
Call Girls Zirakpur👧 Book Now📱7837612180 📞👉Call Girl Service In Zirakpur No A...Call Girls Zirakpur👧 Book Now📱7837612180 📞👉Call Girl Service In Zirakpur No A...
Call Girls Zirakpur👧 Book Now📱7837612180 📞👉Call Girl Service In Zirakpur No A...
 
Insurers' journeys to build a mastery in the IoT usage
Insurers' journeys to build a mastery in the IoT usageInsurers' journeys to build a mastery in the IoT usage
Insurers' journeys to build a mastery in the IoT usage
 

CASL vs CAN-SPAM - Canada’s Anti‐Spam Law

  • 1. Comparing CASL to CAN-SPAM Canada’s Anti-Spam Law Raising the bar for online business communications in North America Margot Patterson, Counsel margot.patterson@fmc-law.com http://ca.linkedin.com/in/margotpatterson Updated January 2013 1
  • 2. Canada’s Anti-Spam Law (CASL) • CASL was enacted in December 2010 and is expected to enter into force in late 2013, or 2014 • CASL is intended to promote e-commerce by deterring spam, identity theft, phishing, spyware, viruses, botnets, and misleading commercial representations online • CASL creates new offences, enforcement mechanisms and penalties to address these online threats 2
  • 3. Canada’s Anti-Spam Law (CASL) • Canada is the last of the G-8 countries to introduce an over- arching law to combat spam, which continues to represent about 80% of all global e-mail traffic • Canada has distinguished itself in making its legislation tough: – Higher consent standards – Detailed content requirements – significant penalties: “Canada’s $10 million anti-spam law” 3
  • 4. Comparing CASL to U.S. CAN-SPAM Act: A Snapshot 4
  • 5. Comparing CASL to CAN-SPAM Some Similarities – both CASL and CAN-SPAM: • Are aimed at unsolicited online communications, and unfair/deceptive online practices • Require consent to send commercial electronic messages • Directly impact business communications with customers, prospective clients, and subscribers 5
  • 6. Comparing CASL to CAN-SPAM Key Differences – CASL has: • Clear reach outside Canada – CASL expressly applies to messages “accessed from a computer system in Canada”: message can be sent from outside Canada • Higher standard for consent – Opt-in (CASL) versus Opt-out (CAN-SPAM) • Broader application – CASL also applies to installation of computer programs • Higher penalties – $10 million maximum penalty for CASL contravention 6
  • 7. Comparing CASL to CAN-SPAM • The Implications: • More online activities will be caught by CASL • More activities affecting Canadians will be caught by CASL, even if initiated outside Canada • More steps will be needed under CASL to communicate online • Greater exposure to liability under CASL 7
  • 8. Comparing CASL to CAN-SPAM Let’s Take a Closer Look at: • Objective of the legislation • Scope: Who, What, Where • Consent • Disclosure (Message Content) • Violations and Enforcement and… • Next Steps for Businesses 8
  • 10. The Objective: U.S. CAN-SPAM Act, 2003 U.S. Senator Ron Wyden (D-Ore.), October 22, 2003: "Today, the Senate has sent the message that the government is going on the offensive against kingpin spammers. Americans are tired of just watching and fretting over in-boxes clogged with unwanted e-mail, and this legislation is an important step toward giving them more control." 10
  • 11. The Objective: CASL, 2010 The Honourable Tony Clement, Minister of Industry, May 25, 2010: “The proposed (legislation) is intended to deter the most damaging and deceptive forms of spam, such as identity theft, phishing and spyware, from occurring in Canada and to help drive spammers out of Canada.” 11
  • 12. Scope: Who, What and Where 12
  • 13. Scope: Who (Reach) CASL CAN-SPAM • (For spam) senders of “commercial • (For spam) senders of “commercial electronic messages” electronic mail messages” • Potential vicarious liability: • Directors, officers, employers not – Expressly includes directors, referenced officers, agents or mandataries of a corporation – Expressly includes employers of employees acting within scope of employment 13
  • 14. Scope: What (Activities) CASL CAN-SPAM • Spam • Spam • Malware, spyware, botnets • Purely malicious spam (i.e. not • Network re-routing “primarily commercial”) not • False or misleading covered representations online • False/misleading transmission • Installation of computer programs information (addresses aspects of network re-routing) • Address harvesting • Installation of computer programs not covered • Address harvesting 14
  • 15. Scope: What (Messages) CASL CAN-SPAM A “commercial electronic message” A “commercial electronic mail message” is: is: • An electronic message • An electronic mail message – including text, sound, – email only voice, image • Sent to an electronic address – including e-mail, IM, phone or “any similar account” 15
  • 16. Scope: What (Messages) CASL CAN-SPAM A “commercial electronic message”: A “commercial electronic mail message”: • Has as its purpose or one of its • The primary purpose of which is purposes… – commercial advertisement or – considering message content, promotion of a commercial hyperlinks, or contact info… product or service – to encourage participation in – Including content on a a commercial activity: website operated for a • transaction, act or conduct of commercial purpose a commercial character • whether or not in • Excludes “transactional or expectation of profit relationship” messages 16
  • 17. Scope: Where (Jurisdiction) CASL CAN-SPAM • Activities outside Canada • Activities outside U.S. – Spam: computer system in – Not expressly addressed in CAN- Canada used to send or access SPAM Act message – Considered case-by-case – Software installation: computer pursuant to conflict of laws rules system receiving the program in Canada (or if installer is in • See: Facebook, Inc. v. Guerbuez, Canada, or operating under 2008 U.S. Dist. LEXIS 108921 (N.D. direction of person in Canada) Cal. 2008) [enforced by Quebec Superior Court in 2010] – Altering transmission data: computer system in Canada used to send/route or access message 17
  • 18. Consent 18
  • 19. Consent CASL CAN-SPAM • CEMs can be sent if: • CEMs can be sent unless: – You have the express or – The recipient opts out of implied consent of the future commercial email recipient (“opt-in”), OR if – consent is not required under CASL 19
  • 20. Consent CASL CAN-SPAM • Exceptions to the consent requirement: • Exception to consent – “transactional or relationship messages” are not CEMs: – Message between individuals with personal or family relationship – Facilitating or confirming transaction that – An inquiry or application to a person the recipient already has agreed to; engaged in a commercial activity – Warranty, recall, safety, or security – Quote or estimate, requested by recipient information about a product or service; – Facilitating, completing or confirming a pre- – Information about a change in terms or existing transaction features or account balance information regarding a membership, subscription, – Warranty, product recall or safety/security account, loan or other ongoing commercial information relationship; – Factual information regarding subscription, – Information about an employment membership, account, loan relationship or employee benefits; or – Ongoing information about recipient’s – Delivering goods or services as part of a employment or benefit plan transaction the recipient already – Delivering a product, good or service, agreed to including updates/upgrades, as part of a transaction the recipient already agreed to 20
  • 21. Consent • See also Draft Industry Canada regulations for further proposed exceptions to the consent requirement: 1. Limited Exemptions for Certain Types of Message (within businesses, between organizations in a business relationship, legal notices) 2. Third-Party Referrals 3. Clarifying What is Required where Sender is an “Unknown Third Party” 4. Clarifying Membership in a Club, Association or Voluntary Organization 5. Limited Exemptions for Protecting, Upgrading and Updating Computer Networks • Comments on these Draft regulations due February 5, 2013 21
  • 22. Consent CASL CAN-SPAM • Implied consent: • Implied consent generally available for – Commercial transaction with the unsolicited messages, where the recipient recipient OR has not opted out of receiving them – Business, investment or gaming opportunity with recipient  within the previous two years – Inquiry from the recipient in the previous six months about the above – Written contract with the recipient, still in effect or expired within previous two years – Recipient has conspicuously published his or her electronic address, and message is relevant to his or her business role or function – Recipient has disclosed electronic address, and the message is relevant to his or her business role or function 22
  • 23. Consent CASL CAN-SPAM • Getting express consent: • No corresponding requirement – Purpose for the consent since consent is generally – Name “opt out” – Mailing address, and either phone number, e-mail or web address – Statement that the person can withdraw consent – See CRTC Guidelines 23
  • 25. Disclosure (Message Content) CASL CAN-SPAM The message must: The message must: – In message itself or via clear and prominent website link: • Identify the sender (including • Identify the sender (CAN-SPAM defines “sent on behalf of”); who designated “sender” is) • Include mailing address, and • Include physical postal address either phone, email or web • Include email address or other form of address; and Internet-based communication to unsubscribe • Include an unsubscribe mechanism – See CRTC Guidelines 25
  • 27. Violations and Enforcement CASL CAN-SPAM • CRTC: primary enforcement • FTC: primary enforcement agency, agency, including administrative including administrative penalties monetary penalties (AMPs) – Each individual email in violation – Maximum penalty is $10 million of CAN-SPAM is subject to for an organization, per violation penalties of up to $16,000 – Relevant factors include purpose of penalty, nature & scope of violation, history, financial benefit, ability to pay – May enter into compliance undertaking with CRTC 27
  • 28. Violations and Enforcement CASL CAN-SPAM • Directors and officers’ liability / • D&O and employers’ liability not Employers’ liability expressly set out in legislation • Importance of “due diligence”: – No liability where due diligence taken to prevent the violation 28
  • 29. Violations and Enforcement CASL CAN-SPAM • Private Right of Action • Private Right of Action – For individual or organization – No PRA for an individual affected by a contravention: can – PRA available to a “provider of obtain court order for compensation Internet access service”, “adversely – Acts or omissions (e.g. spam-related) affected by a violation” – Remedies include compensation for • Injunctive relief loss or damage suffered or expenses • Monetary damages for actual loss incurred, and a maximum penalty of: incurred • $200 per contravention of anti-spam; • Statutory damages based on number • max $1 million per day for spam, of unlawful messages transmitted malware, spyware, message routing, – PRA taken by ISPs, MySpace, PI harvesting, misrepresentation; and FaceBook • max $1 million per act of aiding, inducing, procuring breach of spam, malware, spyware, message routing. • Class Actions? 29
  • 30. Next Steps: for CASL 30
  • 31. Next Steps: for CASL • Regulations – CRTC regulations on CEM content & consent final March 2012 – Draft Industry Canada regulations issued for consultation • Entry into force – Expected 2013 or 2014 – Some steps should be taken now to be compliant in time – See “Next Steps for Doing Business in Canada” • Spam Reporting Centre – Once operational, will accept electronic messages, analyze trends in spam and other “threats to electronic commerce” 31
  • 32. Next Steps: for CASL New roles and responsibilities for three government agencies: • Canadian Radio-television and Telecommunications Commission (CRTC) – spam, malware, botnets, network re-routing • Competition Bureau – false/misleading representations online • Office of the Privacy Commissioner – address harvesting, dictionary attacks, spyware (personal information) 32
  • 33. Next Steps: for CASL • International Cooperation – CASL mandates the three agencies to share information and consult with their international equivalents, including FTC • Bulletins / Interpretive Guidelines? – Many definitions and requirements remain broad and unclear in CASL and the regulations – CRTC has issued Information Bulletins on interpreting the Regulations, and on Opt-in Consent (“toggling”) 33
  • 34. Next Steps: for Doing Business in Canada 34
  • 35. Next Steps: for Businesses • Three-Year Transition Period – For three years after entry into force of anti-spam and computer program update/upgrade provisions: • Implied consent where existing business or non-business relationship – In all cases, recipient can still withdraw consent at any time – Businesses must obtain express consent during the three-year transition period, to continue afterwards. 35
  • 36. Next Steps: for Businesses • CASL Audit – Conduct an audit of online communications with clients, prospects, and third parties, including: • bulk email, automated messages, periodic client newsletters and updates • processes for installation of software updates/upgrades • CASL Checklist – Review above communications (e-mail, computer program installation) against CASL requirements: • consent, unsubscribe, and disclosure • available exceptions 36
  • 37. Next Steps: for Businesses • CASL Compliance Policy should: – Update your website and internal Privacy Policy – Update forms and procedures that document consent – Address unsubscribe requirements and timeframes – Update existing customer service processes – Include information/training for employees, management and Board of Directors – Address third-party contract requirements (limitation of liability, representations & warranties), including address rental • Consider insurance (traditional policies may not cover) 37
  • 38. Next Steps: for Businesses • When operating in the North American market… meet both CASL and CAN-SPAM requirements 38
  • 39. The preceding presentation contains examples of the kinds of issues companies dealing with anti-spam could face. If you are faced with one of these issues, please retain professional assistance as each situation is unique.
  • 40. More Information on CASL: www.fmc-law.com/AreaOfExpertise/Anti_Spam.aspx http://www.datagovernancelaw.com/category/anti_spam Questions? Margot Patterson margot.patterson@fmc-law.com (613) 783-9693