• Now we only have to worry about 1 law, not a minimum of 37! By the time Congress got around to tackling the spam issue, 37 states already had their own laws that we had to be aware of when sending to people in those states. That's a lot of tracking, but now the CAN-SPAM Act preempts all of these other laws - except those laws that cover fraud and deception.
• This new law excludes emails that are called transactional or relationship emails - those that provide, for example, a warranty, a recall, safety or security info, or customer notices such as those regarding a subscription, status or account as well as emails related to employment relationship or benefits, or those that deliver goods or services, including updates or upgrades. A prohibition on false or misleading header information applies to ALL emails of any type -industry leading email services like Campaigner ensure that none of your emails have false or misleading header information.
• The law also specifically bans the practice of harvesting emails through automated means. This would mean it's now illegal to obtain email addresses by crawling websites. Purchasing harvested email addresses from someone else is also banned. Using email addresses obtained by crawling websites is just bad marketing - making it illegal is a positive step for permission marketing.
• You can't sell, lease, transfer or release an email address after receipt of an opt-out request - common sense, no?

The "OK I can deal with this"!

• You must now put your full VALID PHYSICAL POSTAL ADDRESS in every email. There is much debate as to whether a PO box qualifies under the law, but you are definitely safe with a street address.
• You must not have deceptive subject lines. This means your subject line must describe the content of the email. Subject lines such as "Just for you" would be considered misleading.
• The "reply" email address used in your campaign must work and it must remain active for at least thirty days after sending your email. Certainly not a hardship - I want people to reply and reach me!
• You must have an OPT OUT mechanism in every commercial email. A commercial email is defined as "an Electronic Mail Message the primary purpose of which is the commercial advertisement or promotion of a commercial product or service." This opt out mechanism can be an opt-out via reply email or by way of a link in the email - both are fine. This opt-out mechanism must be functional for 30 days after sending. Using Campaigner meets this condition, just don't delete your lists for 30 days after sending a campaign and you'll be fine.
• Labels are required on commercial email containing sexually oriented material but this is not needed if "affirmative consent" (opt in) is obtained.

The Possibly Bad

• The law says that you have 10 days to take someone off your list and that you may not send them any further messages more than 10 days after they have opted out. It gets tricky because a person acting on behalf of a sender, perhaps a partner or reseller or agent or even salesperson acting on your behalf, may not initiate any sending after the user has opted out. You will probably want to review who, if anyone, sends email on your behalf.
• You can make your opt out mechanism a list or menu of the types of messages from which a recipient may opt out, but you MUST include an option to opt out of all messages from you.
• Here's an interesting one. Where you do not have direct consent, you must label the email as an advertisement. You may use the letters ADV in the subject line but this particular identification is not required. It's not hard to imagine how every filter on the planet will be updated very soon. Your best bet - stick to opt in
• The From field must not mislead. This means that your brand or company name should be in the From field. This is a bit tricky if someone is sending a promotional message on your behalf. For example, an email about a promo on your product sent by your reseller technically shouldn't be From the reseller, but rather have your brand name in the From field. Hmmm, I wonder what to put in the From field when the promo has more than one company's product in it?
• Recipients of your emails can request not to receive future commercial electronic mail messages from that sender at the electronic mail address where the message was received. This is bigger than it appears. If someone asks to be taken off all mailings from your company - you must comply. Here is the implication - ANYONE mailing about your product MUST check against a list of people who don't want your mail and ensure that they are not sending to that person. You will have to maintain a suppression list (which Campaigner can do for you) and you must make sure that other departments or third parties mailing about your brand use that list. The option to get off all your lists must be functional for 30 days after the message is sent, and you have 10 days after receipt of the request to comply.