
The CAN-SPAM Act, passed in 2003, is a United States federal law that sets out a range of requirements for emails and other messages from commercial entities. The Act supersedes some but not all types of anti-spam laws passed by individual states. While the Act cancels out most provisions in over 30 state anti-spam laws, it does not prevent all state spam-related prosecutions. For example, state attorneys can bring prosecutions for CAN-SPAM violations, and states can use their own laws to prosecute companies that send emails containing fraudulent or false information.
| Characteristics | Values |
|---|---|
| Supersedes state anti-spam laws | Yes, but not all |
| State laws that are left intact | Parts of state laws that prohibit false or deceptive information in commercial emails |
| State laws that are not superseded | State fraud or computer crime laws |
| CAN-SPAM Act requirements | Rules regarding subject lines, disclosures, and headers |
| CAN-SPAM Act right | Recipients can request removal from email lists |
| CAN-SPAM Act penalties | Details the penalties for businesses that violate the law |
| Who can sue under the CAN-SPAM Act | FTC, state attorneys, and Internet service providers |
| Who cannot sue under the CAN-SPAM Act | Private citizens |
Explore related products
What You'll Learn

CAN-SPAM supersedes state anti-spam laws in most cases
The CAN-SPAM Act is a United States federal law that governs emails and other messages from commercial entities. The law, whose full name is the Controlling the Assault of Non-Solicited Pornography and Marketing Act, dictates a range of requirements for emails from businesses, marketers, and nonprofit organizations. These requirements include rules regarding subject lines, disclosures, and headers, as well as the right of recipients to request removal from email lists. The CAN-SPAM Act supersedes some but not all types of anti-spam laws passed by individual states.
While the CAN-SPAM Act takes precedence over most state anti-spam provisions, it does not prevent all state spam-related prosecutions. For example, the law allows state attorneys general to bring prosecutions for CAN-SPAM violations and states can use their own laws to prosecute companies that send emails containing fraudulent or false information. Additionally, internet service providers can file civil lawsuits for damages caused by spammers.
The CAN-SPAM Act also does not supersede state fraud or computer crime laws. For instance, when the CAN-SPAM Act went into effect on January 1, it canceled out a tougher California law that would have required companies to obtain opt-in permission from all customers receiving commercial emails. The California law would have imposed significant fines on senders of unsolicited messages, whereas the CAN-SPAM Act only requires that customers be able to opt out of commercial emails.
Overall, the CAN-SPAM Act provides a more uniform legal framework for internet-based commerce and reduces the compliance burden on legitimate email marketers. However, it is important to note that the Act does not provide a right for individual recipients of spam to sue spammers, and that courts will ultimately resolve any questions about the scope of the Act's preemption of state laws.
Law Enforcement Careers: Can You Make the Cut?
You may want to see also
Explore related products

It does not supersede state laws on fraud or computer crime
The CAN-SPAM Act of 2003 is a United States federal law that governs emails and messages from commercial entities. It dictates a range of requirements for emails from businesses, marketers, and non-profit organizations. The law supersedes some but not all types of anti-spam laws passed by individual states.
While the CAN-SPAM Act cancels out most provisions in over 30 state anti-spam laws, it does not supersede state laws on fraud or computer crime. For example, when CAN-SPAM went into effect on January 1, it canceled out a tougher California law that would have required companies to obtain opt-in permission from all customers receiving commercial emails. However, the California law would have also held senders of unsolicited messages liable for damages of up to $1,000 for each message to an individual and up to $1 million for each email advertisement sent.
The CAN-SPAM Act allows state attorneys general to bring prosecutions for violations of the Act and states can still use their own laws to prosecute companies that send emails containing fraudulent or false information. Internet service providers can also file civil lawsuits for damages caused by spammers.
It is important to note that private citizens do not have standing to sue under the CAN-SPAM Act. The Act also does not penalize organizations for emails sent by spammers that impersonate them, although organizations can take steps to make it harder for other parties to spoof their domains.
Pursuing a Law Masters: Do You Need a Law Degree?
You may want to see also
Explore related products

State attorneys can prosecute CAN-SPAM violations
The CAN-SPAM Act is a federal law enacted in 2003 to combat spam emails. It distinguishes between commercial and transactional emails, with commercial emails being those that advertise or promote a product or service. The act applies to businesses engaging in interstate or foreign commerce and the commercial email messages they send for promotional purposes.
The CAN-SPAM Act supersedes most state laws specific to commercial email and spam. However, state attorneys general are authorised to bring civil actions on behalf of their constituents. They can seek damages for actual loss or statutory damages of up to $250 per violation, with a maximum award of $2 million. State attorneys can also seek injunctive relief and attorney's fees.
While private citizens cannot take direct legal action under the CAN-SPAM Act, they must rely on the Federal Trade Commission (FTC) or state attorneys general to sue on their behalf. The FTC can sue both the sender and initiator of the spam email, as well as any other party that benefited from the violation. Criminal penalties under the Act include imprisonment for up to five years for accessing someone else's computer to send spam, using false information to register multiple email accounts, or retransmitting spam messages to mislead others.
State laws that deal with spam may also provide private rights of action for violations, as long as they are not preempted by the CAN-SPAM Act. In such cases, consumers can file a lawsuit under state law.
Owe Tickets, Join Law Enforcement? Understanding Legal Requirements
You may want to see also
Explore related products

CAN-SPAM cancels out most provisions in over 30 state anti-spam laws
The CAN-SPAM Act of 2003 sets the rules for commercial emails, establishing requirements for commercial messages, giving recipients the right to stop receiving emails, and imposing penalties for violations. The act supersedes state anti-spam laws that do not deal with false or deceptive activity. It does not require emailers to get permission before sending marketing messages, and it prevents states from enacting stronger anti-spam protections.
The CAN-SPAM Act, with its accompanying CAN-SPAM Rule, is enforced by the Federal Trade Commission (FTC). The act applies to all commercial messages, including bulk email and email that promotes content on commercial websites. Each separate email in violation of the act is subject to penalties of up to $53,088.
While the CAN-SPAM Act provides a national framework for regulating commercial emails and spam, it has been criticised for not prohibiting many types of email spam and for preempting some state laws that could have provided victims with practical means of redress. Specifically, the act does not require senders to obtain permission before sending marketing messages and prohibits recipients from suing spammers or filing class-action lawsuits.
Despite these criticisms, the CAN-SPAM Act has been enforced, with the first arrest under the act occurring in 2005. Advertising organisations, such as the Data & Marketing Association (DMA), have sought to weaken the implementation of the law, for instance, by lengthening the time for honouring opt-outs and eliminating rewards for those who assist the FTC in enforcement.
In conclusion, the CAN-SPAM Act of 2003 supersedes most provisions in over 30 state anti-spam laws by establishing a national framework for regulating commercial emails and spam. While it has been criticised for not adequately protecting recipients from spam, it provides a standardised set of rules and penalties for senders to follow.
Governing Law: Choosing NYC for Your Agreements
You may want to see also
Explore related products

Private citizens cannot sue under the CAN-SPAM Act
The CAN-SPAM Act of 2003 establishes the United States' first national standards for the sending of commercial emails. The Act sets the rules for commercial emails, establishes requirements for commercial messages, gives recipients the right to request senders to stop emailing them, and outlines penalties for violations. While the Act supersedes state anti-spam laws that do not deal with false or deceptive activity, it is important to note that it does not allow natural persons to bring suit.
The CAN-SPAM Act provides a limited private right of action to Internet Access Services that have been adversely affected by the receipt of emails that violate the Act. A CAN-SPAM plaintiff must satisfy a higher standard of proof compared to government agencies enforcing the Act. A private plaintiff must demonstrate that the defendant sent the email in question or paid another person to send it, knowing that doing so would violate the Act. While private CAN-SPAM lawsuits have emerged across the country, the Act does not allow individuals who receive spam to sue spammers except under laws not specific to email.
The CAN-SPAM Act provides standing for certain governmental entities and "internet access service" providers. The Federal Trade Commission (FTC), certain other Federal agencies, and state attorneys general have standing to bring suits under Section 7 of the Act. Providers of "internet access services," if adversely affected by a violation of the Act, can bring a claim under the Act. The term "internet access service" refers to a service that enables users to access content, information, electronic mail, or other Internet-offered services.
While the CAN-SPAM Act does not allow private citizens to sue, individuals can sue using state laws about fraud. For example, Virginia's law gives standing based on actual damages, effectively limiting enforcement to ISPs. Additionally, the McCain amendment subjects businesses promoted in spam to FTC penalties and enforcement remedies if they knew or should have known that their business was being promoted through spam.
Undergrad Access to UMich Law Library Explained
You may want to see also
Frequently asked questions
The CAN-SPAM Act supersedes some but not all types of anti-spam laws passed by individual states.
The CAN-SPAM Act is a United States law that dictates a range of requirements for emails and other messages from commercial entities, like businesses, marketers, and nonprofit organizations.
Emails subject to the law must follow rules regarding subject lines, disclosures, and headers. The law also establishes the right of recipients to request removal from email lists.
No, private citizens do not have standing to sue under the CAN-SPAM Act. Instead, the FTC, state attorneys, and Internet service providers can file suits on a user's behalf.
Yes, the law allows state attorneys general to bring prosecutions of CAN-SPAM violations, and states can still use their own laws to prosecute companies that send emails containing fraudulent or false information.




































