Ask Laura: Is it spam?

MarinHeadlandsSmall

Dear Laura,

I’ve been having a discussion with a colleague who is particularly frustrated by unwanted email he gets from retailers. Specifically, these are retailers who he’s never given an email address, but whose sites he’s browsed recently. He understands how retargeting works with web ads, but questions if it’s really acceptable to retarget in the email channel or if that violates CAN-SPAM or other anti-spam legislation.

I think it’s an interesting discussion, but I’m pretty sure that my colleague is wrong. These companies can retarget because people opt-in to “partner” emails all the time, and “partners” often equals “retargeters”. It’s not spam, and it’s not in violation of CAN-SPAM. 

So what do you think? Spam or not-spam?

Yours in contradictions,

Schrödinger’s Box-of-Spam

Dear Schrödy,
I understand this paradox of which you speak. Let me explain the process a bit for those who don’t.

Through email a retargeter sets a cookie on a machine, linking the web browser to the email address that received the cookie. As people use that web browser to surf, they can land on sites that belong to the retargeter’s customers. This triggers a process that can result in the address owner receiving mail. This mail is often unexpected and sometimes unwanted from the website that’s been browsed.

This may seem like a violation of CAN-SPAM, but that law doesn’t define spam as unexpected or unwanted email. CAN-SPAM says you can send mail to anyone until they tell you to stop. That mail has to meet certain criteria (opt-out, no falsified headers, clearly marked as advertising), but there is nothing in CAN-SPAM that prohibits buying and selling of lists or email addresses or even sending mails to people who simply visit your website.

ISP standards are different than legal standards and there is extensive case law stating that ISPs can block whatever mail they deem problematic. This case law predates CAN-SPAM and was not overruled by CAN-SPAM.

Sending mail to lists that you purchased, rather than directly collected opt-ins, is generally frowned upon by most of the folks handling filters, both at the ISP level and the commercial filter levels. From the ISP perspective, what the recipient wants is the gold standard. ISPs, particularly the free webmail providers, make money the longer the user stays in the inbox. They want the user to like visiting the inbox, so they filter mail they believe (through analysis of the user and analysis of the overall mail coming into the ISP) is unwanted.

It is certainly legal to use retargeting sites, partner sites or co-registration sites to collect permission to send mail to people. Some of them even are up front about the permission. But the reality is that many of the “partner” and “co-reg” and “database” sites are cesspools of permission. It might be permission on the outside, in that the person willingly gave their email address to the website. But it’s not real permission because they didn’t know what they were consenting to.

A few months ago I was investigating an address source for a client and spent nearly an hour reading the various terms and conditions pages and privacy policy pages. I was trying to determine if the address source was allowed to sell addresses to my client. I never could quite interpret the legalese enough to figure it out. What was clear was that your average petition signer would not realize they were agreeing to have their address sold.

So is it spam? Yes and no. Is it a best practice for customer acquisition and retention? Absolutely not. Will it ultimately impact deliverability for the brand? I think so, and I advise my clients not to do it.

Hope this helps,
Laura

Confused about delivery in general? Trying to keep up on changing policies and terminology? Need some Email 101 basics? This is the place to ask. We can’t answer specific questions about your server configuration or look at your message structure for the column (please get in touch if you’d like our help with more technical or forensic investigations!), but we’d love to answer your questions about how email works, trends in the industry, or the joys and challenges of cohabiting with felines.

Google takes on intrusive interstitials
Traffic Light Protocol

Related Posts

Posts and articles about the DMA spamming

The DMA kicks spam up a notch
The DMA: Spamming Job Services to a Purchased List
The DMA Spams A Bunch of Anti-spammers
The DMA sends e-mail that’s memorable, but not in a good way

Read More

Some content is just bad; but it doesn't have to be

There are a few segments in the marketing industry that seem to acquire senders with bad mailing practices. Nutraceuticals, male performance enhancing drugs, short term or payday loans and gambling have a lot of senders that treat permission as optional. The content and the industry themselves have garnered a bad reputation.
This makes these industries extremely difficult for mailers who actually have permission to send that content to their recipients. Working with this kind of sender, sometimes it seems impossible to get mail delivered to the inbox, no matter what the level of permission. Even when it’s double confirmed opt-in with a cherry on top, all the care in the world with permission isn’t enough to get inbox delivery.
This doesn’t have to be the case. Look at the porn industry. Early on in the email marketing arena there was a lot of unsolicited image porn. A Lot. So much that complaints by recipients drove many ISPs to disable image loading by default. The legitimate porn companies, though, decided unsolicited image porn was bad for the industry as a whole. Porn marketers and mailers adopted fairly strong permission and email address verification standards.
It was important for the porn marketers that they be able to prove that the person they were mailing actually requested the email. The porn marketers took permission seriously and very few companies actually send photographic porn spam these days. Even the “Russian girls” spam doesn’t have not safe for work images any longer.
Because of their focus on permission, in some cases revolving around age of consent in various jurisdictions, the porn industry as a whole is not looked at as “a bunch of spammers.” Porn content isn’t treated as harshly as “your[sic] pre-approved for a wire transfer” or “best quality drugs shipped overnight.”
Just having offensive content isn’t going to get you blocked. But having content that is shared by many other companies who don’t care about permission, will cause delivery headache after delivery headache. This is true even when you are the One Clean Sender in the bunch.
 

Read More

What not to do when buying lists

Saturday morning I check my mail and notice multiple emails from the DMA. Yes, I got three copies of an email from the US Direct Marketing Association with the subject line Kick It Up A Notch With The DMA Career Center. It seems the DMA are buying addresses from various companies. Because I use tagged email addresses, this means their naive de-duping doesn’t realize that laura-x and laura-y are the same email address. Of course, they’ve also managed to send to an untagged email address, too. I have no idea where they got that particular address; I’m sure I’ve never handed that address over to the DMA for any reason.
Saturday afternoon, I check one of the professional filtering / anti-spam mailing list.  Some subscribers are asking for copies of spam from 97.107.23.191 to .194. They’d seen a lot of mail to non-existent email addresses from that range and were looking to see what was going on and who was sending such bad mail. Multiple people on the list popped up with examples of the DMA mail.
Sunday morning, I checked the discussions wherein I discovered the DMA was added to the SBL (SBL 202218, SBL 202217, SBL 202216). It seems not only did they hit over a hundred Spamhaus spamtraps, they spammed Steve Linford himself.

Read More