CAN-SPAM Compliance Audit

Phuwyug

Le téléchargement nécessite un accès à la bibliothèque YouScribe
Tout savoir sur nos offres

15 pages

English

Le téléchargement nécessite un accès à la bibliothèque YouScribe
Tout savoir sur nos offres

A propos
Informations
Extrait

Description

2004E X C L U S I V E R E P O R TCAN-SPAM B2C COMPLIANCE AUDITDuring the ﬁrst six months of 2004, Arial Software secretly audited the federal CAN-SPAM Act compliance of 1,057 organizations with a prominent online presence including many Fortune 500 companies and various popular Internet ﬁrms. This was accomplished by subscribing to the email newsletters and subscription offerings of each organization using a unique email address, then tracking their actual email practices and noting various privacy and CAN-SPAM compliance attributes.The results of this study are revealed in this report, which represents the mostcomprehensive business-to-consumer (B2C) CAN-SPAM compliance audit ever conducted.a r i a lS O F T W A R E©2004 Arial Software. All Rights Reserved. For more information please contact us at info@arialsoftware.com or via phone at 307.587.13382004 B2C CAN-SPAM Compliance Audit2004 B2C CAN-SPAM Compliance AuditBy Arial Software (www.ArialSoftware.com)During the ﬁrst six months of 2004, Arial Software secretly audited the federal CAN-SPAM Act compliance of 1,057 organizations with a prominent online presence including many Fortune 500 companies and various popular Internet ﬁrms. This was accomplished by subscribing to the email newsletters and subscription offerings of each organization using a unique email address, then tracking their actual email practices and noting various privacy and CAN-SPAM compliance attributes.The results of this ...

Informations

Publié par	Phuwyug
Nombre de lectures	545
Langue	English

Extrait

E X C L U S I V E R E P O R T

CAN-SPAMB2C COMPLIANCEAUDIT

Duringtheﬁrstsixmonthsof2004,ArialSoftwaresecretlyauditedthefederalCAN-SPAM Actcomplianceof1,057organizationswithaprominentonlinepresenceincludingmany Fortune500companiesandvariouspopularInternetﬁrms.Thiswasaccomplishedby subscribingtotheemailnewslettersandsubscriptionofferingsofeachorganizationusing auniqueemailaddress,thentrackingtheiractualemailpracticesandnotingvarious privacyandCAN-SPAMcomplianceattributes. Theresultsofthisstudyarerevealedinthisreport,whichrepresentsthemost comprehensivebusiness-to-consumer(B2C)CAN-SPAMcomplianceauditeverconducted.

2004 B2C CAN-SPAM Compliance Audit

2004 B2C CAN-SPAM Compliance Audit ByArialSoftware(www.ArialSoftware.com) Duringtheﬁrstsixmonthsof2004,ArialSoftwaresecretlyauditedthefederalCAN-SPAM Actcomplianceof1,057organizationswithaprominentonlinepresenceincludingmany Fortune500companiesandvariouspopularInternetﬁrms.Thiswasaccomplishedby subscribingtotheemailnewslettersandsubscriptionofferingsofeachorganizationusing auniqueemailaddress,thentrackingtheiractualemailpracticesandnotingvarious privacyandCAN-SPAMcomplianceattributes. Theresultsofthisstudyarerevealedinthisreport,whichrepresentsthemost comprehensivebusiness-to-consumer(B2C)CAN-SPAMcomplianceauditeverconducted. Note:Thisreportmaybeposted,quotedordistributedaslongascreditisgiventoArialSoftwareandahyperlinkisplacedto www.ArialSoftware.com.(Seethereprintguidelinesattheendofthisreportformoredetails.) 66% of Online Businesses Violate CAN-SPAM, But Few Send Spam Themostrelevantﬁndingofthisstudyisthatonlyone-thirdofonlinebusinessessend emailsthatareCAN-SPAMcompliant.Theothertwo-thirdsremaininviolationofCAN-SPAM,primarilybyfailingtoincludeunsubscribelinks(51%)andfailingtoclearlyidentify thesourceoftheemail(45%).Notethatthereisoverlapinthesetwoﬁguresasmany organizationsfailonbothcounts. Thislevelofnoncomplianceseemssurprising,giventhewidespreadpublicityofCAN-SPAMandtheeaseofbecomingcompliant.Somepossiblereasonsforthiswidespread noncompliancearediscussedinthisreport. Onthepositiveside,eventhoughthesebusinessesarenotincompliancewithCAN-SPAM, theyalmostneverengageinspamming.Onlythreeorganizationsoutof1,057engaged inemailbehaviorthatmostpeoplewouldconsiderspamming(highvolumecommercial emailsandanunsubscribefunctionthatdidn’twork),meaningthat99.6%ofonline organizationsdon’tspam,evenwhentheyaren’tCAN-SPAMcompliant. Or,putanotherway,compliancewithCAN-SPAMhasverylittlecorrelationwithwhetheror notanorganizationactuallysendsspamemails,aconclusionthatwillnodoubtsupportthe criticsofCAN-SPAM.

Figure 1. CAN-SPAM Compliant Email Only one-third of online businesses send emails that are CAN-SPAM compliant. The other two-thirds remain in violation of CAN-SPAM, primarily by failing to include unsubscribe links and failing to clearly identify the source of the email.

Figure 2. Working Unsubscribe Links A surprising ﬁnd: only 49% of the surveyed emails contained a working unsubscribed link.

2004 B2C CAN-SPAM Compliance Audit

1.8% Ignore Unsubscribe Requests Intheﬁrsteditionofthiswhitepaper,welistedtwelveﬁrmswhoseemailunsubscribe processesdidnotworkproperly.Manyoftheseﬁrmsreceivedanearlyversionofthis reportand,afterﬁndingthemselveslistedhere,sentArialSoftwarestrongly-wordedletters insistingthattheirunsubscribeprocessworkedperfectly,andtheyshouldnotbelisted here.Whileourresearchwasmeticulouslydocumented,andweareconﬁdentthatour originallistoftwelveﬁrmswasaccurate,duetothesurprisingpopularityofthisreportand asaprofessionalcourtesytothosetwelveﬁrms,we’vedecidedtoremovetheirnamesfrom thisreport. EachoftheseﬁrmsapparentlystandsinviolationofthefederalCAN-SPAMActforfailingto unsubscribeusersinatimelymanner.Itispossibletheirunsubscribeprocessingscriptsmay havebeenmalfunctioningduringourrequest,butevenatemporaryfailureofprocessing unsubscriberequestsisconsideredaCAN-SPAMviolation. 51% Don t Offer An Unsubscribe Link ’ Theorganizationsjustmentionedcertainlyhavesomeimprovementstomakewiththeir unsubscribehandling,buttheyarewellaheadofthe51%wefoundtohave noworking unsubscribelinkatall, whichisalsoablatantCAN-SPAMviolation. Youreaditright:overhalfofallemailnewsletters,evenfromreputablecompanies,have noobviousunsubscribemechanisminplace!ThisisaseriousviolationofCAN-SPAM,and itindicatesthatcompliancewithCAN-SPAM,evenamongethicalemailers,isshockingly low.Inotherwords,these51%didn’tspamus,buttheyalsodidn’tallowustounsubscribe. Asaresult,we’restillreceivingemailfromhundredsoforganizationswithnowayto unsubscribe. Tomostpeople,thatwouldeventuallybeconsideredspam.Althoughtheemailvolume fromtheseorganizationswasextremelylow(lessthan0.1emailspermonthonaverage), andinitialpermissionwasgiventotheorganizationviathesign-upprocess,thefactthat theseorganizationswouldapparentlycontinuesendingemails adnauseum toendusers likelyindicatesthat,soonerorlater,somebodyisgoingtoscream,“Spam!” Only 7% Use Double-Conﬁrmed Subscription Processing Anothershockingﬁndingfromthestudyisthatonly sevenpercentoforganizationsuse double-conﬁrmsubscriptionprocesses .Adouble-conﬁrmmeansthatwhenyoupostyour emailaddresstothesubscriptionform,theysendyouanemailaskingyoutoconﬁrmyour subscriptionbyclickingaspeciallycodedlinkintheemailmessage.Onceyouclickthelink, you’resubscribed.Thispreventspeoplefromsigningupemailaddressestheydon’tcontrol. Ajaw-dropping93%oftheorganizationsauditedheredon’tusedouble-conﬁrmsubscription processes! That’snotnecessarilyaCAN-SPAMviolation,butit’saninvitationtobeinghacked byamaliciousscriptand,ultimately,committingmassviolationsofCAN-SPAM.Inother words,anyonewithsomefreetimeontheirhandscouldwriteanemailpostingrobotthat couldposttheentiredictionaryofnamesanddomaincombinationstotheemaillistsof thesecompanies.Thenexttimethesecompaniessendoutanemailnewsletter, theywillbe spamming.

Univers
Ebooks
Livres audio
Presse
Podcasts
BD
Documents

CAN-SPAM Compliance Audit

YouScribe

Le catalogue

Le service

Les conditions