{"id":1550,"date":"2020-01-11T11:14:17","date_gmt":"2020-01-11T10:14:17","guid":{"rendered":"https:\/\/www.getanewsletter.com\/en\/blog\/email-marketing-regulations-email-laws-you-should-follow\/"},"modified":"2024-04-11T17:18:54","modified_gmt":"2024-04-11T17:18:54","slug":"email-marketing-regulations-email-laws-you-should-follow","status":"publish","type":"post","link":"https:\/\/getanewsletter.com\/en\/blog\/email-marketing-regulations-email-laws-you-should-follow\/","title":{"rendered":"Email Marketing Regulations &#8211; Email laws you should follow"},"content":{"rendered":"\n<p><strong>Email is one of the most effective marketing channels around, but email marketing regulations are getting tighter across the globe. Make sure you don\u2019t breach email marketing regulations with our guide to email laws you should follow.<\/strong><\/p>\n\n\n\n<p>In this post, we&#8217;ll look at steps you can take <strong>right now<\/strong> to make sure your email marketing meets the most important international standards.<\/p>\n\n\n\n<p>Obviously, the big one here is the General Data Protection Regulation or GDPR\u2026<\/p>\n\n\n\n<p><a href=\"https:\/\/eur-lex.europa.eu\/legal-content\/EN\/ALL\/?uri=CELEX%3A32016R0679\" target=\"_blank\" rel=\"noopener\">GDPR came into force on 25 May 2018<\/a>. By including email addresses in its legal definition of \u201cpersonal data\u201d, GDPR transformed email marketing overnight.<\/p>\n\n\n\n<p>The penalties for breaking GDPR rules are potentially huge: <a href=\"https:\/\/www.itgovernance.co.uk\/dpa-and-gdpr-penalties\" target=\"_blank\" rel=\"noopener\">up to <strong>20 million euros<\/strong> or <strong>4% of global business turnover<\/strong><\/a>, whichever is greater.<\/p>\n\n\n\n<p>But don\u2019t panic!<\/p>\n\n\n\n<p>We\u2019ve split our tips and advice on GDPR-compliant email marketing down into three big sections, before turning to look at some other important email laws you should follow:<\/p>\n\n\n\n<ol class=\"wp-block-list\">\n<li><a href=\"#7nkr7\">Email Marketing Regulations: Signing up subscribers under GDPR<\/a><\/li>\n\n\n\n<li><a href=\"#bdk0m\">Email Marketing Regulations: Opt-out rights under GDPR<\/a><\/li>\n\n\n\n<li><a href=\"#8sdll\">Email Marketing Regulations: How you handle users\u2019 data under GDPR<\/a><\/li>\n\n\n\n<li><a href=\"#12n3q\">Email Marketing Regulations: The rest of the legal landscape<\/a><\/li>\n<\/ol>\n\n\n\n<h2 class=\"wp-block-heading\" id=\"7nkr7\"><strong>1. Email Marketing Regulations: Signing up subscribers under GDPR<\/strong><\/h2>\n\n\n\n<p>The GDPR sets out six key principles that anybody making use of another individual\u2019s personal data must follow.<\/p>\n\n\n\n<figure class=\"wp-block-image\"><img decoding=\"async\" src=\"https:\/\/images.storychief.com\/account_17332\/GDPRprinciples_24a4dc86477d49eeaceb93af7f044e9d_800.jpg\" alt=\"GDPR's 6 principles\"\/><figcaption class=\"wp-element-caption\">(Source: <u><a href=\"https:\/\/www.consultancy.uk\/\" target=\"_blank\" rel=\"noopener\">https:\/\/www.consultancy.uk\/<\/a><\/u>)<\/figcaption><\/figure>\n\n\n\n<div style=\"height:30px\" aria-hidden=\"true\" class=\"wp-block-spacer\"><\/div>\n\n\n\n<p>When it comes to adding new subscribers to your email list, the first principle says you need a \u201clawful basis\u201d to send messages to them. That could be:<\/p>\n\n\n\n<ol class=\"wp-block-list\">\n<li><strong><u>Consent<\/u><\/strong> &#8211; the person has given permission for you to contact them<\/li>\n\n\n\n<li><strong><u>Contract<\/u><\/strong> &#8211; you need to contact them to fulfill a contractual agreement you have with them<\/li>\n\n\n\n<li><strong><u>Legal Obligation<\/u><\/strong> or <strong><u>Public Task<\/u><\/strong> &#8211; you need to contact them to fulfill a legal or official duty<\/li>\n\n\n\n<li><strong><u>Legitimate Interests<\/u><\/strong> &#8211; the contact is necessary for you to pursue your legitimate interests<\/li>\n<\/ol>\n\n\n\n<p>We&#8217;ll ignore 2 and 3 as they don&#8217;t really apply to marketing.<\/p>\n\n\n\n<h3 class=\"wp-block-heading\" id=\"c0of5\"><strong>Opting-in<\/strong><\/h3>\n\n\n\n<p>You should always get <strong>consent<\/strong> before adding a named individual\u2019s email address to your list and sending them marketing messages.<\/p>\n\n\n\n<p>And that consent has to be given through <strong>EXPLICIT AFFIRMATIVE ACTION.<\/strong><\/p>\n\n\n\n<p>What does that mean in practice? Take a look at the two forms below:<\/p>\n\n\n\n<figure class=\"wp-block-image\"><img decoding=\"async\" src=\"https:\/\/images.storychief.com\/account_17332\/GDPRcompliantforms_6037969539c62e12896d559640543dcf_800.png\" alt=\"Always provide opt-in options on forms\"\/><figcaption class=\"wp-element-caption\">(Source: https:\/\/www.superoffice.com\/)<\/figcaption><\/figure>\n\n\n\n<div style=\"height:30px\" aria-hidden=\"true\" class=\"wp-block-spacer\"><\/div>\n\n\n\n<ul class=\"wp-block-list\">\n<li>The one on the left says that if you take the free trial you also agree to receive email messages.<\/li>\n\n\n\n<li>The one on the right gives you the choice of whether to opt in for marketing communications or not.<\/li>\n<\/ul>\n\n\n\n<p><a href=\"https:\/\/ico.org.uk\/for-organisations\/guide-to-data-protection\/guide-to-the-general-data-protection-regulation-gdpr\/lawful-basis-for-processing\/consent\/\" target=\"_blank\" rel=\"noopener\">And that opt-in box cannot be pre-ticked<\/a>. If it is, then your <a href=\"https:\/\/getanewsletter.com\/en\/blog\/gdpr-friendly-subscription-forms\/\" target=\"_blank\" rel=\"noopener noreferrer\">form is not GDPR-compliant<\/a>.<\/p>\n\n\n\n<figure class=\"wp-block-image\"><img decoding=\"async\" src=\"https:\/\/images.storychief.com\/account_17332\/Pretickedboxes_717fda865b1c8a6603839aa464f5ee98_800.png\" alt=\"Pre-ticked boxes are not GDPR-compliant\"\/><figcaption class=\"wp-element-caption\">(Source: https:\/\/litmus.com\/)<\/figcaption><\/figure>\n\n\n\n<div style=\"height:30px\" aria-hidden=\"true\" class=\"wp-block-spacer\"><\/div>\n\n\n\n<p>That\u2019s because a pre-ticked box requires a user to do something to <strong><u>opt-OUT<\/u><\/strong> rather than do something to <strong><u>opt-IN<\/u><\/strong>.<\/p>\n\n\n\n<p>A lot of businesses use a <strong>double opt-in<\/strong> to be on the safe side of email marketing regulations. That is, they will send an email to a new subscriber <strong>asking them to confirm <\/strong>that they understand the terms and conditions and consent to email marketing.<\/p>\n\n\n\n<p>That gives an extra layer of protection. It stops anyone from filling in somebody else\u2019s email address in a form and signing them up for commercial messages they don\u2019t want.<\/p>\n\n\n\n<p>Double opt-in is good practice, but it is not required by law.<\/p>\n\n\n\n<p>Wanna read more about how to create GDPR-friendly subscription forms? Read our earlier post about it <a href=\"https:\/\/www.getanewsletter.com\/en\/blog\/gdpr-friendly-subscription-forms\/\">here<\/a>!<\/p>\n\n\n\n<h3 class=\"wp-block-heading\" id=\"36u6g\"><strong>Making your Privacy Policy Transparent<\/strong><\/h3>\n\n\n\n<p>When you are collecting personal data, you must be very clear about what you are going to use it for. Usually, this is done through your website\u2019s Privacy Policy.<\/p>\n\n\n\n<p>In the bad old days, these were often rambling, well-hidden documents. They were packed with small print that gave businesses blanket permission to do whatever they wanted with users\u2019 data.<\/p>\n\n\n\n<p><strong>That is no longer allowed<\/strong>. Your Privacy Policy has to make it very clear:<\/p>\n\n\n\n<ul class=\"wp-block-list\">\n<li>What data you are collecting &#8211; remember, this won\u2019t just be the email address if you are using <strong>tracking cookies<\/strong> or <strong>retargeting pixels<\/strong> in your emails<\/li>\n\n\n\n<li>What your<strong> legal basis<\/strong> for collecting that data is<\/li>\n\n\n\n<li>Who else you intend to <strong>share data <\/strong>with (eg if you store data in a cloud-based software platform)<\/li>\n\n\n\n<li>How data subjects can find out <strong>what data you hold on them<\/strong><\/li>\n\n\n\n<li><strong>Who is responsible for data protection<\/strong> at your organization and how to contact them<\/li>\n<\/ul>\n\n\n\n<p>There are lots of template Privacy Policies you can download and tailor to meet your specific needs. For example, <u><a href=\"https:\/\/seqlegal.com\/free-legal-documents\/privacy-policy\" target=\"_blank\" rel=\"noopener\">here<\/a><\/u>, <u><a href=\"https:\/\/vinciworks.com\/blog\/free-data-protection-privacy-policy-template\/\" target=\"_blank\" rel=\"noopener\">here<\/a>,<\/u> or <u><a href=\"https:\/\/jamieking.co.uk\/blog\/cyber-security\/policies\/free-sample-privacy-policy.php\" target=\"_blank\" rel=\"noopener\">here<\/a><\/u>.<\/p>\n\n\n\n<h3 class=\"wp-block-heading\" id=\"7322g\"><strong>Think About A Preference Centre<\/strong><\/h3>\n\n\n\n<p>If somebody gives you their email address in the course of buying a product from you, that does NOT consent&nbsp;for you to send them marketing emails. You can only do this if:<\/p>\n\n\n\n<ol class=\"wp-block-list\">\n<li>You have made it clear to them that you want to do this <strong>AND<\/strong><\/li>\n\n\n\n<li>They have agreed to it!<\/li>\n<\/ol>\n\n\n\n<p>It is best practice to give subscribers the option to receive only those messages they really want.<\/p>\n\n\n\n<p>The penalties for not managing your subscribers\u2019 preferences properly can be severe, as we will see later when we look at <strong>unsubscribing<\/strong>.<\/p>\n\n\n\n<h3 class=\"wp-block-heading\" id=\"d54kr\"><strong>Avoid Scraping and Buying Email Lists<\/strong><\/h3>\n\n\n\n<p>Clearly, you can\u2019t just scrape lists of emails off the internet if you\u2019re going to depend on consent as your lawful basis.<\/p>\n\n\n\n<figure class=\"wp-block-image\"><img decoding=\"async\" src=\"https:\/\/images.storychief.com\/account_17332\/Boughtlists_7c6b9e55df9369234cee38570921938b_800.png\" alt=\"Email Marketing Regulation: Avoid buying email lists\"\/><figcaption class=\"wp-element-caption\">(Source: www.moosend.com)<\/figcaption><\/figure>\n\n\n\n<div style=\"height:30px\" aria-hidden=\"true\" class=\"wp-block-spacer\"><\/div>\n\n\n\n<p><a href=\"https:\/\/moosend.com\/blog\/why-buying-email-lists-is-not-a-good-lead-generation-idea\/\" target=\"_blank\" rel=\"noopener\">Nor should you buy email lists from third parties<\/a>\u00a0unless they can prove that everyone on those lists has consented to receive email marketing from businesses they sell the lists to.<\/p>\n\n\n\n<h2 class=\"wp-block-heading\" id=\"bdk0m\"><strong>2. Email Marketing Regulations: Opt-out Rights Under GDPR<\/strong><\/h2>\n\n\n\n<p>GDPR is aimed at giving data subjects control over how their data is used. So you have to make it easy for them to do that &#8211; and that includes making it easy to get off your email marketing list.<\/p>\n\n\n<div class=\"wp-block-image\">\n<figure class=\"aligncenter is-resized\"><img decoding=\"async\" src=\"https:\/\/images.storychief.com\/account_17332\/Unsubscribe_0dceeee5641cf8510a9e0b379cb22742_800.png\" alt=\"Email Marketing Regulations: Make it easy for people to unsubscribe from emails\" style=\"width:500px\"\/><figcaption class=\"wp-element-caption\">(Source: https:\/\/www.soaringww.com\/)<\/figcaption><\/figure>\n<\/div>\n\n\n<h3 class=\"wp-block-heading\" id=\"cnv07\"><strong>Provide an \u201cUnsubscribe\u201d Link<\/strong><\/h3>\n\n\n\n<p>All your marketing emails should make it obvious how to unsubscribe, so&#8230;<\/p>\n\n\n\n<h4 class=\"wp-block-heading\" id=\"aqhu0\">Provide an \u201cunsubscribe\u201d link in your emails, to either immediately remove the subscriber or take them to a preference management page.<\/h4>\n\n\n\n<ul class=\"wp-block-list\">\n<li>It\u2019s common practice to put this link at the bottom of the email in the footer. After all, you don\u2019t want to <strong>ENCOURAGE<\/strong> people to unsubscribe!<\/li>\n\n\n\n<li>But at the same time, <strong>you can\u2019t hide it<\/strong> (eg by using white text on a white background). You have to play fair.<\/li>\n<\/ul>\n\n\n\n<h3 class=\"wp-block-heading\" id=\"3ies8\"><strong>Manage Unsubscribers Carefully<\/strong><\/h3>\n\n\n\n<p>If you are an email marketer, it\u2019s essential that you maintain a <strong>BLACKLIST<\/strong> or <strong>SUPPRESSION LIST: <\/strong>a list of addresses you <strong><u>must not contact<\/u><\/strong>.<\/p>\n\n\n\n<p>Even before the GDPR came into force this was a serious issue in email marketing:<\/p>\n\n\n\n<ul class=\"wp-block-list\">\n<li>In 2017, <a href=\"https:\/\/www.theregister.co.uk\/2017\/03\/28\/ico_fines_flybe_honda\/\" target=\"_blank\" rel=\"noopener\">Flybe and Honda were hit with big fines<\/a> from the Information Commissioner\u2019s Office in the UK.<\/li>\n\n\n\n<li>They sent thousands of messages to people who had unsubscribed from receiving future messages.<\/li>\n<\/ul>\n\n\n\n<figure class=\"wp-block-image\"><img decoding=\"async\" src=\"https:\/\/images.storychief.com\/account_17332\/Blacklist_10ad13136d7789295c67fdfee04c3236_800.png\" alt=\"Email Marketing Regulations: Always maintain an email blacklist\"\/><figcaption class=\"wp-element-caption\">(Source: https:\/\/www.leadfuze.com\/)<\/figcaption><\/figure>\n\n\n\n<div style=\"height:30px\" aria-hidden=\"true\" class=\"wp-block-spacer\"><\/div>\n\n\n\n<p>Ironically, both Flybe and Honda had reached out to these people as part of their GDPR preparations. They were checking that the details held were accurate and asking for consent!<\/p>\n\n\n\n<p>So, it&#8217;s vital to take care around <strong>\u201crepermissioning\u201d<\/strong> &#8211; ie <a href=\"https:\/\/www.creativebloq.com\/news\/gdpr-the-best-and-worst-repermission-campaigns\" target=\"_blank\" rel=\"noopener\">contacting one-time subscribers who you don\u2019t have recent permissions from<\/a>.<\/p>\n\n\n\n<ul class=\"wp-block-list\">\n<li>It\u2019s ok to send repermissioning emails if you genuinely don\u2019t have proper records or you have never asked the question before.<\/li>\n\n\n\n<li>But if you\u2019ve been told before and you\u2019ve just forgotten about it or lost the records, you could be in trouble for making unwanted contact.<\/li>\n<\/ul>\n\n\n\n<p>Check out our <a href=\"https:\/\/getanewsletter.com\/en\/blog\/gdpr-re-permissioning-email-templates\/\">email repremissioning templates here<\/a>!<\/p>\n\n\n\n<h3 class=\"wp-block-heading\" id=\"9spv2\"><strong>The Risks of Marketing Automation<\/strong><\/h3>\n\n\n\n<p>When using marketing automation &#8211; including <strong>autoresponders<\/strong> and <strong>behavioral triggers<\/strong> &#8211; you must factor subscriber preferences into your segmentation and workflows.<\/p>\n\n\n\n<p>Otherwise, you could find your systems sending emails to people who have opted out.<\/p>\n\n\n\n<h2 class=\"wp-block-heading\" id=\"8sdll\"><strong>3. Email Marketing Regulations: How you handle users\u2019 data under GDPR<\/strong><\/h2>\n\n\n\n<p>GDPR is not just about managing opt-ins and opt-outs. It\u2019s also about ensuring your business processes are able to protect personal data from misuse.<\/p>\n\n\n\n<h3 class=\"wp-block-heading\" id=\"48ufk\"><strong>Keep Your Lists Secure<\/strong><\/h3>\n\n\n\n<p>Some of the biggest GDPR penalties to date have been issued to businesses that have allowed personal data to fall into the wrong hands.<\/p>\n\n\n\n<ul class=\"wp-block-list\">\n<li><a href=\"https:\/\/www.csoonline.com\/article\/3410278\/the-biggest-data-breach-fines-penalties-and-settlements-so-far.html\" target=\"_blank\" rel=\"noopener\">British Airways was fined <strong>$230 million<\/strong> in 2017<\/a> for failing to protect personal data.<\/li>\n\n\n\n<li><a href=\"https:\/\/www.csoonline.com\/article\/3410278\/the-biggest-data-breach-fines-penalties-and-settlements-so-far.html\" target=\"_blank\" rel=\"noopener\">In the USA, Equifax had to pay <strong>$575 million<\/strong><\/a> for a data security breach that same year.<\/li>\n<\/ul>\n\n\n\n<figure class=\"wp-block-image\"><img decoding=\"async\" src=\"https:\/\/images.storychief.com\/account_17332\/Fine_16c699c00ec63be2100c3c74cb6e533a_800.jpg\" alt=\"\"\/><figcaption class=\"wp-element-caption\">(Source: https:\/\/www.insurancebusinessmag.com\/)<\/figcaption><\/figure>\n\n\n\n<h3 class=\"wp-block-heading\" id=\"c9128\">Always restrict access to sensitive data like email lists.<\/h3>\n\n\n\n<p>For example:<\/p>\n\n\n\n<ul class=\"wp-block-list\">\n<li>Control access through user privileges and passwords<\/li>\n\n\n\n<li>Encrypt data at rest and in transit<\/li>\n\n\n\n<li>Ensure your internal IT network is secure and that you have strong external protections too &#8211; eg antivirus protection, firewalls, etc<\/li>\n\n\n\n<li>Don\u2019t allow anyone to download lists, save local copies of documents or otherwise remove or duplicate sensitive files<\/li>\n<\/ul>\n\n\n\n<h3 class=\"wp-block-heading\" id=\"7ksbe\"><strong>Document Everything<\/strong><\/h3>\n\n\n\n<p>You\u2019re already keeping track of who has signed up for your email marketing. Plus what their contact preferences are, who has opted out and when and all the other things we\u2019ve discussed in this post.<\/p>\n\n\n\n<p>So you\u2019ve probably realized that a big part of GDPR compliance is <u><strong>KEEPING THOROUGH RECORDS OF EVERYTHING RELATING TO PERSONAL DATA<\/strong><\/u>.<\/p>\n\n\n\n<p>Your Privacy Policy tells the world what you\u2019re doing but you need to have solid internal policies that your staff understand and adhere to.<\/p>\n\n\n\n<ul class=\"wp-block-list\">\n<li>Remember, if the authorities are investigating a complaint against you, it&#8217;s down to <strong><u>you<\/u><\/strong> to show how you&#8217;ve done everything reasonable to minimize risk.<\/li>\n\n\n\n<li>That\u2019s a matter of having processes and rules that are up to scratch <strong><u>and<\/u><\/strong> making sure they are followed.<\/li>\n<\/ul>\n\n\n<div class=\"wp-block-image\">\n<figure class=\"aligncenter is-resized\"><img decoding=\"async\" src=\"https:\/\/images.storychief.com\/account_17332\/DocumentEverything_9d47e984fcf379e7abc142b7dd92ece4_800.png\" alt=\"Documentation will rprotect you from email marketing regulations\" style=\"width:500px\"\/><figcaption class=\"wp-element-caption\">(Source: https:\/\/blog.urbantreehomes.com\/)<\/figcaption><\/figure>\n<\/div>\n\n\n<p>It is particularly important to have a <u>Data Breach Procedure<\/u>: a clear set of rules for what to do if you discover that personal data has been misused.<\/p>\n\n\n\n<p>You\u2019ll need this because <a href=\"https:\/\/ico.org.uk\/for-organisations\/guide-to-data-protection\/guide-to-the-general-data-protection-regulation-gdpr\/personal-data-breaches\/\" target=\"_blank\" rel=\"noopener\">the law says you must report breaches<\/a> to the relevant authorities and to data subjects themselves within certain time limits. You can\u2019t be making up processes in the middle of a crisis!<\/p>\n\n\n\n<h3 class=\"wp-block-heading\" id=\"76kgd\"><strong>Subject Access Requests (SARs)<\/strong><\/h3>\n\n\n\n<p>Yet another reason why your records have to be complete: the GDPR gives people on your email list the right to see everything you have on them!<\/p>\n\n\n\n<p>Your Privacy Policy has to make clear how these SARs can be made and local regulations say how quickly you have to respond.<\/p>\n\n\n\n<figure class=\"wp-block-image\"><img decoding=\"async\" src=\"https:\/\/images.storychief.com\/account_17332\/SARICO_069643cd288435fe24d555c2a5a26d4f_800.png\" alt=\"Email Marketing Regulations: Data subjects have a right to see what you hold on them\"\/><figcaption class=\"wp-element-caption\">(Source: https:\/\/www.apogeefte.com\/)<\/figcaption><\/figure>\n\n\n\n<h3 class=\"wp-block-heading\" id=\"bjkv\"><strong>Where Does GDPR Apply?<\/strong><\/h3>\n\n\n\n<p><a href=\"https:\/\/www.freshfields.com\/en-gb\/our-thinking\/campaigns\/digital\/data\/general-data-protection-regulation\/\" target=\"_blank\" rel=\"noopener\">GDPR applies whenever the personal data of someone from the European Union or European Economic Area is affected<\/a>, even if your business is not based there.<\/p>\n\n\n\n<figure class=\"wp-block-image\"><img decoding=\"async\" src=\"https:\/\/images.storychief.com\/account_17332\/GDPRCountries_f0c4c6dd78b3412acc0b951628c5694d_800.png\" alt=\"Email Marketing Regulations: Countries where GDPR applies\"\/><figcaption class=\"wp-element-caption\">(Source: https:\/\/yourfreetemplates.com\/)<\/figcaption><\/figure>\n\n\n\n<div style=\"height:30px\" aria-hidden=\"true\" class=\"wp-block-spacer\"><\/div>\n\n\n\n<p>It also restricts personal data transfers to other countries that may not have similar protections.<\/p>\n\n\n\n<p>\ud83d\udc49 You must understand where your third-party service providers process data and what standards they adhere to.<\/p>\n\n\n\n<h2 class=\"wp-block-heading\" id=\"12n3q\"><strong>4. Email Marketing Regulations: The rest of the legal landscape<\/strong><\/h2>\n\n\n\n<p>The other big European law you need to know about is the <a href=\"https:\/\/www.privacytrust.com\/guidance\/gdpr-vs-eprivacy-regulation.html\" target=\"_blank\" rel=\"noopener\">e-Privacy Directive<\/a>. Unlike GDPR, which applies in all EU countries directly, Directives are implemented by each country locally.<\/p>\n\n\n\n<figure class=\"wp-block-image\"><img decoding=\"async\" src=\"https:\/\/images.storychief.com\/account_17332\/ePrivacy_5a79a2edbe1590257767efaecda5a36a_800.JPG\" alt=\"Email Marketing Regulations: e-Privacy is different from GDPR\"\/><figcaption class=\"wp-element-caption\">(Source: https:\/\/www.foxitsoftware.com\/)<\/figcaption><\/figure>\n\n\n\n<div style=\"height:30px\" aria-hidden=\"true\" class=\"wp-block-spacer\"><\/div>\n\n\n\n<p>That means the name of the relevant law differs from country to country, and so do the precise rules.<\/p>\n\n\n\n<ul class=\"wp-block-list\">\n<li>In <strong>Sweden<\/strong>, it\u2019s the <strong>Lag (2003:389) om elektronisk kommunikation<\/strong>.<\/li>\n\n\n\n<li>In the <strong>US<\/strong>, commercial electronic messaging is regulated by <a href=\"https:\/\/www.ftc.gov\/tips-advice\/business-center\/guidance\/can-spam-act-compliance-guide-business\" target=\"_blank\" rel=\"noopener\"><strong>The CAN-SPAM Act<\/strong> <\/a>which requires you i.a.: specify your location, not to use &#8216;deceptive subject lines, honor opt-out requests within 10 working days, never use false or deceptive information, inform your recipients how they can opt-out and mark advertorial content as &#8216;ads&#8217;.<\/li>\n\n\n\n<li>In <strong>the UK<\/strong>, the e-Privacy Directive is enacted through the <strong>Privacy and E-Commerce Regulations 2003<\/strong> (PECR).<\/li>\n<\/ul>\n\n\n\n<p>And this is where it starts to get complicated&#8230; <\/p>\n\n\n\n<p>The British Regulations say that the rules on consent to electronic communications &#8211; including email marketing &#8211; do not apply to <strong><a href=\"https:\/\/globaldatahub.taylorwessing.com\/article\/email-marketing-in-the-uk\" target=\"_blank\" rel=\"noopener\">corporate subscribers<\/a><\/strong>.<\/p>\n\n\n\n<ul class=\"wp-block-list\">\n<li>That covers generic company email addresses (eg <u><a href=\"mailto:info@company.com\">info@company.com<\/a><\/u>) but also individual corporate addresses, such as <u><a href=\"mailto:firstname.lastname@company.com\">firstname.lastname@company.com<\/a><\/u>.<\/li>\n\n\n\n<li>Even though the latter is still \u201cpersonal data\u201d for GDPR purposes, it\u2019s much easier to justify using it under \u201cLegitimate Interests\u201d.<\/li>\n<\/ul>\n\n\n\n<p>The situation in Germany is totally different though. There, local laws and court rulings state that individual corporate emails should be treated the same as personal email addresses.<\/p>\n\n\n\n<p>The e-Privacy Directive will be replaced by an EU-wide Regulation in the future.<\/p>\n\n\n\n<p>Until then, you should think very carefully about whether you need to segment your mailing activities by country.<\/p>\n\n\n\n<figure class=\"wp-block-image\"><img decoding=\"async\" src=\"https:\/\/images.storychief.com\/account_17332\/Segmentation_8fba197e9138723ebab1fbd140c0192f_800.jpg\" alt=\"\"\/><figcaption class=\"wp-element-caption\">(Source: https:\/\/entrepreneurhandbook.co.uk\/)<\/figcaption><\/figure>\n\n\n\n<p>And that\u2019s not just because of e-Privacy. Different countries have their own laws that affect email, around consumer protection, advertising, etc.<\/p>\n\n\n\n<p>Plus, there are many voluntary codes of conduct around ethical standards in online marketing as well.<\/p>\n\n\n\n<p>Finally&#8230;<\/p>\n\n\n\n<p>Although email marketing regulations are in place first and foremost to protect consumers, they <u>DO<\/u> help email marketers too.<\/p>\n\n\n\n<p>If you follow all these rules and <strong>communicate only with people who genuinely want to hear from you<\/strong>, if you actively r<strong>espond to changes in their preferences<\/strong> and <strong>take good care of their data<\/strong>, then your response rates, conversion rates, and sales will be much higher!<\/p>\n\n\n\n<p>Good luck!<\/p>\n\n\n\n<div class=\"wp-block-columns has-background is-layout-flex wp-container-core-columns-is-layout-9d6595d7 wp-block-columns-is-layout-flex\" style=\"background-color:#d1dce6\">\n<div class=\"wp-block-column is-vertically-aligned-bottom is-layout-flow wp-block-column-is-layout-flow\" style=\"flex-basis:65%\">\n<h2 class=\"wp-block-heading\" style=\"font-size:30px\"><strong>Get started with email marketing<\/strong><\/h2>\n\n\n\n<p class=\"has-large-font-size\">Create beautiful email newsletters for free with Get a Newsletter and reach your subscribers and customers in a heartbeat.<\/p>\n\n\n\n<p class=\"has-large-font-size\"><strong><a href=\"https:\/\/app.getanewsletter.com\/signup\/\"><span style=\"text-decoration: underline;\">Sign up for free<\/span><\/a><\/strong><\/p>\n<\/div>\n\n\n\n<div class=\"wp-block-column is-vertically-aligned-center is-layout-flow wp-block-column-is-layout-flow\" style=\"flex-basis:35%\">\n<figure class=\"wp-block-image size-large\"><img decoding=\"async\" src=\"https:\/\/getanewsletter.com\/wp-content\/uploads\/2023\/04\/powerful-features-to-grow-your-business.png\" alt=\"Powerful features to grow your business\" class=\"wp-image-22065\"\/><\/figure>\n<\/div>\n<\/div>\n","protected":false},"excerpt":{"rendered":"<p>Email is one of the most effective marketing channels around, but email marketing regulations are getting tighter across the globe. Make sure you don\u2019t breach email marketing regulations with our guide to email laws you should follow.<\/p>\n","protected":false},"author":2,"featured_media":18155,"comment_status":"open","ping_status":"open","sticky":false,"template":"","format":"standard","meta":{"_genesis_hide_title":false,"_genesis_hide_breadcrumbs":false,"_genesis_hide_singular_image":false,"_genesis_hide_footer_widgets":false,"_genesis_custom_body_class":"","_genesis_custom_post_class":"","_genesis_layout":"","footnotes":""},"categories":[10],"tags":[],"class_list":{"0":"post-1550","1":"post","2":"type-post","3":"status-publish","4":"format-standard","5":"has-post-thumbnail","7":"category-email-marketing","8":"entry"},"_links":{"self":[{"href":"https:\/\/getanewsletter.com\/en\/wp-json\/wp\/v2\/posts\/1550","targetHints":{"allow":["GET"]}}],"collection":[{"href":"https:\/\/getanewsletter.com\/en\/wp-json\/wp\/v2\/posts"}],"about":[{"href":"https:\/\/getanewsletter.com\/en\/wp-json\/wp\/v2\/types\/post"}],"author":[{"embeddable":true,"href":"https:\/\/getanewsletter.com\/en\/wp-json\/wp\/v2\/users\/2"}],"replies":[{"embeddable":true,"href":"https:\/\/getanewsletter.com\/en\/wp-json\/wp\/v2\/comments?post=1550"}],"version-history":[{"count":0,"href":"https:\/\/getanewsletter.com\/en\/wp-json\/wp\/v2\/posts\/1550\/revisions"}],"wp:featuredmedia":[{"embeddable":true,"href":"https:\/\/getanewsletter.com\/en\/wp-json\/wp\/v2\/media\/18155"}],"wp:attachment":[{"href":"https:\/\/getanewsletter.com\/en\/wp-json\/wp\/v2\/media?parent=1550"}],"wp:term":[{"taxonomy":"category","embeddable":true,"href":"https:\/\/getanewsletter.com\/en\/wp-json\/wp\/v2\/categories?post=1550"},{"taxonomy":"post_tag","embeddable":true,"href":"https:\/\/getanewsletter.com\/en\/wp-json\/wp\/v2\/tags?post=1550"}],"curies":[{"name":"wp","href":"https:\/\/api.w.org\/{rel}","templated":true}]}}