Feeds

Email marketing abuse is rife among top UK companies

31% break anti-spam laws

Internet Security Threat Report 2014

A study of the UK's biggest companies has found 31 per cent of them breaking anti-spam laws by sending marketing emails without either prior consent or an existing customer relationship.

CDMS, a data and marketing firm, examined compliance with the EU Directive on Privacy and Electronic Communications by the top 200 companies across 13 sectors, including banking, general insurance, retail and mobile telecoms.

The companies were tested to see whether they consistently offered non-customers the opportunity to actively opt-in or otherwise consent to further marketing emails when their details were recorded as the result of a promotion or enquiry. These promotions appeared either on the company's own website, through a partner company's website, in a third party e-newsletter, or as part of an advertising or direct mail campaign.

According to CDMS, 69 per cent of companies studied are compliant with the legislation, a modest improvement of three percentage points since its last survey in 2005.

Ian Hubbard of CDMS said: "Companies who have not complied are putting their carefully built brands at risk, by putting out the message to consumers that they apparently don't care about legislation designed to protect their prospective customers' privacy."

He added: "This effectively puts them in the category of junk emailers, and associating them with a rising tide of spam, and growing consumer concerns over the security of their personal records."

The Regulations that implemented the EU Directive have been in force since December 2003. To date, there have been only two court rulings on their anti-spam provisions. The first was in 2005, when chartered engineer Nigel Roberts won £300 in damages in an undefended action against a Scottish marketing firm. The second was last December, when Microsoft won a summary judgment to stop an individual selling lists of email addresses to spammers.

CDMS noted that non-compliant companies urgently need to put processes in place to limit their current risk. "In addition, there is a major forensic and clean-up job to be done on these companies' marketing databases," said Hubbard.

Struan Robertson, editor of OUT-LAW.COM and a technology lawyer with Pinsent Masons, said: "A lot of confusion continues to surround the rules on email marketing. Compliance is very important, but the rules are not as restrictive as many people think. There is a misconception that they demand opt-in marketing, which most people visualise as ticking a box. That's not what they say."

Robertson continued, "The rules talk about the need for prior consent. One way of getting that is to have a tick box – but that is just one way. Others exist. And if you're emailing existing customers to promote similar products to those they bought before, and these are people whose contact details you obtained when selling or negotiating a sale, prior consent is not needed – provided you identify your company, give an opt-out on collection of the email address and include an unsubscribe option with each email sent."

Copyright © 2007, OUT-LAW.com

OUT-LAW.COM is part of international law firm Pinsent Masons.

Related links

Email marketing – when to use opt-in and when to use opt-out
Microsoft wins ruling to ban spam list sales
Microsoft sues British spammer for Hotmail breach
Email marketing: prior consent does not mean opt-in
How to sue a British spammer

Beginner's guide to SSL certificates

More from The Register

next story
Bono apologises for iTunes album dump
Megalomania, generosity and FEAR of irrelevance drove group to Apple deal
HBO shocks US pay TV world: We're down with OTT. Netflix says, 'Gee'
This affects every broadcaster, every cable guy
Facebook, Apple: LADIES! Why not FREEZE your EGGS? It's on the company!
No biological clockwatching when you work in Silicon Valley
SCREW YOU, EU: BBC rolls out Right To Remember as Google deletes links
Not even Google can withstand the power of Auntie
Arab States make play for greater government control of the internet
Nerds told to get lost in last-minute power grab bid at UN meeting
Zippy one-liners, broken promises: Doctor Who on the Orient Express
Series finally hits stride, but Clara's U-turn is baffling
Don't bother telling people if you lose their data, say Euro bods
You read that right – with the proviso that it's encrypted
America's super-secret X-37B plane returns to Earth after nearly TWO YEARS aloft
674 days in space for US Air Force's mystery orbital vehicle
10 Top Tips For PRs Considering Whether To Phone The Register
You'll Read These And LOL Even Though They're Serious
prev story

Whitepapers

Forging a new future with identity relationship management
Learn about ForgeRock's next generation IRM platform and how it is designed to empower CEOS's and enterprises to engage with consumers.
Win a year’s supply of chocolate
There is no techie angle to this competition so we're not going to pretend there is, but everyone loves chocolate so who cares.
Why cloud backup?
Combining the latest advancements in disk-based backup with secure, integrated, cloud technologies offer organizations fast and assured recovery of their critical enterprise data.
High Performance for All
While HPC is not new, it has traditionally been seen as a specialist area – is it now geared up to meet more mainstream requirements?
Saudi Petroleum chooses Tegile storage solution
A storage solution that addresses company growth and performance for business-critical applications of caseware archive and search along with other key operational systems.