Browse Definitions :
Definition

Canadian anti-spam legislation (CASL)

Canadian anti-spam legislation (CASL) is enacted regulations requiring any individuals or organizations that send commercial electronic messages (CEM) to obtain express consent from all Canadian recipients. 

CASL was created to cut down on spam and, as a result, to reduce the frequency of phishing, viruses, identity theft and other cybercrimes. The legislation applies to all commercial messages transmitted through email, social media, voicemail, text and instant messages. CASL's opt-in model is more stringent than the opt-out model common in other countries, which merely requires that recipients can easily elect not to receive a marketer's messages.  

CASL went into effect July 1, 2104. The legislation mandates fines of up to one million dollars (Canadian) for individuals and 10 million for organizations. A three-year grace period allows senders to continue communicating with current recipients for whom they have implied consent. However, express consent must be obtained to send to new recipients; senders must also obtain express consent from current recipients within that time span. 

The American Bar Association (ABA) has called CASL "the toughest anti-spam law in the world." Critics of the legislation predict that it will cause a lot of problems for legitimate organizations without having a significant impact on problematic spammers, who are typically located outside of North America (which makes enforcement difficult) and are already non-compliant with any anti-spam legislation. 

This was last updated in July 2014

Continue Reading About Canadian anti-spam legislation (CASL)

SearchCompliance
  • pure risk

    Pure risk refers to risks that are beyond human control and result in a loss or no loss with no possibility of financial gain.

  • risk reporting

    Risk reporting is a method of identifying risks tied to or potentially impacting an organization's business processes.

  • risk exposure

    Risk exposure is the quantified potential loss from business activities currently underway or planned.

SearchSecurity
  • script kiddie

    Script kiddie is a derogative term that computer hackers coined to refer to immature, but often just as dangerous, exploiters of ...

  • cipher

    In cryptography, a cipher is an algorithm for encrypting and decrypting data.

  • What is risk analysis?

    Risk analysis is the process of identifying and analyzing potential issues that could negatively impact key business initiatives ...

SearchHealthIT
SearchDisasterRecovery
  • What is risk mitigation?

    Risk mitigation is a strategy to prepare for and lessen the effects of threats faced by a business.

  • fault-tolerant

    Fault-tolerant technology is a capability of a computer system, electronic system or network to deliver uninterrupted service, ...

  • synchronous replication

    Synchronous replication is the process of copying data over a storage area network, local area network or wide area network so ...

SearchStorage
  • gigabyte (GB)

    A gigabyte (GB) -- pronounced with two hard Gs -- is a unit of data storage capacity that is roughly equivalent to 1 billion ...

  • MRAM (magnetoresistive random access memory)

    MRAM (magnetoresistive random access memory) is a method of storing data bits using magnetic states instead of the electrical ...

  • storage volume

    A storage volume is an identifiable unit of data storage. It can be a removable hard disk, but it does not have to be a unit that...

Close