Browse Definitions :
Definition

Canadian anti-spam legislation (CASL)

Contributor(s): Ivy Wigmore

Canadian anti-spam legislation (CASL) is enacted regulations requiring any individuals or organizations that send commercial electronic messages (CEM) to obtain express consent from all Canadian recipients. 

CASL was created to cut down on spam and, as a result, to reduce the frequency of phishing, viruses, identity theft and other cybercrimes. The legislation applies to all commercial messages transmitted through email, social media, voicemail, text and instant messages. CASL's opt-in model is more stringent than the opt-out model common in other countries, which merely requires that recipients can easily elect not to receive a marketer's messages.  

CASL went into effect July 1, 2104. The legislation mandates fines of up to one million dollars (Canadian) for individuals and 10 million for organizations. A three-year grace period allows senders to continue communicating with current recipients for whom they have implied consent. However, express consent must be obtained to send to new recipients; senders must also obtain express consent from current recipients within that time span. 

The American Bar Association (ABA) has called CASL "the toughest anti-spam law in the world." Critics of the legislation predict that it will cause a lot of problems for legitimate organizations without having a significant impact on problematic spammers, who are typically located outside of North America (which makes enforcement difficult) and are already non-compliant with any anti-spam legislation. 

This was last updated in July 2014

Continue Reading About Canadian anti-spam legislation (CASL)

Start the conversation

Send me notifications when other members comment.

Please create a username to comment.

-ADS BY GOOGLE

File Extensions and File Formats

Powered by:

SearchCompliance

  • compliance audit

    A compliance audit is a comprehensive review of an organization's adherence to regulatory guidelines.

  • regulatory compliance

    Regulatory compliance is an organization's adherence to laws, regulations, guidelines and specifications relevant to its business...

  • Whistleblower Protection Act

    The Whistleblower Protection Act of 1989 is a law that protects federal government employees in the United States from ...

SearchSecurity

  • Malwarebytes software

    Malwarebytes is a cross-platform anti-malware program that detects and removes malware and other rogue software.

  • Transport Layer Security (TLS)

    Transport Layer Security (TLS) is a protocol that provides authentication, privacy, and data integrity between two communicating ...

  • van Eck phreaking

    Van Eck phreaking is a form of electronic eavesdropping that reverse engineers the electromagnetic fields (EM fields) produced by...

SearchHealthIT

SearchDisasterRecovery

  • cloud insurance

    Cloud insurance is any type of financial or data protection obtained by a cloud service provider. 

  • business continuity software

    Business continuity software is an application or suite designed to make business continuity planning/business continuity ...

  • business continuity policy

    Business continuity policy is the set of standards and guidelines an organization enforces to ensure resilience and proper risk ...

SearchStorage

  • solid-state storage

    Solid-state storage (SSS) is a type of computer storage media made from silicon microchips. SSS stores data electronically ...

  • persistent storage

    Persistent storage is any data storage device that retains data after power to that device is shut off. It is also sometimes ...

  • computational storage

    Computational storage is an information technology (IT) architecture in which data is processed at the storage device level to ...

Close