Back

Refrain from including misleading information in the e-mail header when transmitting electronic messages.


CONTROL ID
00285
CONTROL TYPE
Behavior
CLASSIFICATION
Preventive

SUPPORTING AND SUPPORTED CONTROLS



This Control directly supports the implied Control(s):
  • Establish, implement, and maintain an anti-spam policy., CC ID: 00283

There are no implementation support Controls.


SELECTED AUTHORITY DOCUMENTS COMPLIED WITH



  • Electronic messages may not be sent unless they are compliant with laws and regulations regarding spam for the country of origin. (§ 16(1)(b), Australia Spam Act)
  • The sender of a commercial e-mail must include identifying information that is easy for the recipient to locate and read. (Pg 13, Australia Spam Act 2003: A practical guide for business)
  • A person must not send, or cause to be sent, an unsolicited commercial electronic message that is not a designated commercial electronic message. (§ 16(1)(b), Australian Government Spam Act 2003)
  • When target mail is sent via electronic means, the data subject must be notified upon its receipt that the nature of the communication target mail. (Art 28.4, Iceland Protection of Privacy as regards the Processing of Personal Data)
  • When transmitting info to people in an electronic message, that message cannot include header information that is false or misleading. There are multiple ways something can be considered misleading. For example, a message can be sent with an accurate header, but if it comes from an e-mail address or… (§ 7704(1), § 7704(2), Controlling the Assault of Non-Solicited Pornography and Marketing Act of 2003, Dec. 16, 2003)
  • Knowingly uses a third party's internet address or domain name without the third party's consent for the purposes of transmitting a commercial electronic mail message; or (6-1-702.5 (2)(d), Colorado Revised Statutes, Title 6, Consumer and Commercial Affairs, Fair Trade and Restraint of Trade, Article 1, Colorado Consumer Protection Act)
  • Knowingly falsifies electronic mail transmission information or other routing information for a commercial electronic mail message in order to mislead or deceive the recipient as to the source or sender of the message; (6-1-702.5 (2)(c), Colorado Revised Statutes, Title 6, Consumer and Commercial Affairs, Fair Trade and Restraint of Trade, Article 1, Colorado Consumer Protection Act)
  • Make any electronic mail or other communication under false pretenses purporting to be by or on behalf of a business, without the authority or approval of the business, and use that electronic mail or other communication to induce, request, or solicit any individual to provide personal identifying i… (§ 445.67 ¶ 1(a), Michigan Identity Theft Protection Act, Act 452 of 2004, Sections 445.61 thru 445.72a)