Fraud, terms of service and email marketing

gavelHere at the Atkins house we’re still both recovering from the M3AAWG plague. I don’t know what it was that we shared during the conference, but it’s knocked many folks over. I don’t have a lot to blog about this afternoon so I was looking through some of my old blog posts to get at least some content up before I give up for the weekend.
I found an old post about permission (Permission: It May Not Be What You Think It Is). The post discusses where a woman sued Toyota over emails from an online marketing campaign. I’d totally forgotten about that blog post, so I started looking at what happened with the case.
In the original case Toyota created a social media campaign where people could opt their friends in to be the target of a prank.

In the prank, a friend would sign you up on the Toyota Matrix website to participate and provide Toyota with a slew of your personal and private information including your email (sound fun so far?). iMediaConnection

After your “friend” signed you up, you’d receive an email offering a free personality test. Part of the personality test involved agreeing to terms and conditions that, according to the Appeals Court, said:

The first paragraph of the terms and conditions states, “You have been invited by someone who has indicated that he/she knows you to participate in Your Other You. Your Other You is a website provided by [Toyota] that offers you . . . an interactive experience.” The second paragraph further states, “If you review and agree to the Terms and Conditions detailed below . . . you may participate in a 5 day digital experience through Your Other You. . . . You may receive email messages, phone calls and/or text messages during the 5-day experience.” A subsequent paragraph also states, “You understand that by agreeing to these Terms, you are agreeing to receive emails, phone calls and text messages from Toyota during the 5-day experience of Your Other You.” CA Court of Appeals

Toyota was sued for $10 million dollars by a woman who received the emails. The suit alleges intentional infliction of emotional distress, deceptive trade practices and negligent misrepresentation. The campaign was thorough, Toyota went so far as to create MySpace pages for the fugitive and send the plaintiff a bill for damages at a hotel.
Toyota argued to the court that the case go to arbitration as defined in the terms of service that the plaintiff agreed to. This went up to the California court of appeals, who ruled that the case did not have to
In 2011, the California court of appeals ruled the suit could go forward(pdf link) in the courts as the terms of service were void because they were drafted in such a way as to hide the true nature of the agreement from anyone clicking through.

[Plaintiff] contends that the arbitration provision in the terms and conditions is unenforceable because, assuming that she did agree to the terms and conditions by clicking the appropriate box, the entire agreement is void because of fraud in the inception or execution. We agree. […] The point that defendants fail to address, however, is that it would have availed [the plaintiff] nothing to read and reread the terms and conditions, which were drafted in such a way as not to apprise her of what defendants intended to do to her.

I’ve not been able to find any current disposition of the case, but I think the appeal ruling is interesting. One thing I hear from a lot of folks is how users opted in to have their address sold. But whenever I’ve had the chance to look at terms and conditions, there isn’t anything that says “We will sell your address.” Instead, I may find “we may share information with affiliated companies.” I don’t think it quite rises to the level of deception in Toyota’s terms. However, there is case law in California that says fraud in online terms can invalidate the whole agreement.

Related Posts

CASL is more privacy law than anti-spam law

Michael Geist, a law professor in Canada, writes about the new CASL law, why it’s necessary and why it’s more about privacy and consumer protection than just about spam.

Read More

Old Lists and RadioShack

RadioShack is putting their assets up for sale including more than 65 million customer records and 13 million email addresses. Many are up in arms about the sale of personal data including the Texas Attorney General and AT&T who both want the data destroyed.
Part of the controversy is that RadioShack’s privacy policy states the collected data will be only used by RadioShack and its affiliates and that they will not “sell or rent your personally identifiable information to anyone at any time”. Company acquisitions happen all the time and data like this is often sold to the new owner and the sale of customer data is common. The problem with RadioShack selling the customer data is that their privacy policy states they will never sell the information.
RadioShack was one of the first companies to ask for personal information at checkout, sometimes refusing a sale without providing it and the collection of data during checkout caught on quickly. Having demographic information for retargeting of customers is extremely valuable to marketers, but only if it’s valid data. With RadioShack, people often lie about their zip code and if they are giving incorrect zip codes I’m pretty sure their email address isn’t going to be valid either. Even Kramer asks why does RadioShack ask for your phone number…
https://www.youtube.com/watch?v=WgfaYKoQxzQ
If a client asked if this was a good investment and if the list had value, I would tell them no. Sending to this list will have poor delivery because the data is dirty and the lack of a clear opt-in is going to be problematic especially since a RadioShack customer is not expecting to receive mail from you. Many ESPs have policies prohibiting sending to a purchased list and doing so will hurt your relationship with the ESP.
If a client had already purchased the list and wanted to send to it, I would tell them their reputation is going to take a significant hit and I would discourage them from sending. The list is going to be full of domains that no longer exist and contain abandoned email addresses including ones that have been turned into spam traps.
When preparing to send to a new list of email addresses, I go through this process:

Read More

Some content is just bad; but it doesn't have to be

There are a few segments in the marketing industry that seem to acquire senders with bad mailing practices. Nutraceuticals, male performance enhancing drugs, short term or payday loans and gambling have a lot of senders that treat permission as optional. The content and the industry themselves have garnered a bad reputation.
This makes these industries extremely difficult for mailers who actually have permission to send that content to their recipients. Working with this kind of sender, sometimes it seems impossible to get mail delivered to the inbox, no matter what the level of permission. Even when it’s double confirmed opt-in with a cherry on top, all the care in the world with permission isn’t enough to get inbox delivery.
This doesn’t have to be the case. Look at the porn industry. Early on in the email marketing arena there was a lot of unsolicited image porn. A Lot. So much that complaints by recipients drove many ISPs to disable image loading by default. The legitimate porn companies, though, decided unsolicited image porn was bad for the industry as a whole. Porn marketers and mailers adopted fairly strong permission and email address verification standards.
It was important for the porn marketers that they be able to prove that the person they were mailing actually requested the email. The porn marketers took permission seriously and very few companies actually send photographic porn spam these days. Even the “Russian girls” spam doesn’t have not safe for work images any longer.
Because of their focus on permission, in some cases revolving around age of consent in various jurisdictions, the porn industry as a whole is not looked at as “a bunch of spammers.” Porn content isn’t treated as harshly as “your[sic] pre-approved for a wire transfer” or “best quality drugs shipped overnight.”
Just having offensive content isn’t going to get you blocked. But having content that is shared by many other companies who don’t care about permission, will cause delivery headache after delivery headache. This is true even when you are the One Clean Sender in the bunch.
 

Read More