• Skip to main content
  • Skip to footer

Dyspatch

  • Products
      • Overview
      Features
      • No-code email builder
      • Email collaboration
      • SMS builder
      • AMP for Email
      • Template localization
      • Expert services
      • Partners & integrations
      •  
      Find your fit
      • Tools for email Designers
      • Dyspatch for translators
      • Email production for Marketers
      • Resources for email Developers
      Sendwithus Logo
      • Overview
      • Analytics
      • A/B testing
      • Triggered emails
  • Pricing
  • Case studies
  • Resources
    • Blog
    • Free templates
    • Webinars
    • Ebooks, guides, & reports
  • Company
    • About us
    • Careers
    • Contact us
  • Login
    • Dyspatch
    • Sendwithus
Get a demo

What is really required for unsubscribes? And other legal requirements, demystified

By Veronica Best | November 23, 2023 | Categories: Email Marketing
What's required for unsubscribes
⏱ 5 minute read

Table of Contents

  • Overview
  • Europe and the United Kingdom
  • Demystifying Compliance
  • Penalties
  • More Recommendations
  • Conclusion

Overview

Unsubscribe links try to fly under the radar, but they carry significant weight in the eyes of the law and are among the top legal requirements to consider before you send any commercial (non-transactional) email communication. Let's demystify the requirements and legal obligations that businesses must navigate in their email marketing.

Unsubscribe Regulations Vary Across Borders

Across the globe, respecting the recipient's choice to opt out is not just good practice; it's the law. In the United States, the CAN-SPAM Act mandates a clear and conspicuous unsubscribe link in every commercial email. Canada's Anti-Spam Legislation (CASL) demands a functional unsubscribe mechanism processed within ten business days. Australia's Spam Act echoes a similar sentiment, requiring a functional unsubscribe option and prompt opt-out processing within five business days.

In the European Union, where regulatory intricacies abound, the General Data Protection Regulation (GDPR) sets the standard. Unsubscribe mechanisms must be clear and easily accessible, with opt-out requests processed promptly. Each EU member state may have additional requirements, emphasizing the need for businesses to align with national laws.

Country High-Level Requirements Government Documentation
United States
  • Include a clear and conspicuous unsubscribe link in every commercial email. 
  • Must honor opt-out requests within 10 business days.
  • And much more, noted here and here
CAN-SPAM Act

California Consumer Privacy Act

Canada Compliance with Canada's Anti-Spam Legislation (CASL).

  • Obtain consent before sending an email.
  • Provide identification information.
  • Provide a functioning unsubscribe mechanism. 
  • Must process opt-out requests within 10 business days.
Canada's Anti-Spam Legislation (CASL)

CRTC Guidance

Australia Comply with the Spam Act 2003 and Spam Regulations 2021. 

  • Obtain consent before sending.
  • Include your contact details.
  • Include a functional unsubscribe option in all marketing emails.
  • Must honor opt-out requests within five business days.
Spam Act 2003
Spam Regulations 2021
European Union Comply with the General Data Protection Regulation (GDPR). 

  • Provide a clear and easy way to opt-out. 
  • Must process opt-out requests promptly. 
  • Additional national laws may apply.
General Data Protection Regulation (GDP

Please note that this is a high-level summary, and it's crucial to delve into the specific legal texts and seek legal advice to ensure full compliance with each country's regulations.

Europe & the United Kingdom

Country High-Level Requirements Government Documentation
Austria Comply with the General Data Protection Regulation (GDPR). 

  • Provide a clear and easy way to opt-out. 
  • Must process opt-out requests promptly. 
  • Additional national laws may apply.
Austrian Data Protection Authority
France Comply with the General Data Protection Regulation (GDPR). 

  • Provide a clear and easy way to opt-out. 
  • Must process opt-out requests promptly. 
  • Additional national laws may apply.
CNIL - French Data Protection Authority
Germany Comply with the General Data Protection Regulation (GDPR). 

  • Provide a clear and easy way to opt-out. 
  • Must process opt-out requests promptly. 
  • Additional national laws may apply.
German Federal Commissioner for Data Protection and Freedom of Information
Italy Comply with the General Data Protection Regulation (GDPR). 

  • Provide a clear and easy way to opt-out. 
  • Must process opt-out requests promptly. 
  • Additional national laws may apply.
Italian Data Protection Authority
Spain Comply with the General Data Protection Regulation (GDPR). 

  • Provide a clear and easy way to opt-out. 
  • Must process opt-out requests promptly. 
  • Additional national laws may apply.
Spanish Data Protection Agency
United Kingdom The Privacy and Electronic Communications Regulations (PECR):

  • Implied consent before sending.
  • Must process opt-out requests promptly. 
  • Additional national laws may apply.
Information Commissioner's Office (ICO)

The Privacy and Electronic Communications Regulations (PECR)

Please note that this is a high-level summary, and it's crucial to delve into the specific legal texts and seek legal advice to ensure full compliance with each country's regulations.

 

Demystifying Compliance: Practical Steps for Businesses

Ensuring compliance is complex, but following a process will simplify things for your team and ensure that your emails remain compliant. We recommend the following approach:

icon-thumb

Regularly Review Consent Mechanisms: Regularly review and update how consent is obtained from your audience to confirm that it aligns with the latest legal requirements in their country.

icon-lock

Invest in Secure Data Handling: Be proactive and prioritize data security. Implement robust measures to safeguard customer information and prevent unauthorized access. That, or invest in email production tools like Dyspatch that don’t touch PII, so that you’re guaranteed to be compliant every time. 

Empower Email Teams: Ensure teams handling email marketing are well-versed in legal requirements. Regular training keeps everyone on the same page.

icon-email

Regularly Audit Your Email Content: Regularly audit your emails to ensure that they remain compliant. From clarity in sender information to the accessibility of unsubscribe links, every detail matters. Keep documentation accessible, and ensure that you have an email approval process that will guarantee that the right stakeholders—legal or executive—approve every email before it is sent.

icon-exclaim

Stay Informed: Regulations evolve. Make it a priority to stay informed about changes in each locale where you have email recipients. Your customers will expect you to stay abreast of changes since they are positively impacted by these new regulations (especially when it ensures that unsubscribes are accessible!)

Penalties

While we hear varying reports about how often or how strictly these penalties are enforced, it’s worth noting the importance of diligent complying with regulations that extend beyond simply building trust with your audience. There is a strong legal impetus to follow the regulations in all your communications practices. That, and it’s the ethical thing to do as a business.

Country Penalty for Non-Compliance Links to Government Documentation
United States Fines of up to $43,792 per violation. Continued violations may result in higher penalties and potential legal action. CAN-SPAM Act - Penalties
Canada Fines of up to $10 million for organizations and $1 million for individuals. Private right of action allows affected individuals to seek compensation. CASL - Penalties

Spam Regulations 2021

Australia Fines of up to $2.1 million per day for corporate entities. Individuals face fines of up to $420,000 per day. Spam Act 2003 - Penalties
Spam Regulations 2021
Austria Fines of up to €20 million or 4% of global annual turnover, whichever is higher, under GDPR. National authorities may impose additional penalties. Austrian Data Protection Authority - GDPR Penalties
France Fines of up to €20 million or 4% of global annual turnover, whichever is higher, under GDPR. Additional fines may be imposed by the French Data Protection Authority (CNIL). CNIL - GDPR Penalties
Germany Fines of up to €20 million or 4% of global annual turnover, whichever is higher, under GDPR. Additional fines may be imposed by the Federal Commissioner for Data Protection. German Federal Commissioner - GDPR Penalties
Italy Fines of up to €20 million or 4% of global annual turnover, whichever is higher, under GDPR. Additional fines may be imposed by the Italian Data Protection Authority. Italian Data Protection Authority - GDPR Penalties
Spain Fines of up to €20 million or 4% of global annual turnover, whichever is higher, under GDPR. Additional fines may be imposed by the Spanish Data Protection Agency. Spanish Data Protection Agency - GDPR Penalties
United Kingdom Fines of up to £17.5 million or 4% of global turnover, whichever is higher, under GDPR during the Brexit transition period. The Information Commissioner's Office (ICO) may also impose additional fines. ICO - GDPR Penalties

Please note that this is a high-level summary, and it's crucial to delve into the specific legal texts and seek legal advice to ensure full compliance with each country's regulations.

More Compliance Recommendations

In addition to clear and conspicuous unsubscribe links, there are legal requirements that touch many other steps of the email sending process, from eliciting consent to storing customer data. Consent, the linchpin of GDPR, requires explicit agreement before you touch a customer’s inbox. Related is compliance with cookie data, which in Europe is covered by the ePrivacy directive. And finally, data protection is paramount, with fines climbing to €20 million or 4% of global annual turnover for mishandling personal information. 

Promptly honoring opt-out requests is universal, reinforcing the notion that respecting the audience's choices is not just courteous—it's a legal mandate. 

Conclusion

In conclusion, while unsubscribes are a legal mandate, they represent just the tip of the compliance iceberg. As individuals, we expect that each company to prioritize legal compliance for email in a way that respects our individual choices and safeguards our personal data. 

Demystifying these legal obligations is a must for compliance reasons; it’s key to business success because it impacts your bottom line. Not only will you steer clear of legal pitfalls, but you’ll also foster a relationship of trust with your audience — a cornerstone of successful and ethical digital marketing.

Do you need help ensuring your communications are compliant? The email heroes at Dyspatch can provide a comprehensive review of your emails and provide actionable recommendations. We’d love to hear from you. 

Dyspatch includes guaranteed email compliance by locking down legal content. Find out more!

Get a demo

Veronica Best, VP of Product

Voracious reader and self-professed #emailgeek. Passionate about all things product. VP of Product at Dyspatch.

  • LinkedIn

    Related Posts

  • Litmus Live 2021 Recap: 5 Ways to Boost Email Engagement & Conversions
  • Audio in Email — it’s Possible!
  • How to Organize Your Email Team to Scale
Tags: Email Marketing Articles, Email Production, legal compliance, localization and internationalization, stakeholder approval
Share this post:
  • Facebook
  • Pinterest
  • Twitter
  • Linkedin
LET’S CHAT!

Why wait? Take your email marketing to the next level today.

Get a demo

5307 Victoria Drive #899
Vancouver, BC
V5P 3V6

548 Market Street,
San Francisco, California
94104 US

  • Phone 1-877-458-9231
  • Email us@dyspatch.io
    security@dyspatch.io
  • Facebook
  • Twitter
  • Instagram
  • LinkedIn
  • YouTube

Get the latest email strategies, tips, and trends right to your inbox.

About Dyspatch

  • About us
  • Careers
  • Contact us
  • Pricing
  • Press & Media
  • Release Notes

Find your fit

  • Tools for email Designers
  • Dyspatch for translators
  • Email production for Marketers
  • Resources for email Developers

Features

  • Dyspatch overview
  • No-code email builder
  • Email collaboration
  • Email template localization
  • AMP for Email
  • Sample AMP email templates
  • Expert Services
  • Sendwithus Overview
  • Agency Program

Email resources

  • Blog
  • Webinars
  • Ebooks Guides & Reports
  • HTML email templates
  • Knowledge base
  • Figma email builder
  • The Dyspatch Block gallery

Integrations

  • Partners & Integrations directory
  • Email builder for Braze
  • Email builder for Iterable
  • Email builder for Salesforce Marketing Cloud
  • Email builder for Pardot
  • Email builder for SendGrid
  • Email builder for Marketo
  • Email builder for HubSpot
  • Email builder for Oracle Eloqua

Dyspatch respectfully acknowledges the Lekwungen and W̱SÁNEĆ People, whose unceded territories we live and work on. We would also like to express our gratitude to all of the Coast Salish people as we continue to work and live as guests on their lands.

We recognize that acts of colonization created many inequities for First Nations, Inuit, and Métis people. As a company, we acknowledge that we have a responsibility to work towards reconciliation and to remain open to suggestions and consultations, especially with Indigenous communities.

Privacy policy    |    Terms of service    |    Web accessibility    |    Cookie policy    |    Usage    |    Sitemap

Copyright © 2025 Techdrop Labs Inc. All Rights Reserved.


Features & Functionality
Starter Teams Teams+
Universal styling  ✓  ✓  ✓
Drag and drop email builder  ✓  ✓  ✓
Custom code editor  ✓  ✓  ✓
Custom fonts  ✓  ✓  ✓
Device specific elements  ✓  ✓  ✓
Version history  ✓  ✓  ✓
Social media link settings  ✓  ✓  ✓
Commenting  ✓  ✓  ✓
Live previews  ✓  ✓  ✓
Dark mode previews  ✓  ✓  ✓
Litmus testing  ✓  ✓  ✓
Custom merge fields  ✓  ✓  ✓
Image hosting  ✓  ✓  ✓
Brand & legal compliance guardrails  ✓  ✓  ✓
User role permissions  ✓  ✓  ✓
ESP logic  ✓  ✓  ✓
Code Export  ✓  ✓  ✓
AMP Email Support  ✓  ✓  ✓
Approval Workflows  ✓  ✓  ✓
API Access  ✓  ✓  ✓
User Management –  ✓  ✓
Translation (via Smartling) – –  ✓
Export via API – –  ✓
Localizations – –  ✓
Account Manager – –  ✓
Premium Support – –  ✓
SLA – –  ✓
Premium SAML SSO – –  ✓
Custom Themes – –  ✓
Workspaces – –  ✓
Design / AMP Services – –  ✓
Pricing $149/mo $499/mo Custom
Get a demo

Get a quote