Private parties frustrated by spam often face significant legal hurdles to bringing suit against the spammer. Businesses and individuals, except for internet service providers, cannot sue under the main Federal anti-spam statute — CAN-SPAM. 15 U.S.C. § 7706. Some state anti-spam laws do permit email businesses and individuals to bring suit. For example, California’s anti-spam laws permit any email recipient to sue. Cal Bus. & Prof. Code § 17529.8. However, CAN-SPAM also unfortunately provides that all state laws regulating commercial emails are preempted (can’t be enforced), except to the extent that such laws prohibit “falsity or deception.” 15 U.S.C. § 7707(b)(1). This rule has often meant that businesses and consumers seeking to sue spammers under state laws are out of luck.
The reason for their ill-luck is that courts have generally interpreted the terms “falsity and deception” in CAN-SPAM to refer to common-law fraud. This means that the state law is invalid except to the extent that it merely prohibits common-law fraud. So to bring suit under a state anti-spam statute that prohibited falsity or deception, the plaintiff would have to prove that the spammer intentionally made a misrepresentation of material fact, on which the plaintiff actually relied and which caused him actual damages. See, e.g., Omega World Travel, Inc., 469 F.3d 348, 353 (4th Cir. 2006).
To penetrate anti-spam defenses, many spam emails contain false “header” information — in which a “friendly” email address, from an organization that the email recipient will not block — is substituted for that of the actual sender (the spammer). Sometime the “from” box in a spam email will contain a variant of the recipient’s email address, an email address of another person at the recipient’s firm, an email address of another legitimate business, or a misspelled email address from any of the foregoing.
Spam emails also often contain deceptive information in the reference line, such as “A free gift for you”, or “You have been selected for a cruise”, etc. This material convinces the recipient to open and read the file.
While this header information may be false, it may be difficult for the recipient to argue that this false header information gives rise to the common-law tort of fraud. The false information may have permitted the spammer to get around the recipient’s anti-spam software, or the recipient may have been induced by a false reference line to open the spam email. However, the recipient may have never relied on this false information to enter into a transaction in which he lost money. There lies the rub: if there was no actual reliance and no damages caused by the reliance — then there is no cause of action for common-law fraud. This eliminates most private suits against spammers.
However, some recent decisions regarding California’s anti-spam laws have begun to question the standard interpretation of “falsity and deception.”