What is CASL?
What is CASL?
Canada's Anti-Spam Legislation (CASL) — officially *An Act to Promote the Efficiency and Adaptability of the Canadian Economy by Regulating Certain Activities that Discourage Reliance on Electronic Means of Carrying Out Commercial Activities* — is Canada's federal law governing commercial electronic messages (CEMs), the installation of computer programs, and the harvesting of electronic addresses.
CASL came into force on July 1, 2014 for CEMs, January 15, 2015 for software installation provisions, and July 1, 2014 for address harvesting.
Official CRTC resource: crtc.gc.ca — Fighting Spam
CASL is recognized internationally as the strictest anti-spam legislation in the world — its penalties exceed those of the US CAN-SPAM Act, EU ePrivacy Directive, and UK PECR by orders of magnitude.
What CASL Governs — Three Pillars
| Pillar | Enforcer | Key Prohibition |
|---|---|---|
| Commercial Electronic Messages (CEMs) | CRTC | Cannot send CEMs without express or implied consent; must include ID, contact info, and unsubscribe |
| Software installation | CRTC | Cannot install software on another person's computer without express consent |
| Address harvesting | OPC | Cannot use automated tools to collect electronic addresses or generate address combinations for the purpose of sending CEMs |
This guide focuses primarily on CEMs — the most commonly triggered provision.
What Is a Commercial Electronic Message (CEM)?
A CEM is any electronic message (email, SMS, direct message, instant message, or automated voice message) that encourages participation in a commercial activity, regardless of whether there is an expectation of profit. This includes:
- Marketing emails promoting products, services, or brands
- Newsletters that contain any promotional content
- Promotional SMS messages
- Social media direct messages with commercial content
- Automated calls with commercial content
Key principle: If the primary purpose of the message is commercial, it is a CEM even if it contains some non-commercial content.
What Is NOT a CEM (or Is Exempt)
| Message Type | Status |
|---|---|
| Order confirmations, shipping notifications, receipts | Not a CEM — purely transactional |
| Password resets, security alerts | Not a CEM — operational |
| Warranty or safety information | Not a CEM |
| Responses to requests or inquiries | Not a CEM |
| Internal employee messages | Not a CEM |
| Messages to close personal relationships | Exempt (family, friends) |
| Registered charity fundraising | Exempt (for fundraising only) |
| Political party / candidate solicitations | Exempt |
Critical nuance: Adding even one promotional sentence to a transactional email can convert it into a CEM requiring CASL compliance. Keep transactional messages purely transactional.
Who Enforces CASL?
| Body | Jurisdiction | Tool |
|---|---|---|
| CRTC | CEMs, software installation | Administrative monetary penalties (AMPs) — no court required |
| Competition Bureau | False/misleading content in CEMs | Civil orders and penalties |
| OPC | Address harvesting | Civil orders |
Geographic Scope — Who Must Valdra?
CASL applies when either:
- 1The message is sent from a computer system in Canada, or
- 2The message is accessed from a computer system in Canada
This means:
- A company in Texas emailing its Canadian customers must comply with CASL
- A Canadian company emailing US customers must comply with CASL (the send originates in Canada)
- A UK company whose emails are opened by Canadians must comply with CASL
There is no exemption for small businesses, non-profits (outside of fundraising), or foreign companies.
Module Quiz
1. When did CASL's commercial electronic message provisions come into force?
2. Which body primarily enforces CASL's commercial electronic message provisions and can impose penalties without court proceedings?
3. A US company emailing its Canadian customer list must comply with CASL.
All Modules