|
BestPrac.Org
Stop Spam : Best Practice in Email
Spam Prevention and Eradication
Principles of Best Practice -
Other Free Web-based Services:
Summary
The internet being the dynamic technology that it is regularly sees new types of web- based services, commonly free and advertiser supported, made available to the online community. This set of Principles of Best Practice (the "FWS" series) has been written to cover these, and any existing web based services available not covered adequately by other sets of Principles of Best Practice. All Internet services have a role to play to prevent spam occuring, or at the very least prevent spam reaching end users.
|
| Ref # |
Principle or Proposed Principle
|
| FWS001 |
"Other" Free Web-based Services (ie those not otherwise fitting any category of the Principles of Best Practice) should maintain an adequately and competently staffed abuse desk on a 24 hour, 365 day per year basis. The contact details for the abuse desk should be readily and easily accessible on the website of the "Other" Free Web-based Service, and also listed with the Network Abuse Clearinghouse at http://abuse.net |
| FWS002 |
Upon receipt of an evidence-based abuse report, the abuse desk of the "Other" Free Web-based Services should investigate the complaint and take action within two (2) hours. If the complaint is valid, the account or service of the perpetrator should be terminated immediately, the offender barred from future use of the service, and the violation and termination reported to the other service providers known or believed to be used by the offender. If the complaint cannot be properly investigated within two (2) hours, the account or service to the alleged perpetrator should be temporarily suspended while the investigation continues. All complainants should be sent a reply stating the outcome of the investigation and the action taken. |
| FWS003 |
"Other" Free Web-based Services should not allow themselves to be used as defacto anonymous services, and should protect themselves from being so used by only permitting account or service access where the user's originating IP is unmistakeable. Technologies to recognise when Account Holders are using non-transparent proxies, and to block account or service access accordingly, should be implemented. |
| FWS004 |
"Other" Free Web-based Services should ensure that their Terms of Service include a strong antispam clause, prohibiting any action whether directly or indirectly using their services in the commission of spamming, including (to the extent relevant to the type of service being provided) but not limited to prohibiting:
- "spamvertising",
- being linked to from a "spamvertised" website
- promoting spamming services or distributing or encouraging spamming services or lists of email addresses
- linking to "spamware" or sites promoting "spamware"
with violation resulting in immediate account or service termination without further warning, barring the offender from future use of the service, and reporting of the violation and termination to the email and other service providers known or believed to be used by the offender.
|
| FWS005 |
"Other" Free Web-based Services, in their Privacy Statements, should reserve the right to pass on all information regarding breaches of their Terms of Service to any other service provider known or believed to be used by the offender. |
| FWS006 |
"Other" Free Web-based Services should take all steps possible to ensure that no email address (whether belonging to themselves or otherwise) appears on their website in a manner susceptible to harvesting by automated means. |
| FWS007 |
"Other" Free Web-based Services should not collect or collate email addresses of their users for potential future use beyond the immediate purpose for which such addresses may be given, other than from people who have knowingly and willingly subscribed, via either a confirmed-opt-in (sometimes referred to as 'double-opt-in') process or a paid subscription process. |
| FWS008 |
"Other" Free Web-Based Services should enable technology to prevent automated account registrations, ensuring that accounts opened can only possibly be humanly applied for or operated. |
| FWS009 |
|
| FWS010 |
|
| FWS011 |
|
| FWS012 |
|
|
|
|