What are the institutional and regulatory implications of this document?

1. REGULATORY LANDSCAPE: The AUP directly engages CAN-SPAM (FTC enforcement) and TCPA (FCC enforcement) for email and SMS messaging consent requirements in the United States, CASL for Canadian recipients, and GDPR (EU/EEA) and UK GDPR for European contacts. The policy's consent and list acquisition requirements align with but do not fully specify the mechanisms required under TCPA's express written consent standard for marketing SMS, which may create residual compliance exposure for platform us…

How does Klaviyo's Klaviyo Acceptable Use Policy affect users?

The agreement establishes binding conduct requirements for all businesses using Klaviyo's platform, including mandatory opt-in consent for all message recipients and prohibitions on purchased or rented contact lists. Under these terms, accounts found in violation of the AUP may be suspended or terminated by Klaviyo, with the policy reserving Klaviyo's right to make final determinations on compliance. You can review the full list of restricted industries and content categories at klaviyo.com/leg…

How often is Klaviyo's Klaviyo Acceptable Use Policy updated?

ConductAtlas monitors this document daily and captures every version with cryptographic hashing and timestamp verification. Update frequency varies — see the change timeline on this page for complete version history.

Can I get alerted when Klaviyo updates this document?

Yes. Monitor subscribers ($19/month) can add Klaviyo to their watchlist and receive same-day email alerts whenever this document or any other Klaviyo document changes.

CA-D-000891

Klaviyo Acceptable Use Policy

Klaviyo

Last change detected May 20, 2026 Acceptable use policy

SHA-256: 6c04452c039cf6b56bb… 1 version captured 0 changes documented

Create free account

Track 1 platform and get the weekly governance digest. No credit card required.

View original document at Klaviyo ↗

This page describes what the document states, permits, or reserves. It does not constitute a legal determination about enforceability. Regulatory applicability may vary by jurisdiction. Methodology

8 Total

2 High severity

4 Medium severity

2 Low severity

Summary

Klaviyo's Acceptable Use Policy sets out the rules for how businesses may use Klaviyo's email, SMS, and messaging platform, including what types of content, contact lists, and industries are permitted. The policy prohibits the use of purchased, rented, or scraped contact lists and bars messaging to recipients who have not explicitly opted in, with violations potentially resulting in account suspension or termination. The policy also identifies specific restricted industries, including cannabis, adult content, payday lending, firearms, and multi-level marketing, which require explicit written approval from Klaviyo before the platform may be used.

Technical / Legal Breakdown

This document is Klaviyo's Acceptable Use Policy (AUP), which governs how customers and users may use Klaviyo's marketing automation platform, including its email, SMS, WhatsApp, and related messaging services, and is incorporated by reference into Klaviyo's broader Terms of Service. The agreement states that users are prohibited from sending unsolicited messages, using purchased or rented contact lists, transmitting content that is deceptive, harassing, or illegal, and from using the platform for categories including adult content, firearms, cannabis, payday lending, and multi-level marketing without explicit written permission; the terms also authorize Klaviyo to suspend or terminate accounts that violate the policy, with or without notice. The policy's enumerated list of restricted content categories and industries creates operationally significant access conditions for businesses in regulated or sensitive verticals, and the terms assert Klaviyo's right to make final determinations on compliance, which may limit user recourse in account enforcement decisions. The AUP engages CAN-SPAM, TCPA, and CASL for messaging compliance, as well as GDPR and CCPA for data handling obligations referenced in related policies; enforcement exposure varies by jurisdiction, particularly for SMS marketing practices subject to TCPA in the United States and ePrivacy Directive requirements in the EU. Businesses operating in restricted categories or relying on third-party contact lists should evaluate their onboarding and list acquisition practices against the explicit prohibitions stated in this document.

Institutional Analysis

Institutional analysis available with Compliance

Regulatory exposure by statute, material risk assessment, vendor due diligence action items, and enforcement precedent. Available on Compliance.

Start Compliance free trial

High — 2 provisions

Prohibition on Purchased or Rented Contact Lists Compare →

The policy prohibits Klaviyo platform users from sending messages to any contact list that was purchased, rented, obtained through co-registration, or collected by any method other than direct and specific opt-in consent to receive communications from the account holder.

Added May 20, 2026 Common Seen across 154 platforms
Restricted Industry Categories Compare →

The policy designates specific industries and content categories as restricted, requiring businesses in those categories to obtain explicit written approval from Klaviyo before using the platform for any messaging campaigns.

Added May 20, 2026 Common Seen across 154 platforms

Medium — 4 provisions

Prohibition on Deceptive, Misleading, or Illegal Content Compare →

The policy prohibits the use of Klaviyo's platform to send content that is deceptive, fraudulent, misleading, or in violation of applicable law, including privacy, intellectual property, anti-spam, and consumer protection laws.

Added May 20, 2026 Common Seen across 154 platforms
Account Suspension and Termination Compare →

The policy authorizes Klaviyo to suspend or terminate any account, with or without prior notice, based on Klaviyo's sole determination that the account holder has violated the AUP or any related Klaviyo policy.

Added May 20, 2026 Common Seen across 173 platforms
Prohibition on Harassment and Unsolicited Messaging Compare →

The policy prohibits using Klaviyo's platform to send unsolicited commercial messages or to engage in harassment, intimidation, or abusive communications directed at individuals or groups.

Added May 20, 2026 Common Seen across 154 platforms
Requirement to Comply with Applicable Laws Compare →

The policy places full legal compliance responsibility on the account holder for all applicable federal, state, local, and international laws governing their use of the platform, including privacy, data protection, intellectual property, consumer protection, and commercial communications statutes.

Added May 20, 2026 Common Seen across 154 platforms

Low — 2 provisions

Prohibition on Illegal or Harmful Content Categories Compare →

The policy prohibits using the platform to transmit content that promotes illegal activities, incites violence, constitutes hate speech, or discriminates against individuals or groups based on enumerated protected characteristics.

Added May 20, 2026 Common Seen across 154 platforms
Prohibition on Security Circumvention and Abuse Compare →

The policy prohibits using Klaviyo's platform to disrupt platform infrastructure, transmit malicious code, or attempt unauthorized access to any platform component.

Added May 20, 2026 Common Seen across 154 platforms