Which regulatory agencies enforce this type of clause?

{'agency': 'FTC', 'reason': 'FTC enforces the CAN-SPAM Act against commercial email senders including merchants using platform email tools like Shopify Email', 'complaint_url': 'https://reportfraud.ftc.gov/'}, {'agency': 'State_AG', 'reason': 'State attorneys general enforce state anti-spam statutes and TCPA violations by online merchants, including those operating through Shopify', 'complaint_url': 'https://www.naag.org/find-my-ag/'}

What is the severity of this clause?

ConductAtlas classifies this Spam, Unsolicited Communications, and Harassment Prohibition clause as medium severity. Severity reflects the magnitude of rights affected, the breadth of users impacted, and the degree of discretion the platform retains.

Spam, Unsolicited Communications, and Harassment Prohibition — Shopify

Share 𝕏 Share in Share 🔒 PDF

What it is

Merchants cannot use Shopify's marketing tools to send unwanted bulk messages or emails to people who haven't agreed to receive them, and cannot use the platform to harass anyone.

Consumer impact (what this means for users)

This clause protects consumers from receiving unwanted marketing emails or messages from Shopify merchants who use the platform's built-in communication tools, though enforcement depends on Shopify's internal monitoring rather than direct consumer complaint mechanisms.

How other platforms handle this

Salesforce Medium

Apple Medium

You must be at least 13 years old to use the Services. Apple's Family Sharing feature allows a family organizer to share purchases, subscriptions, and Apple services with up to five family members. The family organizer is responsible for all purchases made by family members under the age of 18.

Anthropic Medium

You must be at least 18 years old or the minimum age required to consent to use the Services in your location, whichever is higher.

See all platforms with this clause type →

Need full compliance memos? See Professional →

Why it matters (compliance & risk perspective)

This provision is operationally significant for merchants using Shopify Email or marketing automation, as what constitutes 'opt-in' is not defined in the AUP and may be applied more strictly than CAN-SPAM's opt-out standard.

View original clause language

You may not use Shopify's Services to send spam, unsolicited communications, or engage in harassment of any person. This includes using Shopify's email or messaging tools to send bulk unsolicited messages to consumers who have not opted in to receive communications from you.

Institutional analysis (Compliance & legal intelligence)

(1) REGULATORY FRAMEWORK: This provision engages the CAN-SPAM Act (15 U.S.C. § 7701 et seq.) which sets federal standards for commercial email including opt-out requirements; the TCPA (47 U.S.C. § 227) for text message and automated call marketing with prior express written consent requirements; GDPR Article 6 and Recital 47 for EU consumers requiring affirmative consent (opt-in) for direct marketing; CASL (Canada's Anti-Spam Legislation) for Canadian recipients requiring express or implied consent; and applicable state laws including California's anti-spam statute (Bus. & Prof. Code § 17529). FTC enforces CAN-SPAM; FCC enforces TCPA; EU supervisory authorities enforce GDPR. (2)

🔒

Compliance intelligence locked

Regulatory citations, enforcement risk, and due diligence action items.

Watcher $9.99/mo Professional $149/mo

Watcher: regulatory citations. Professional: full compliance memo.

Applicable agencies

FTC

FTC enforces the CAN-SPAM Act against commercial email senders including merchants using platform email tools like Shopify Email
File a complaint →
State AG

State attorneys general enforce state anti-spam statutes and TCPA violations by online merchants, including those operating through Shopify
File a complaint →

Applicable regulations

CFAA

United States Federal

DMCA

United States Federal

DSA

European Union

Provision details

Document information

Document

Shopify Acceptable Use Policy

Entity

Shopify

Document last updated

March 24, 2026

Tracking information

First tracked

March 15, 2026

Last verified

April 10, 2026

Record ID

CA-P-002658

Document ID

CA-D-00124

Evidence Provenance

Source URL

https://www.shopify.com/legal/aup

Wayback Machine

View archived versions →

SHA-256

c3d037196ffbb1471c40eb696d0527749e9581d33970cdd9620dc96a8e8dfbdb

Verified

✓ Snapshot stored ✓ Change verified

How to Cite

ConductAtlas Policy Archive
Entity: Shopify | Document: Shopify Acceptable Use Policy | Record: CA-P-002658
Captured: 2026-03-15 12:02:55 UTC | SHA-256: c3d037196ffbb147…
URL: https://conductatlas.com/platform/shopify/shopify-acceptable-use-policy/spam-unsolicited-communications-and-harassment-prohibition/
Accessed: April 29, 2026

Classification

Severity

Medium

Spam, Unsolicited Communications, and Harassment Prohibition