The Seven Things The FTC Thinks You Need To Know About The CAN-SPAM Act.
If you use e-mail as advertising, you could be subject to the CAN-SPAM Act. The FTC wants you to know how to comply. Give it a look:
Red Flag Rule Appears In Your Town June 1
Although not strictly a technology related matter, all business and organizations that provide products and services to their customers and then bill them later should be aware that the Federal Trade Commission has a “Red Flag” rule that goes into effect (after several delays) on June 1, 2010. 
You should first determine if your business is covered by this rule. If your business is covered, this rule provides that you must implement a written Identity Theft Prevention Program that is designed to detect the warning signs (hence “Red Flags”) of identity theft.
A copy of the rule may be found here. However, a shorter, more user friendly version may be found here. Businesses that are at low risk for identity theft (e.g. you know your client individually, such as a neighborhood medical practice; you provide services around the home, such as a cleaning or lawn service; or your business has a low incident of identity theft) may implement a do-it-yourself program by following a FTC approved template that can be found here.
There is no private right of action under the rule (i.e. your customers may not sue you under the rule), however, they could complain to the FTC and the FTC can seek civil penalties (up to $3,500 per violation) and injunctive relief.
