ESHB 2274
SignedHouse
Commercial electronic mail
Modifying the Washington commercial electronic mail act.
How does a bill become law?
- Introduced: The bill is filed and assigned a number.
- Committee: A subject-matter committee holds hearings, takes public testimony, and decides whether to advance the bill.
- Floor Vote: The full chamber (House or Senate) debates and votes on the bill.
- Opposite Chamber: The bill repeats the committee and floor vote process in the other chamber.
- Governor: The Governor reviews the bill and decides whether to sign or veto it.
- Signed: The bill has been signed into law.
AI Analysis
This bill tightens rules against deceptive commercial email practices in Washington by banning misleading sender identification and misleading subject lines, and increases civil penalties for violations. It also clarifies when violations constitute unfair or deceptive practices under the state’s consumer protection law — except for the new sender-identification rules.
- Prohibits sending commercial emails from Washington (or to Washington residents) that misrepresent the sender’s identity or origin — including using someone else’s domain name without permission or hiding transmission details.
- Bars commercial emails with misleading subject lines — specifically, subject lines that the sender knows (or reasonably should know) would mislead recipients about a fact important to the transaction, and that actually influenced the recipient’s decision.
- Increases damages for harmed recipients from $250 to $500 (or actual damages, whichever is greater) for violations of the law.
- Increases damages for interactive computer services (like email providers) from $500 to $1,000 (or actual damages, whichever is greater) when harmed by violations.
- Removes the separate offense of 'unpermitted or misleading electronic mail' and incorporates its protections into the updated definition of violations under the law.
Who is affected
- Washington residents who receive commercial electronic messages — People who receive unsolicited commercial emails or text messages in Washington may be protected from deceptive practices and may be eligible for compensation if they suffer harm from violations.
- Businesses sending commercial electronic messages — Businesses sending commercial emails or text messages must ensure their messages comply with new rules about accurate sender identification and subject lines.
- Interactive computer services (e.g., email providers, internet platforms) — Email and internet service providers may be protected from liability and may recover damages if their systems are harmed by violations of the law.
- State and local consumer protection enforcers (e.g., Attorney General, county prosecutors) — State and local enforcement agencies can use consumer protection laws to address violations, especially where deceptive practices affect the public.
Pro/Con Analysis
Stronger case for benefits
Potential Benefits (4)
Bars commercial emails with misleading subject lines that actually influence recipients’ decisions — directly protecting consumers from deceptive practices that undermine informed consent and autonomy in digital spaces.
Rights & LibertiesPeopleRef: Sec. 1(1)(b); Sec. 2(1)Raises civil damages to $500 (or actual) for harmed recipients and $1,000 for email providers — providing meaningful compensation to individuals and infrastructure providers harmed by deceptive emails, and strengthening deterrence against bad actors.
FinancialPeopleRef: Sec. 2(1) & (2); Sec. 1(1)(a)Prohibits spoofing or misrepresenting sender identity (e.g., using another domain without permission), reducing phishing and fraud risks that disproportionately target vulnerable populations like seniors and low-income residents.
Public SafetyPeopleRef: Sec. 1(1)(a); Sec. 3(1)Makes violations of subject-line deception (but *not* sender-identification rules) actionable under the Consumer Protection Act, enabling broader enforcement and injunctive relief against deceptive email practices affecting the public interest.
Public SafetyPeopleRef: Sec. 3(1)
Potential Concerns (3)
Increases civil damages for violations from $250 to $500 (or actual damages) for recipients, which could incentivize frivolous lawsuits or class actions targeting small businesses that unintentionally misstate sender info or subject lines — especially those lacking legal compliance resources.
FinancialPeopleRef: Sec. 1(1)(a) & (b); Sec. 2(1)By excluding sender-identification violations (Sec. 1) from being treated as unfair/deceptive practices under the Consumer Protection Act (RCW 19.86), the bill weakens enforcement tools for AG and prosecutors, reducing their ability to pursue systemic or large-scale deceptive email campaigns — limiting deterrence and public protection.
Public SafetyLean peopleRef: Sec. 3(2) (exemption for RCW 19.190.020 violations from consumer protection act enforcement)The retroactive application (Sec. 4) to causes of action commenced on or after the effective date—even if the conduct occurred earlier—creates legal uncertainty for businesses that may face liability for past emails, potentially exposing small businesses to unexpected liability without clear guidance on what constitutes “reasonable” knowledge or materiality.
Business & EmploymentPeopleRef: Sec. 1(1)(a) & (b); Sec. 4 (retroactivity clause)
Who Is Most Affected
Low- and middle-income Washington residents who receive unsolicited commercial emails benefit significantly from stronger protections against deceptive sender ID and misleading subject lines, especially those vulnerable to phishing or financial scams. They gain both legal recourse and reduced exposure to fraud.
Small businesses sending commercial emails face increased compliance burdens and liability risk — especially if they lack legal counsel or use third-party marketing tools. However, they also benefit from reduced email fraud that harms their own customers and brand reputation.
Email providers and platforms gain stronger statutory damages ($1,000 per violation) for system harm, improving their ability to recover costs from spam or spoofing attacks — but they may face increased litigation exposure if they fail to monitor senders.
State and local enforcers gain stronger tools to pursue deceptive subject-line violations under the Consumer Protection Act, but lose the ability to use that same law for sender-identification violations — creating an enforcement gap for certain types of fraud.
Large email marketing firms and ad-tech companies may absorb compliance costs more easily than small businesses, potentially consolidating market power — but they also benefit from reduced fraud that undermines digital ad trust.