Anti-Spam Policy

Skode Technologies Private Limited ("Skode," "we," "us," or "our"), a private limited company incorporated in India with registered office at Thirumangalath, Chelavur, Kozhikode – 673571, Kerala, India, is committed to preventing spam and maintaining the integrity of electronic communications sent through our platform. This Anti-Spam Policy applies to all communications sent using Skode CRM (transactional emails) and Skode Flow (email, SMS, WhatsApp, and other messaging channels when connected by the customer).

Your role vs. our role. You (the Skode customer) are the sender and data controller for any marketing or bulk communication that you send through Skode. Skode provides the platform; we are a data processor for Customer Data and an intermediary for the outbound messages you choose to send. You remain responsible for obtaining consent, honouring opt-outs, checking Do-Not-Contact registries, and complying with the anti-spam and data-protection laws of your jurisdiction and your recipients’ jurisdictions. Violations of this Policy by you may result in immediate suspension or termination of your account.

Skode’s own outbound email. Skode sends transactional and service emails to its customers (for example account notifications, invoices, password resets, and legal notices) from @skode.ai addresses via Zoho Mail (ZeptoMail). These emails identify Skode as the sender and include Skode’s registered postal address in Kerala, India as required by the US CAN-SPAM Act. Marketing emails from Skode include a one-click unsubscribe link.

This policy is incorporated into our Terms of Service, Acceptable Use Policy, Email Policy, SMS Compliance Policy, and WhatsApp Compliance Policy. Violations may result in immediate suspension or termination of your account.

1. Zero Tolerance for Spam

Skode maintains a zero-tolerance policy for spam. Spam includes any unsolicited commercial electronic message sent in bulk without the recipient's prior consent. This applies to all communication channels available through our platform, including but not limited to email, SMS, WhatsApp, Instagram DMs, and push notifications.

2. Consent and Opt-In Requirements

All communications sent through Skode must meet the following consent requirements:

2.1 Email Communications

Opt-In Required: You must obtain explicit, verifiable consent from recipients before sending marketing or promotional emails. Pre-checked consent boxes are not sufficient.
Double Opt-In Recommended: We strongly recommend implementing double opt-in (confirmation email) for all email marketing lists to ensure genuine consent.
Transactional Exceptions: Transactional emails (order confirmations, password resets, account notifications) do not require marketing consent but must be genuinely transactional in nature.
Records: You must maintain records of how and when consent was obtained for each recipient.

2.2 SMS Communications

Express Written Consent: SMS marketing requires express written consent from recipients in compliance with TCPA and applicable regulations. See our SMS Terms of Service.
Quiet Hours: Do not send marketing SMS messages before 8:00 AM or after 9:00 PM in the recipient's local time zone.

2.3 WhatsApp Communications

WhatsApp Business API Rules: All WhatsApp communications must comply with Meta's WhatsApp Business Policy and Commerce Policy.
Template Messages: Marketing messages must use pre-approved WhatsApp message templates. Templates must be submitted for approval before use.
24-Hour Window: Free-form messages are only permitted within 24 hours of the customer's last message. Outside this window, only approved template messages may be sent.
Opt-In: Recipients must have explicitly opted in to receive WhatsApp messages from your business.
Quality Rating: Maintain a high quality rating on your WhatsApp Business account. Low quality ratings may result in messaging limits or account restrictions imposed by Meta.

3. Required Message Elements

All commercial messages sent through Skode must include:

Sender Identification: Clear identification of the person or business sending the message.
Physical Address: A valid physical postal address for email communications (CAN-SPAM requirement).
Unsubscribe Mechanism: A clear, conspicuous, and functional mechanism for recipients to opt out of future messages. Opt-out requests must be honored within 10 business days.
Honest Subject Lines: Email subject lines must not be deceptive or misleading about the content of the message.

4. Regulatory Compliance

You are responsible for complying with all applicable anti-spam and messaging laws, including:

CAN-SPAM Act (USA): Requires commercial email to include identification, physical address, and opt-out mechanism.
GDPR (EU/EEA): Requires explicit consent for marketing communications and provides the right to withdraw consent at any time.
CASL (Canada): Requires express or implied consent, sender identification, and unsubscribe mechanism.
TCPA (USA): Regulates SMS and voice communications, requiring express written consent for marketing messages.
PECR (UK): Requires consent for electronic marketing and sets rules for cookies and similar technologies.
Indian IT Act, 2000 and IT Rules 2011: Regulate commercial electronic communications; intermediaries must honour the TRAI National Do Not Disturb (DND) / National Customer Preference Register (NCPR). Commercial SMS additionally requires registration on the TRAI DLT platform (see SMS Compliance Policy).
Indian Digital Personal Data Protection Act, 2023 (DPDPA): Requires a lawful basis for processing personal data, purpose-specific notice, honouring consent withdrawal, and respecting data principal rights.
Australian Spam Act 2003: Requires express or inferred consent for commercial electronic messages, sender identification, and a working unsubscribe mechanism. Penalties up to AUD 555,000.
CTIA Short Code Monitoring Handbook (USA): Operational rules for short-code SMS campaigns; industry self-regulatory best-practice guide. Applies when you use US short codes.
Meta WhatsApp Business Policies: The WhatsApp Business Messaging Policy and Commerce Policy apply to WhatsApp messaging in addition to local law. See our WhatsApp Compliance Policy.

5. Prohibited Practices

The following practices are strictly prohibited on the Skode platform:

Sending messages to purchased, rented, or scraped email/phone lists.
Harvesting email addresses or phone numbers from websites or public sources without consent.
Using false or misleading sender information, headers, or subject lines.
Sending messages to recipients who have opted out or unsubscribed.
Using the platform to distribute chain letters, pyramid schemes, or similar content.
Disguising the commercial nature of a message.
Using third-party email addresses or domains without proper authorization.
Sending messages with the primary purpose of driving traffic to third-party websites through deceptive means.

6. Enforcement and Consequences

Violations of this Anti-Spam Policy may result in:

Written warning and requirement to remedy the violation immediately.
Temporary suspension of messaging capabilities.
Permanent revocation of messaging privileges.
Account termination without refund.
Reporting to relevant authorities and law enforcement if required by law.

We actively monitor bounce rates, spam complaint rates, and unsubscribe rates. Accounts exceeding acceptable thresholds will be flagged for review. We reserve the right to suspend messaging capabilities immediately if we detect a spike in complaints or bounces.

7. Reporting Spam

If you receive spam or unsolicited messages sent through the Skode platform, please report it to us immediately:

Email: legal@skode.ai
Subject Line: "Spam Report"

Please include the full message headers, the content of the message, and the date and time it was received. We will investigate all reports promptly and take appropriate action.

8. Changes to This Policy

We may update this Anti-Spam Policy from time to time. Changes will be posted on this page with an updated effective date. Continued use of the Services constitutes acceptance of the updated policy.