Skip to content

Compliance

Manage email compliance to protect your sender reputation and respect recipient preferences.

Global Suppression List

The global suppression list prevents emails from being sent to addresses that have opted out, bounced, or filed complaints.

Automatic Additions

Addresses are automatically added when:

  • A recipient clicks an unsubscribe link
  • An email hard-bounces (invalid address)
  • A recipient marks your email as spam
  • You manually add an address

Viewing the List

  1. Go to Settings → Compliance
  2. Browse or search the suppression list
  3. Filter by reason (opt-out, bounce, complaint, manual)

Manual Management

  • Add — enter an email address to suppress
  • Remove — remove an address to re-enable sending (use with caution)
  • Import — upload a CSV of addresses to suppress
  • Export — download the full suppression list

Removing a previously opted-out address may violate email regulations. Only remove addresses if you have explicit, documented consent.

DNC (Do Not Contact)

The Do Not Contact list goes beyond email — it prevents all outreach channels (email, phone, SMS) from reaching specified contacts.

Adding to DNC

Contacts are added to DNC when:

  • An SDR marks a call disposition as “DNC”
  • You manually add a contact or domain
  • A contact requests removal through any channel

DNC by Domain

Block all contacts at a specific company:

  1. Go to Settings → Compliance → DNC
  2. Click Add Domain
  3. Enter the domain (e.g., company.com)
  4. All contacts with emails at that domain are suppressed

Unsubscribe Handling

One-Click Unsubscribe

graph8 automatically includes a one-click unsubscribe mechanism in outbound emails. This meets requirements from Gmail and Yahoo for bulk senders.

Customize the unsubscribe link in your email templates:

  • Link text — the visible text (default: “Unsubscribe”)
  • Landing page — optional custom unsubscribe confirmation page

Processing

When a recipient unsubscribes:

  1. Their address is added to the global suppression list
  2. They’re removed from all active sequences
  3. Future sends to this address are blocked
  4. The unsubscribe is logged in the compliance audit trail

Compliance Rules

CAN-SPAM

graph8 helps you comply with CAN-SPAM requirements:

  • Physical mailing address included in emails
  • Clear identification of the message as an advertisement (when applicable)
  • Unsubscribe mechanism in every commercial email
  • Opt-out requests honored within 10 business days

GDPR

For contacts in the EU:

  • Lawful basis for processing (legitimate interest for B2B outreach)
  • Right to erasure — delete contact data on request
  • Data portability — export contact data on request
  • Record of processing activities

Audit Trail

Every compliance-related action is logged:

  • Suppression additions and removals
  • Unsubscribe events
  • DNC additions
  • Compliance setting changes
  • Who made the change and when

Access the audit trail from Settings → Compliance → Audit Log.

Frequently Asked Questions

Can I send to someone who previously unsubscribed if they re-opt in?

Yes, but only with explicit, documented consent. Remove them from the suppression list and keep a record of their re-opt-in.

What’s the difference between suppression and DNC?

The suppression list blocks email only. DNC blocks all channels — email, phone, SMS, and LinkedIn outreach.

Are bounce removals automatic?

Hard bounces are automatically suppressed. Soft bounces are retried for a period before being added to the suppression list.

How do I handle a GDPR data deletion request?

Delete the contact record and all associated activity data. The deletion is logged in the audit trail.

Tip: Review your suppression list monthly to keep it clean and avoid accidental sends.