A Google Ads specialist today raised a public compliance complaint on LinkedIn, alleging that Google sales representatives are sending unsolicited commercial emails to advertisers without including a functioning opt-out mechanism – a requirement that has been mandatory under US federal law since 2003.
Emmanuel Flossie, a Google Shopping Specialist and Google Ads Diamond Product Expert, directed the post at Ginny Marvin, Google’s Ads Product Liaison, requesting that the company address what he described as a “serious compliance concern affecting many Google Ads advertisers.” The post, which gathered four reactions and visible engagement from the advertising community, lays out a detailed legal argument rooted in the CAN-SPAM Act of 2003 and the Federal Trade Commission’s accompanying enforcement framework.
What the CAN-SPAM Act actually requires
The CAN-SPAM Act – whose full name is the Controlling the Assault of Non-Solicited Pornography And Marketing Act – was signed into law in 2003 and remains the primary federal statute governing commercial email in the United States. Enforced by the FTC, it applies to all commercial messages, which the law defines as any electronic mail message whose primary purpose is the commercial advertisement or promotion of a commercial product or service.
One of the most consequential aspects of the statute is that it makes no exception for business-to-business communications. According to the FTC’s compliance guidance, “the law makes no exception for business-to-business email. That means all email – for example, a message to former customers announcing a new product line – must comply with the law.” That framing is directly relevant to the Flossie allegation, since emails from Google sales representatives to advertisers are, by definition, B2B communications promoting a commercial platform.
The law establishes eight principal requirements. Senders must use accurate header information in the “From,” “To,” and “Reply-To” fields. Subject lines must accurately reflect the content of the message. The message must identify itself as an advertisement. The sender’s valid physical postal address must appear in the message. Crucially, every commercial email must include a clear and conspicuous explanation of how the recipient can opt out of future marketing emails. According to the FTC’s guidance, that opt-out notice must be “easy for an ordinary person to recognize, read, and understand.”
The opt-out mechanism itself carries specific technical obligations. It must remain functional for at least 30 days after the message is sent. Once a recipient submits an opt-out request, the sender must honor it within 10 business days. The sender cannot charge a fee for opting out, cannot require the recipient to provide personally identifying information beyond an email address, and cannot require any step beyond sending a reply email or visiting a single page on a website. After someone opts out, the sender cannot sell or transfer that person’s email address, with the sole exception being a company engaged specifically to help with CAN-SPAM compliance.
The financial stakes
The penalty exposure is substantial. According to the FTC’s compliance guidance, each separate email in violation of the CAN-SPAM Act is subject to penalties of up to $53,088 – a figure that was updated in January 2024 to reflect inflation-adjusted civil penalty maximums. More than one party can be held liable for violations in a single email. Both the company whose product is promoted in the message and the company that actually sends the message may be held legally responsible.
Flossie cited this figure directly in his post. “Each individual email in violation carries penalties of up to $53,088 (FTC, 2024),” he wrote, before adding a point that carries particular weight given Google’s practice of using third-party contractors for sales outreach: “Critically, businesses are legally responsible for the compliance of third parties acting on their behalf. That means Google is accountable for its reps’ outreach.”
The FTC’s guidance confirms this principle. It states explicitly that “even if you hire another company to handle your email marketing, you can’t contract away your legal responsibility to comply with the law.” The use of subcontractors does not insulate the principal company from enforcement.
The third-party contractor dimension
That last point is not a minor legal technicality in the Google Ads context. As PPC Land has documented extensively, many of the individuals operating as Google Ads representatives are not direct Google employees but rather contractors working for third-party companies, often communicating through google.com email addresses. In the October 2024 unauthorized account changes incident, Thomas Eccel, a former Google employee, documented that a Google Ads Campaign Specialist for the UK and Ireland market was employed by a third-party subcontractor. Ginny Marvin confirmed Google was investigating the matter.
A subsequent November 2024 meeting of 50 PPC agency leaders organized by Ian Harris documented a systematic pattern of interference, with representatives contacting clients directly and making unauthorized changes to accounts. The contractor layer complicates accountability at every level – but the CAN-SPAM Act’s language on third-party responsibility was written precisely to address situations like this one. The statute does not care whether a rep is a direct employee or an outsourced agent: the company whose service is being promoted bears the compliance obligation.
Flossie’s LinkedIn post went further than the legal framing. He described concrete operational consequences for advertisers: “Beyond the legal exposure, the operational damage is real. I routinely pick up the pieces after clients’ accounts have been mismanaged following unsolicited Rep contact, restructured campaigns, wasted spend, lost performance. It’s a pattern that can’t continue.”
How primary purpose is determined
The CAN-SPAM Act’s scope turns on what the FTC calls the “primary purpose” test. An email can contain three categories of content: commercial content that advertises or promotes a product or service; transactional or relationship content that facilitates an already agreed-upon transaction; and other content that fits neither category. The law treats these categories narrowly. If the message’s primary purpose is commercial – meaning a recipient reasonably interpreting the subject line would conclude the message promotes a product or service – the full requirements of CAN-SPAM apply.
Sales outreach from Google representatives promoting advertising spend, recommending campaign changes, or encouraging account reviews would almost certainly fall on the commercial side of that line. Such messages are not facilitating a previously agreed-upon transaction. They are, as the FTC’s guidance puts it, the kind of proactive commercial outreach that “must comply with the law” regardless of the existing relationship between the sender and the recipient.
The FTC’s guidance provides two illustrative examples of how this works in practice. A message from a distributor about an account statement – where transactional content appears at the beginning and a brief promotional note appears at the end – is most likely a transactional message exempt from CAN-SPAM’s marketing requirements. But a message where the commercial content leads and the transactional content appears at the end is a commercial message subject to all requirements, even if the subject line reads “Your Account Statement.”
Applied to Google Ads representative outreach, messages focused on encouraging spend increases, pitch new ad products, or recommend structural changes to campaigns would fit squarely within the commercial category.
What opt-out compliance actually looks like
The FTC’s compliance guidance describes specific conditions for a valid opt-out mechanism. It must give the recipient a return email address or another easy internet-based method for communicating their preference. Senders may offer a menu that lets recipients opt out of specific message types, but the option to stop all marketing messages from the sender must always be present.
Critically, if a company’s spam filter blocks opt-out requests from recipients, the sender remains in violation of the law – even if the technical mechanism exists on paper. Once opt-out requests are received, they cannot be ignored or deferred. The 10 business day window for honoring them is firm.
For companies sending at scale through sales organizations, this creates an infrastructure requirement. Each representative or each team sending commercial messages needs a system that captures opt-out signals, routes them correctly, removes opt-out recipients from future lists, and prevents their addresses from being sold or transferred. There is no exception for outreach conducted by a regional sales team, a quota-carrying account manager, or a contractor working through a third-party firm.
Industry-wide frustration, not an isolated complaint
Flossie was explicit that his concern extends beyond a single incident. “I’m not alone in this,” he wrote. “This is an industry-wide frustration.” That framing aligns with a broader body of documented dissatisfaction with Google Ads representative practices. The Google Ads support form incident documented by PPC Land in February 2026 revealed a separate but related dimension of the representative-advertiser relationship: a standard support contact form contained an authorization checkbox that, when selected, permitted a Google Ads specialist to make direct changes to an advertiser’s account without any further confirmation step.
The pattern of unsolicited contact has also been documented in a different legal context. In April 2025, PPC Land reported that Google sent emails to small business owners encouraging them to oppose California’s Assembly Bill 566, a privacy bill that would require browsers and mobile operating systems to offer built-in opt-out settings. Marketing professionals including Navah Hopkins of Optmyzr publicly rejected the outreach and criticized Google’s tactics, raising similar questions about how the company uses its direct communication channels with advertisers.
Email compliance in the digital advertising space is not a niche concern. Gmail introduced a subscription management feature in July 2025 that provides users with a centralized view of active email subscriptions, ranked by sender frequency, with one-click unsubscribe options. The feature’s introduction reflected the scale of the problem it addressed: Gmail already blocks over 99.9% of spam, phishing, and malware attempts, yet legitimate but unwanted commercial email – including from companies with which users already have a relationship – remained a persistent inbox management challenge.
Google’s accountability posture under scrutiny
Flossie closed his post with a direct question: “What is Google doing to ensure its Reps meet CAN-SPAM requirements?” No public response from Ginny Marvin or any Google representative appeared in the documented thread, which showed four reactions at the time of writing.
The question sits within a company-wide accountability debate that has intensified over the past two years. Google has faced documented criticism for unauthorized account changes by representatives, for a support form that obscures the scope of access it grants, and for a sales culture that agency leaders described as systematically adversarial in a November 2024 gathering of 50 PPC agency leaders. The CAN-SPAM allegation adds a federal statutory dimension to a set of concerns that had previously been framed primarily in terms of business conduct and platform policy.
Flossie’s framing was pointed but legally grounded: “Google is a global leader in digital advertising. Compliance with a 20-year-old federal law shouldn’t be optional.”
The advertising industry operates in an environment of expanding compliance obligations. US state privacy laws, the EU Digital Markets Act, and a series of Google’s own advertiser verification requirements have all increased the administrative burden on marketing teams. The CAN-SPAM allegation introduces a risk vector that runs in the opposite direction: not the compliance demands that advertisers must meet, but the compliance failures of the platforms that sell to them.
If accurate, the allegation means that advertisers receiving unsolicited emails from Google representatives have been denied a legal right – the right to opt out – that has existed since 2003. It also means that Google, in sending those emails through its representatives or contractors, has accumulated potential liability at $53,088 per email, multiplied across a global advertiser base that runs into the millions.
The FTC enforces the CAN-SPAM Act through civil penalties and, in aggravated cases, criminal referrals. Civil penalties can also include redress to affected parties under Section 19 of the FTC Act, covering not only direct financial harm but also the value of lost time. For advertisers who have spent time managing unrequested outreach – reviewing pitch emails, fielding phone calls prompted by those emails, or responding to account change recommendations made without invitation – the statute’s language on lost-time redress is not hypothetical.
Whether the FTC has received or intends to investigate complaints along these lines is not publicly known. What is clear is that one prominent Google Ads specialist – whose previous policy compliance warnings have been documented by PPC Land, including a December 2025 video warning about Google Shopping product duplication violations – has now placed the question directly in front of Google’s public-facing ads liaison.
Timeline
- 2003 – The CAN-SPAM Act is signed into law in the United States, establishing federal requirements for commercial email including mandatory opt-out mechanisms for all commercial messages, including B2B outreach.
- January 2024 – The FTC updates its civil penalty maximums to $53,088 per individual email violation, reflecting inflation-adjusted figures under the CAN-SPAM Act.
- October 15, 2024 – A Google Ads Campaign Specialist for the UK and Ireland makes unauthorized changes to a client account without permission, prompting a documented response from Ginny Marvin and raising broader questions about representative conduct.
- November 2024 – A meeting of 50 PPC agency leaders documents systematic concerns about Google representative interference in client accounts and adversarial outreach patterns.
- December 6, 2025 – Emmanuel Flossie publishes a video warning about Google Shopping product duplication tactics that violate Google’s abuse of ad network policy, establishing his role as a public-facing compliance voice within the Google Ads ecosystem.
- February 24, 2026 – PPC Land reports on a Google Ads support form containing an authorization checkbox granting account access to specialists without a separate confirmation step, adding to documented concerns about representative access and advertiser consent.
- May 11, 2026 – Emmanuel Flossie posts on LinkedIn alleging that Google Ads representatives send unsolicited commercial emails to advertisers without a compliant opt-out mechanism, citing CAN-SPAM Act penalties of up to $53,088 per email and directing the concern at Google’s Ads Product Liaison, Ginny Marvin.
Summary
Who: Emmanuel Flossie, a Google Shopping Specialist and Google Ads Diamond Product Expert, raised the compliance allegation. Google Ads representatives – including third-party contractors operating through google.com addresses – are the subject of the claim. Ginny Marvin, Google’s Ads Product Liaison, was directly addressed in the post.
What: Flossie alleged that Google Ads representatives send unsolicited commercial emails to advertisers without a compliant opt-out mechanism, in violation of the CAN-SPAM Act of 2003. The law requires all commercial email – including B2B outreach – to include a clear opt-out option, honored within 10 business days, with no fees or additional steps imposed on recipients.
When: Flossie published the LinkedIn post today, May 11, 2026. The CAN-SPAM Act has been in force since 2003, and the FTC updated its per-email penalty ceiling to $53,088 in January 2024.
Where: The allegation was made publicly on LinkedIn, directed at Google’s Ads Product Liaison. The underlying legal framework is US federal law, enforced by the FTC. The practice described – unsolicited sales outreach from Google representatives to advertisers – operates across Google’s global advertiser base, though the CAN-SPAM Act applies specifically to messages directed at recipients in the United States.
Why: Flossie described the concern as both legal and operational. On the legal side, each email in violation carries a potential penalty of up to $53,088, with Google liable for the actions of third-party contractors sending emails on its behalf. On the operational side, he documented that unsolicited representative contact has led to restructured campaigns, wasted ad spend, and degraded account performance for clients he manages. His post frames the issue as an industry-wide pattern rather than an isolated incident.
Share this article
The link has been copied!
