SENDING POLICY

This Sending Policy governs all outbound email transmitted through ColdMsg. It is incorporated into and forms part of the Terms of Service . Violation of this policy is a material breach of the Terms and may result in immediate suspension or termination without notice. ColdMsg may update this policy from time to time without re-issuing the Terms; the effective date above reflects the current version.

1. PERMITTED SENDING

You may send only outbound communications that fall within the Permitted Purpose defined in the Terms — legitimate business-to-business investor outreach by a founder, operator, or authorised representative of an operating company or fund seeking capital. Every recipient must be selected for a specific, contextual reason connected to that purpose.

2. PROHIBITED CONTENT

You may not send messages that:

• offer or sell securities, or solicit any offer to buy securities, except in compliance with the securities-law section of the Terms (no general solicitation under Rule 506(b); no specific offering terms; no invitation to commit capital to a current offering);
• promote consumer products or services, multi-level-marketing schemes, gambling, adult content, illegal goods or services, weapons, controlled substances, fake credentials, or "get-rich-quick" offerings;
• are deceptive, harassing, defamatory, fraudulent, infringing, or harmful to minors;
• impersonate any person, fund, accelerator, or organisation, or misrepresent your affiliation, role, or stage of fundraising;
• use false, misleading, or deceptive subject lines, sender names, "Re:" or "Fwd:" prefixes on cold messages, or fabricated thread history;
• contain malware, phishing payloads, credential-harvesting links, or shortened URLs that obscure the destination.

3. PROHIBITED LIST SOURCES

You may not import, upload, or send to recipient lists obtained from:

• purchased, rented, or third-party "lead lists" sold as commodities;
• breached, leaked, or unlawfully disclosed datasets;
• scraped consumer profiles, scraped social-media data outside professional B2B contexts, or scraping that violates the source platform's terms;
• contact databases sourced without a documented lawful basis under the laws applicable to you and to the recipient;
• addresses obtained via dictionary attack, harvested from web pages with no professional context, or generated programmatically.

Investor records selected from the ColdMsg investor database are provided for your convenience and reflect ColdMsg's own legitimate-interest assessment as an independent controller. ColdMsg's selection of an investor does not, by itself, establish your lawful basis to contact that recipient; you must independently determine that contacting the recipient is lawful in your jurisdiction.

4. MANDATORY MESSAGE ELEMENTS

Every outbound message sent through ColdMsg includes:

• accurate sender identification matching the verified sender mailbox;
• a working opt-out mechanism — recipients may reply with words such as "unsubscribe", "remove", or "stop", which ColdMsg parses and applies as global suppression;
• a postal mailing address for the sender (required by CAN-SPAM § 5);
• an RFC 8058 List-Unsubscribe header with one-click POST support, so recipient mail clients can present a one-click opt-out.

You authorise ColdMsg to inject and maintain these compliance elements on every message and you may not remove, obscure, or alter them. Attempting to bypass or strip them is a material breach of these Terms.

5. SUPPRESSION

ColdMsg maintains a global suppression list. Once a recipient is suppressed — by reply, header click, written request to abuse@coldmsg.com or investors@coldmsg.com, hard bounce, complaint, or platform-level abuse signal — that address will not be contacted again from any ColdMsg account. Suppression entries are retained as one-way hashes after the underlying record's deletion window so that erasure rights are honoured without losing the opt-out signal.

6. DELIVERABILITY THRESHOLDS

ColdMsg automatically pauses campaigns that exceed any of the following thresholds, in line with our upstream provider (Mailgun) policies:

• hard bounce rate above 5% over any rolling 1,000-message window;
• spam complaint rate above 0.3% over any rolling 1,000-message window;
• unsubscribe rate above 2% over any rolling 1,000-message window;
• spam-trap hits, blocklist listings, or upstream provider abuse notices on any sending mailbox or domain.

Paused campaigns require account-holder review before resuming. Repeated breaches may result in mailbox suspension, sending-domain revocation, or account termination. Sustained high-volume sending requires a sending subdomain you control; reputation on that subdomain remains with you.

7. SHARED SENDING DOMAIN

Free and trial plans send from a shared sending domain (mg.coldmsg.com) operated by ColdMsg. ColdMsg manages reputation, rate limits, and authentication for the shared domain and may impose volume caps, recipient caps, content checks, and pre-launch safety thresholds. ColdMsg may pause, suspend, or remove campaigns that put the shared domain's deliverability reputation at risk, with or without notice. For sustained sending we require you to connect a sending subdomain you control.

8. RATE LIMITS

ColdMsg enforces per-mailbox, per-account, and per-shared-domain rate limits to protect deliverability and abide by upstream provider quotas. Exact limits depend on plan, mailbox warmup status, and infrastructure load and are surfaced in-product. You may not attempt to bypass rate limits by rotating mailboxes, multiplying accounts, or splitting one logical campaign across multiple accounts.

9. ABUSE REPORTS

Recipients, mail providers, and third parties may report abuse to abuse@coldmsg.com. ColdMsg investigates every report and may suspend campaigns, mailboxes, or accounts pending investigation. Cooperation with abuse-report investigation is mandatory and a precondition for continued use of the service.

10. ENFORCEMENT

Violation of this Sending Policy is a material breach of the Terms of Service. ColdMsg may, at its discretion and without notice: pause individual campaigns, suspend mailboxes, revoke sending-domain access, suspend the account, terminate the agreement, retain fees paid, and report violations to law enforcement, mail providers, blocklist operators, or applicable regulators. ColdMsg's enforcement actions do not waive any other right or remedy.

11. CONTACT

Abuse reports: abuse@coldmsg.com
Policy questions: legal@coldmsg.com
Investor opt-outs: investors@coldmsg.com