Advisory mode
During the pilot, all compliance events require human validation. Legal approval is required to mark an event as resolved or risk accepted.
Opt-Out Language Noncompliant: Marketing Emails
Days Open
1d
Customers
41,500
Exposure
$0.4M
Business Unit
Marketing
SLA
Ack 240m · Resolve 10d
What Changed
CAN-SPAM opt-out wording changed in email template library
Affected Asset
Last changed 2026-05-01 by James Okafor
What Broke
Regulation
CAN-SPAM Act: 2023 Clarity Update
Section
CFPB-2026-04 Section 4.2(b)
Obligations breached
Owner
Compliance Analyst / Marketing & Digital
Business Unit
Marketing
Risk score: 22
Remediation Actions (0/5)
System Actions
Compliance event created
6/1/2026, 10:50:30 PM
Draft resolution package generated
6/1/2026, 10:50:30 PM
SLA started
Ack 240m, resolve 10d
Owner notified (Slack and email)
6/1/2026, 10:50:30 PM
Task created in system of record
Simulated ServiceNow or OneTrust ticket
Post-resolution baseline updated
Not applicable
Acknowledgment status
Overdue
Draft Resolution Package
What broke and why
CAN-SPAM-2023 Section 7(a)(3) obligation may no longer be satisfied.
This event was generated because a monitored enterprise asset changed after validation. The obligation-to-asset relationship must be revalidated and evidenced.
Draft compliant version
Draft remediation: restore the last validated compliant state, route for legal review if required, then attach updated evidence and record approvals.
Draft only. Human review and legal sign-off required.
Evidence Checklist
Audit Trail
Compliance Event created: Drift detected
System · 6/1/2026, 10:50:30 PM
Draft resolution package generated
System · 6/1/2026, 10:50:30 PM
SLA countdown started
System · 6/1/2026, 10:50:30 PM
Notifications sent (Slack + email simulated)
System · 6/1/2026, 10:50:30 PM
Ticket created in system of record (simulated)
System · 6/1/2026, 10:50:30 PM