The Click-to-Cancel Era: Why Churn Prediction Is Your Best Compliance Strategy
With the FTC reviving click-to-cancel rules and New York City proposing the first municipal-level cancellation regulation, SaaS companies need a new approach to retention — one that doesn't rely on hiding the cancel button.
The regulatory pendulum on subscription cancellations just swung hard — and SaaS companies still making it hard to cancel are going to feel it first.
In the last two weeks alone: the FTC revived its click-to-cancel rule after a court vacated the original version. New York City proposed the first municipal-level cancellation regulation, requiring "a simple mechanism to cancel" for any service sold with automatic renewal. And Shutterstock agreed to a $35 million settlement over its subscription renewal practices — the kind of number that makes every SaaS boardroom sit up.
The message is clear: the era of making cancellation friction a retention strategy is ending.
What's Actually Changing?
Three events in rapid succession tell the story:
**Shutterstock ($35M settlement — May 2026).** New York Attorney General Letitia James announced one of the largest subscription renewal settlements ever. Shutterstock was accused of auto-renewing subscriptions without clear disclosure, making cancellation difficult, and billing customers who thought they'd ended their service. The $35 million figure — including $27 million in refunds to over 380,000 customers — is a signal to every company with auto-renewal billing.
**NYC's "Click to Cancel" bill (proposed May 2026).** This is the first municipal-level regulation of its kind. If passed, any business selling auto-renewing subscriptions in New York City would need to provide a "simple mechanism to cancel" — no more requiring phone calls for gym memberships, no more buried cancellation flows for SaaS tools. The proposed penalty structure includes fines per violation and potential class-action exposure.
**FTC revives click-to-cancel (May 2026).** After a court vacated the FTC's original Negative Option Rule in 2024, the Commission is back with a revised version that addresses the court's concerns. The revived rule targets "negative option" marketing practices — where silence is interpreted as consent to continue billing. The FTC's argument: if cancellation is harder than signing up, the practice is deceptive.
Why This Matters for SaaS
Most SaaS retention strategies rely on some version of cancellation friction. It might be a three-click cancellation flow instead of one click. It might be a "are you sure?" modal with a discount offer. It might be requiring an email to support@company.com instead of a self-serve button.
None of these are illegal — yet. But if NYC's bill passes and the FTC rule takes effect, the legal landscape shifts. Cancellation friction becomes a compliance risk, not a growth lever.
The SaaS companies that will thrive under these rules are the ones that can answer a simple question: **do you know which customers want to cancel before they actually try to?**
The Compliance Strategy That Works
Here's the counterintuitive part: the best response to click-to-cancel regulation isn't to fight it or build a more cleverly hidden cancellation flow. It's to stop relying on cancellation friction entirely.
The companies with the lowest churn rates don't have the hardest cancellation processes. They have the earliest detection systems. They know a customer is at risk weeks before the customer decides to leave — and they intervene with a helpful conversation, not a retention popup.
This is where churn prediction becomes a compliance strategy. Instead of spending engineering time on cancellation flow UX patterns that delay the inevitable, spend that time on detecting the signals that predict churn before it happens:
When you catch these signals early, you don't need to make cancellation hard — because the customer doesn't want to cancel in the first place. They want the problem solved.
What SaaS Companies Should Do Now
The regulatory window between proposal and enforcement is the right time to audit your current approach:
The Bottom Line
Click-to-cancel regulation is happening — whether through the FTC, state laws, or municipal ordinances like NYC's. The SaaS companies that treat this as an opportunity to build better retention systems will come out ahead. The ones that treat it as a threat to be worked around are one $35 million settlement away from a board-level wakeup call.
The best compliance strategy for churn isn't making cancellation harder. It's knowing who's at risk before they reach the cancellation page.