One solution is to use a unique email address for every website, and change the address if the site gets compromised (with the old address getting added to a spam filter).