In short, the TCPA requires that businesses and organizations must receive PRIOR written consent from individuals before sending SMS/text messages to them. CTIA audit standards indicate that there must be:


* A clear indication of privacy policy

* A link to comprehensive terms and conditions (T&Cs)

* A STOP keyword offered

* Mention that message and data rates may apply


You should consult with your legal counsel to ensure that your opt-out and opt-in process is compliant with applicable law and consistent with industry standards.


The TCPA (Telephone Consumer Protection Act) is a federal statute enacted in 1991 designed to safeguard consumer privacy. This legislation restricts telemarketing communications via voice calls, SMS texts, and fax.


TCPA Regulation:

https://www.ecfr.gov/cgi-bin/text-idx?rgn=div6&node=47:3.0.1.1.11.12


TCPA Statute:

https://www.law.cornell.edu/uscode/text/47/227



CTIA


The CTIA is an organization created by the wireless carriers to enforce proper SMS marketing practices to ensure they’re in the consumer’s best interests. The CTIA guidelines are very specific about text message marketing. They outline exactly what needs to be included in an advertisement for an SMS program (such as message and data rates, help and stop commands, message frequency, links to terms and conditions, and privacy policies) as well as what can’t be included.


Since the CTIA guidelines aren’t law, you can’t be sued for violating them, but you do risk having your program shut down.


CTIA standards:

https://www.ctia.org/the-wireless-industry/industry-commitments/messaging-interoperability-sms-mms