Your Terms of Service and Privacy Policy serve as foundational documents for achieving 10DLC compliance. This comprehensive guide explains what you need to know to follow SMS marketing regulations and protect your organization.
Understanding SMS 10DLC Compliance
SMS on 10DLC involves sending Application-to-Person (A2P) text messages through standard 10-digit phone numbers—the same type businesses use for local calls in the United States. While traditional 10-digit numbers were initially created for Person-to-Person (P2P) messaging, 10DLC represents an approved carrier solution designed specifically for high-volume, business-oriented SMS communications.
Registration requirements apply to any organization sending mass text messages or individual messages, regardless of marketing intent. One essential requirement involves maintaining transparent SMS Terms and Conditions plus Privacy Policies that inform recipients about consent acquisition and management, including opt-out procedures.
What Does 10DLC Compliance Mean?
10DLC compliance refers to the regulations and guidelines established for organizations using 10-digit phone numbers (10DLC) to send SMS messages to their customers or employees in the United States. This is especially important for contact centers using omnichannel communication that includes SMS as a customer channel.
Core Elements of 10DLC Compliance
- Registration and approval: Businesses register brands and campaigns with The Campaign Registry (TCR) for approval
- Opt-in/opt-out compliance: Users must explicitly opt in; businesses must provide easy opt-out mechanisms
- Content and volume guidelines: Messages must follow content guidelines and respect carrier-imposed limits
- Data security and transparency: Organizations must protect user data and clearly identify themselves
- Carrier compliance and fees: Businesses must adhere to carrier policies and pay associated fees
Why Compliance Matters
Non-compliance triggers serious consequences. As of September 1st, 2023, any SMS traffic originating from unregistered 10DLC numbers in the U.S. will be blocked. Carriers suspend messaging capabilities when TCR flags businesses as non-compliant. Regulatory fines range from $500 to $10,000 or more depending on violation severity.
Understanding Terms & Conditions vs. Privacy Policy
What Are Terms & Conditions?
Terms of Service outline rules and guidelines governing service usage. These documents include user responsibilities, acceptable use policies, dispute resolution procedures, and liability disclaimers. Users acknowledge understanding and accepting these terms before proceeding.
What Is a Privacy Policy?
Privacy Policies explain how services collect, use, and protect personal information. They typically cover data collection practices, user rights regarding their data, data sharing procedures, and security measures protecting user information.
Key Differences
| Category | Terms & Conditions | Privacy Policy |
|---|---|---|
| Purpose | Defines usage rules and conditions | Explains data collection and protection |
| Focus | User conduct and legal responsibilities | Data handling and user privacy rights |
| Legal Nature | Contractual agreement | Legally-required disclosure document |
| Scope | Protects service providers | Protects user privacy |
| User Interaction | Users must agree | Users are informed |
Essential Elements of 10DLC Compliant SMS Terms and Conditions
Scope of Service
Clarify your SMS service purposes—emergency notifications, program updates, appointment reminders.
Opt-In Requirements
Describe how users join your SMS list and their consent to your Terms and Privacy Policy.
Message Frequency
Indicate expected message frequency while noting that frequency may vary based on events or preferences.
Costs & Charges
State that standard message and data rates may apply according to users’ mobile plans.
Opt-Out Methods
Emphasize that replying “STOP” immediately unsubscribes users. Offer alternative contact methods for removing subscribers from lists.
Data Collection & Usage
Provide high-level statements about collecting phone numbers or limited personal data, referencing your detailed Privacy Policy.
Service Availability
Note that message delivery depends on cellular network availability and external factors beyond your control.
Contact & Support
Include a “HELP” command or provide email/phone contact information for user assistance.
Liability and Disclaimer
Protect your organization with statements clarifying liability limits regarding delayed or misdelivered messages.
Modifications
Reserve the right to update Terms & Conditions, notifying subscribers via SMS or website announcements when changes prove significant.
Essential Elements of a 10DLC Compliant SMS Privacy Policy
Data Collection Details
Specify data points collected (phone numbers, names) and collection methods (web forms, keyword opt-ins, phone calls).
Consent and Opt-In Requirements
Explain how individuals provide consent for receiving SMS messages through various methods:
- Single Opt-In: User provides phone number once on an online form or by texting a keyword
- Double Opt-In: Confirmation text requires reply to complete subscription
- Website Form Opt-In: Phone number entry with checkbox indicating SMS consent
- Paper Form Opt-In: Physical form with phone number and signature
- Verbal Opt-In: Recorded consent during phone call or in person
- Text-to-Join Opt-In: Texting keyword to subscribe
- QR Code Opt-In: Scanning leads to registration page
Data Usage Statement
Clarify intended data uses, such as sending appointment reminders, alerts, promotional offers, or other notifications.
Data Protection
Describe how you protect collected data, including encryption protocols, secure storage, and access controls.
Data Retention and Deletion
Specify storage duration for personal information and describe secure deletion or anonymization methods.
Opt-Out Options
Clearly describe unsubscribing procedures, usually by responding “STOP” or other recognized keywords.
Non-Sharing Clause
State explicitly that user information will not be shared with third parties without consent, except for legally-required or service-providing circumstances.
Conclusion
Creating compliant Terms of Service and Privacy Policies isn’t just about avoiding fines—it’s about building trust with your customers and ensuring sustainable SMS communication practices.
Platform28 offers AI-powered, secure, and compliant communication solutions. Our contact center platform includes built-in SMS capabilities with compliance features. Contact us for compliance support and to elevate your customer experience strategy.
Disclaimer: This document serves illustrative purposes only. Organizations should seek legal counsel to ensure compliance with relevant local, state, and federal laws and applicable records retention and privacy regulations.