Important Note: If there is no privacy policy present, or if the privacy policy is non-compliant at the time of your 10DLC registration submission, it could result in significant delays to your approval process.
Per CTIA guidelines (section 5.2.1), all message senders are to maintain a privacy policy that is clearly displayed and easily accessible by the consumer. If your opt-in consent method is a web form, you will also need to ensure your privacy policy is clearly linked on your web form as listed in the ‘Web Form Opt-ins’ section above.
Privacy policies should state that consumer information is not being sold to or shared with third-parties without consent, except when legally required to do so. If a privacy policy is non-compliant, it is generally due to the sharing of consumer information with third-parties for marketing purposes.
For specific guidance on your company’s privacy policy, we recommend consulting with your legal team. If your company needs assistance creating a privacy policy, we recommend using an online privacy policy generator such as the ones below to get you started.
Conclusion
Regardless of which method you choose to obtain opt-in consent, there are certain guidelines that must be followed in order to remain compliant with the CTIA regulations. Here are some key points to keep in mind when gathering opt-in consent:
-
Maintain a privacy policy that is clearly and easily accessible by consumers
- Clearly state the purpose of collecting mobile numbers and obtaining opt-in consent
- Ensure that opt-in consent is voluntary and conspicuous
Remember, transparency is key when it comes to gathering opt-in consent. Make sure to clearly communicate with your customers about what they are consenting to, how you’ll use their personal information, and how they can opt out of receiving texts from your business.