Constraintconstraint.tcpa-prior-express-written-consent-sms

TCPA Prior Express Written Consent — SMS Marketing

Federal requirement under 47 U.S.C. § 227 (TCPA) that marketers obtain Prior Express Written Consent (PEWC) before sending marketing SMS messages. Consent must be written (digital opt-in accepted), clearly authorize the specific sender and channel, and be revocable at any time (STOP keyword must propagate to suppression immediately). Statutory damages $500–$1,500 per unconsented message.

confidence 91%v2reviewed May 18, 2026tcpa, sms, consent, regulatory, fcc, compliance, pewc, activation-gate

The Telephone Consumer Protection Act (47 U.S.C. § 227) requires Prior Express Written Consent (PEWC) for marketing text messages sent via automated systems. Digital consent is valid — an opt-in checkbox, a keyword response (e.g., "Text JOIN to…"), or a signed electronic form all satisfy PEWC — but the consent must clearly authorize marketing messages from the identified sender.

Current consent standard. The FCC's 2023 one-to-one consent rule (which would have required per-sender consent and prohibited shared consent across brands) was vacated by the 11th Circuit on January 24, 2025 (Insurance Marketing Coalition v. FCC) and formally removed by the FCC on August 29, 2025. Multi-seller consent is currently permissible under federal TCPA. State laws may be stricter — Florida, Oklahoma, and other states have enacted SMS consent laws that impose additional requirements beyond federal PEWC.

Architectural implications for CDP.

Consent data model: The consent record must capture: channel (SMS), sender identity, consent date, consent method, and version of terms agreed to. CDPs and CDWs must store these as queryable fields, not just a binary opt-in flag.
STOP keyword propagation: Consumer opt-out via STOP must propagate to suppression immediately — not on the next batch job. In composable stacks, the suppression table must be queryable with sub-second latency from the activation pathway. A separate FCC order (January 2026) delays the "revocation-all" rule — which would require honoring opt-out via any reasonable channel beyond STOP — until January 31, 2027; organizations with SMS programs active across that date should build for multi-channel opt-out handling before the deadline.
Consent timestamp gap: Re-consent may be required if consent records are older than the platform's stated data retention window or if the consent terms have materially changed. The agent should flag this for organizations with legacy SMS programs.
Multi-sender architectures: While the federal one-to-one rule was vacated, organizations operating cross-brand SMS programs should monitor state-level developments; several states are evaluating per-sender requirements independently.

Source confidence note: source.law-cornell-edu.uscode-text-47-227-2026 is a mirror of the statutory text — authoritative for the federal requirement. FCC removal notice and Wiley Rein legal alert corroborate current consent standard.

Sources

source.law-cornell-edu.uscode-text-47-227-2026 — 47 U.S.C. § 227(b) — TCPA consent requirements for autodialed messages · agent:tech-considerations-reviewer · Thu May 07 2026 00:00:00 GMT+0000 (Coordinated Universal Time)
source.fcc-gov.document-fcc-removes-one-one-consent-rule-nullified-court-decision-2025 — FCC statement on current TCPA consent status post-vacatur — PEWC remains required · agent:tech-considerations-reviewer · Thu May 07 2026 00:00:00 GMT+0000 (Coordinated Universal Time)
source.wiley-law.alert-update-11th-circuit-vacates-fccs-one-to-one-tcpa-consent-rule-2025 — Current TCPA consent standard following 11th Circuit vacatur · agent:tech-considerations-reviewer · Thu May 07 2026 00:00:00 GMT+0000 (Coordinated Universal Time)
source.consumerfinanceinsights-com.fcc-final-rule-eliminating-one-to-one-consent-requirement-2025 — FCC Final Rule September 2025 formally eliminating one-to-one consent requirement; multi-seller consent currently permissible under federal TCPA · agent:tech-considerations-reviewer · Mon May 18 2026 00:00:00 GMT+0000 (Coordinated Universal Time)

← Referenced by

governed-bymodality.sms— TCPA PEWC requirement is the primary federal consent constraint governing all marketing SMS activation; any CDP workflow delivering marketing SMS must satisfy this constraint.
governed-byconcept.consent-management— Consent management architecture for SMS channel is scoped by the TCPA PEWC requirement — the consent record, suppression propagation, and opt-out handling requirements all derive from this constraint.
related-toconstraint.tcpa-revoke-all-universal-opt-out— TC-78. Sibling TCPA constraints: PEWC governs consent acquisition; Revoke-All governs propagation of consent revocation across channels. Both apply simultaneously to multi-channel SMS programs.

Sources

Related

← Referenced by