GlossaryGlossary · Cold Calling

TCPA

The Telephone Consumer Protection Act (TCPA) is a U.S. federal law that restricts telemarketing calls, texts, and certain automated dialing practices, including those used in B2B sales development. For SDR teams, it governs when, how, and to whom you can place outbound calls or send texts, especially to mobile numbers, and imposes steep per-violation penalties for non-compliance.

Browse all terms
In depth

What TCPA really means

The Telephone Consumer Protection Act (TCPA) is a U.S. federal law enacted in 1991 to curb intrusive telemarketing, fax spam, and automated calls. It restricts the use of autodialers, artificial or prerecorded voices, and unsolicited texts, and sets rules around calling hours and honoring do-not-call requests. Over time, regulators and courts have applied the TCPA to newer channels, such as SMS and AI-generated voice calls, making it central to modern outbound sales compliance.

In B2B sales development, the TCPA is especially important for cold calling and SMS outreach to mobile numbers. The law requires prior express consent for many informational autodialed calls and texts to wireless numbers, and prior express written consent for telemarketing that uses an autodialer or prerecorded/artificial voice. It also limits calls to generally between 8 a.m. and 9 p.m. local time and requires honoring national and internal do-not-call lists. Crucially, business-to-business calls are not categorically exempt: B2B calls and texts to wireless numbers are subject to the same TCPA restrictions as B2C, so SDRs calling prospect cell phones are firmly within scope.

The TCPA framework has evolved with technology and case law. The Supreme Court’s Facebook v. Duguid decision narrowed what qualifies as an “automatic telephone dialing system,” reshaping how courts view many dialers. At the same time, states have layered on their own “mini-TCPA” laws; as of late 2025, at least 15 states have telemarketing statutes that mirror or go beyond the federal TCPA, tightening calling hours, consent standards, and penalties. Recent FCC and state actions explicitly bring text messages and AI voice-cloning technologies under TCPA-style rules, so tools that automate outreach at scale are directly impacted.

For sales organizations, the TCPA is not just a legal concern; it’s a core operational constraint. Violations can trigger statutory damages of $500 to $1,500 per call or text, often aggregated into large class actions, which can quickly reach seven- or eight-figure exposure. Litigation data shows thousands of TCPA lawsuits filed annually and a sharp rise in class actions, underscoring the risk for any company running high-volume outbound calling.

Modern B2B sales teams respond by building TCPA-aware processes into their tech stack and workflows. This includes classifying numbers (wireless vs. landline), tracking consent status and source in the CRM, scrubbing lists against national and internal do-not-call files, enforcing time-of-day rules, and carefully selecting dialers and messaging tools. For outsourced SDR partners such as SalesHive, strong TCPA processes are foundational to scaling compliant cold-calling programs that still deliver pipeline.

Why it matters

The upside of getting tcpa right

What teams gain when this is run well as part of a disciplined outbound motion.

Reduces Legal and Financial Exposure

Adhering to TCPA guidelines significantly lowers the risk of costly lawsuits and regulatory actions. With statutory damages of $500 to $1,500 per violating call or text, even modest non-compliance can become financially devastating, especially when aggregated into class actions.

Improves Prospect Trust and Brand Reputation

A TCPA-compliant calling strategy signals respect for buyer privacy and preferences. Prospects are more receptive when they feel your outreach is permission-based and professional, which can improve live connect quality and downstream conversion rates for B2B SDRs.

Drives Higher-Quality Targeting

Because TCPA requires careful consent and list hygiene, sales teams are pushed to refine targeting and focus on higher-intent, properly permissioned contacts. This often results in better meeting quality and a stronger pipeline-to-revenue conversion profile.

Enables Scalable, Defensible Outreach Processes

Embedding TCPA rules into your dialer settings, CRM fields, and cadences creates repeatable, auditable workflows. This makes it easier to scale SDR headcount or outsource to providers while maintaining consistent compliance across teams and locations.

Aligns Phone, SMS, and Email in a Unified Strategy

TCPA-centered planning forces organizations to think holistically about call and SMS outreach alongside email and other channels. This alignment supports more coordinated, consent-aware sequences that keep your entire sales development motion on the right side of regulation.

Best practices

How to do it well

Practical guidance from the team that runs outbound campaigns every day.

Build a Written TCPA and Telemarketing Policy

Document how your organization interprets TCPA (with legal counsel), including consent standards, dialing rules, call-time windows, and treatment of mobile vs. landline numbers. Make this policy the backbone of SDR onboarding, ongoing training, and vendor contracts.

Classify and Scrub Contact Data Before Calling

Use data services to flag wireless numbers, run list scrubs against the National Do Not Call Registry where applicable, and maintain a robust internal do-not-call list. Integrate these flags into your CRM so SDRs and dialers cannot call prohibited or high-risk numbers by mistake.

Limit or Avoid Autodialers for Unconsented Mobiles

For B2B prospecting to mobile numbers without prior express written consent, favor human-initiated click-to-dial over high-speed autodialing modes. This reduces the risk that your technology is characterized as an autodialer and aligns outreach with the more conservative side of current case law.

Capture, Store, and Prove Consent

Treat consent as a core data asset: log consent type, source, timestamp, and channel in structured CRM fields. Ensure that web forms, event scans, and inbound inquiries clearly disclose telemarketing intent and automatically sync consent details to your sales systems.

Honor Opt-Outs and DNC Requests Immediately

Make it easy for prospects to say no, via verbal requests, keypress options, or replies like "STOP", and operationalize those signals across all channels. Update internal DNC flags in real time and propagate them to dialers and engagement platforms so no SDR can inadvertently re-contact the same person.

Continuously Monitor Vendors and State Law Changes

Vet outbound calling and SMS vendors for TCPA awareness, obtain clear documentation on how their tools avoid autodialer classifications, and revisit these decisions regularly. Track emerging state mini-TCPA laws and update playbooks as new restrictions or registration requirements come online.

Watch out for

Common challenges and pitfalls

The traps that quietly erode results, and what to do instead.

Misunderstanding B2B Applicability

Many teams incorrectly assume the TCPA doesn't apply to B2B calls, especially when dialing company decision-makers. In reality, calls and texts to wireless numbers, including business mobiles, are covered, exposing SDR programs that rely heavily on mobile data for prospecting.

Navigating Fragmented Federal and State Rules

Sales leaders must juggle federal TCPA rules, FTC Do Not Call regulations, and an expanding patchwork of state mini-TCPAs, each with its own calling hours, consent standards, and penalties. As of 2025, at least 15 states have laws that can be stricter than the federal baseline, complicating nationwide campaigns.

Data Quality and Consent Tracking

Accurate identification of wireless vs. landline numbers, along with reliable consent records, is a persistent challenge. Incomplete or inconsistent CRM data makes it hard to prove consent and increases the risk that SDRs unknowingly violate TCPA or state rules.

Risky Dialer and Automation Choices

Some power dialers, SMS platforms, and AI calling tools may be treated as autodialers or use artificial/prerecorded voices under TCPA interpretations. Without careful selection and configuration, B2B teams can inadvertently turn an efficient tool into a liability multiplier.

Ensuring SDR-Level Compliance at Scale

Even with good policies, day-to-day execution is hard: new SDRs, offshore teams, and outsourced call centers might deviate from scripts, ignore time-zone rules, or mishandle opt-outs. Gaps in training, monitoring, and QA quickly erode your compliance posture.

Questions, answered

TCPA FAQs

The short version is on the surface. Open any question to go deeper.

Yes. While some specific TCPA provisions historically focused on residential lines, calls and texts to wireless numbers, including those used for business, are covered regardless of whether the recipient is a consumer or a business contact. State mini-TCPAs can also explicitly apply to B2B outreach, so treating B2B calling as exempt is risky.
It depends on how you place the call and what you say. Autodialed or prerecorded telemarketing calls to wireless numbers generally require prior express written consent, while manually dialed calls may be treated differently but still face time-of-day, DNC, and state-law restrictions. Because standards evolve and vary by jurisdiction, you should work with counsel to define allowed practices and dialer settings for your team.
The TCPA is the federal statute that restricts certain types of calls and texts, while the National Do Not Call Registry and Telemarketing Sales Rule are FTC-administered frameworks focused on telemarketing sales calls and opt-out rights. In practice, outbound B2B calling programs must comply with both, scrubbing numbers against Do Not Call lists where applicable and following TCPA rules on consent, autodialers, and calling hours.
After the Supreme Court's Facebook v. Duguid decision, many courts require that an autodialer use a random or sequential number generator to store or produce numbers, which narrowed the definition for some modern dialers. However, interpretations vary, plaintiffs continue to test new theories, and state mini-TCPAs sometimes define covered technology more broadly, so companies often choose conservative dialer configurations for prospecting.
Texts are generally treated as calls under the TCPA, and telemarketing texts to wireless numbers typically require prior express written consent. Recent enforcement and rulemaking have also emphasized that AI-generated and automated texts are covered, and some states now explicitly add text messages to their telemarketing laws, making unconsented SMS prospecting especially high risk in B2B sales.
Yes, potentially. Courts and regulators frequently pursue the brand that benefits from the calls, not just the call center or SDR vendor that physically placed them, under theories of vicarious liability. That's why contracts, oversight, and audits of third-party callers are critical parts of a TCPA compliance strategy for B2B sales organizations.
Keep learning

Related terms

Other concepts worth knowing in the same corner of outbound.

Speed Dialer

A speed dialer is a sales dialing tool that automatically queues and launches the next outbound call the moment an SDR finishes...

Read definition

B2C Telemarketing

B2C telemarketing is the practice of using outbound phone calls to sell products, services, or subscriptions directly to...

Read definition

Part-Time Cold Caller

A part-time cold caller is a sales development professional who spends a limited number of hours each week making outbound B2B...

Read definition

Gatekeeper

A gatekeeper is the person or system that screens and controls access to a decision-maker, such as an executive assistant,...

Read definition

Put tcpa to work for your pipeline.

Book a 30-minute strategy call and we’ll map out exactly how SalesHive books qualified meetings for your team.

Back to glossary