Last updated 2026-07-09

TL;DR
A compliant predictive dialer scrubs against the National DNC Registry and any state DNCs before each call, honors consent records, caps abandoned calls at 3% under the FCC's 2003 rules, and logs everything with timestamps. No dialer makes you legally safe by itself. Consent management and written policies do the heavy lifting.
What does 'compliant' actually mean for a predictive dialer?
Compliance means the dialer operates inside the rules set by the Telephone Consumer Protection Act (47 U.S.C. § 227), the FCC's regulations at 47 C.F.R. Part 64, the FTC's Telemarketing Sales Rule, and any state laws that apply [1][2]. That is a lot of overlapping rules. No vendor controls all of them.
Here is the honest breakdown. The dialer is a delivery mechanism. Compliance rides on four things: what data goes into the dialer, what consent records back up each call, how the dialer is configured during each campaign, and what records it spits out afterward. A vendor selling you a "TCPA-compliant dialer" without asking a single question about your consent documentation is selling you false confidence.
The FCC defines an Automatic Telephone Dialing System (ATDS) as equipment with the capacity to store or produce telephone numbers using a random or sequential number generator and dial them [1]. Whether a given predictive dialer meets that definition is still being litigated after Facebook v. Duguid (2021). The safe posture is simple. Treat any software-driven dialer as a potential ATDS and manage consent accordingly [3].
"Reliable" here means two things. It does what it says every time: accurate DNC scrubbing, call recording, timestamped logs. And it fails safe. When consent data is missing or ambiguous, it does not dial.
What FCC rules govern predictive dialers specifically?
The FCC's 2003 Report and Order (FCC 03-153) set the baseline rules that still govern predictive dialers today [4]. The ones that bite day to day:
- Abandoned call rate: No more than 3% of answered calls per campaign per 30-day period may be "abandoned" (the consumer answers but no agent is available). Calls above that threshold require an automated message identifying the caller.
- Identification: Every call must identify the entity on whose behalf it is placed and give a telephone number or address.
- Time restrictions: Calls to residences are prohibited before 8 a.m. or after 9 p.m. local time at the called party's location.
- Do-Not-Call honors: The dialer must not call numbers on the National DNC Registry or on a company-specific internal DNC list [2].
For calls or texts using an ATDS to cell phones, prior express consent is required. For calls using an ATDS or prerecorded voice to residential lines for telemarketing, prior express written consent is required under the FCC's 2012 rules (effective 2013) [1].
The FTC's Telemarketing Sales Rule adds its own abandoned-call safe harbor at the same 3% threshold but measures it differently (a percentage of all outbound calls, more than answered ones). So you need to know which authority is looking at your conduct [2].
Commit one number to memory. The TCPA carries $500 per negligent violation and up to $1,500 per willful or knowing violation [1]. In a class action covering thousands of calls, that math turns ugly fast.
What are the core compliance features a predictive dialer must have?
Not every vendor who says "compliance" actually delivers it. Here is what to demand in writing before you sign.
Real-time DNC scrubbing. The dialer must scrub against the National Do Not Call Registry before every call. The FTC requires organizations making telemarketing calls to access the Registry and pay a subscription for the area codes they plan to call [2]. Many vendors claim they scrub but only sync weekly or monthly. That lag is liability. Ask for documentation of how often the scrub runs.
Internal (company-specific) DNC list management. A consumer who asks you not to call again must be added to your internal DNC list within 30 days, and that suppression must last at least five years [1][2]. Your dialer must maintain and enforce this list separately from the national registry scrub.
Consent record storage and validation. Before the dialer places a call to a cell phone, it should confirm a valid consent record exists for that number. The record should include who consented, how they consented, the date and time, the IP address or session ID, and exactly what they agreed to. Missing record, suppressed number.
Abandoned call rate monitoring with automated alerts. The dialer should track abandoned call rate in real time per campaign, per 30-day rolling window, and alert managers before the 3% threshold is breached [4].
Call recording and timestamped logs. Every call needs a full record: number dialed, date, time, duration, outcome, agent ID. These logs are your defense in litigation. Plaintiff attorneys request them in discovery every time.
Do-Not-Call reason codes. The dialer should log why a number was suppressed, more than just that it was. This matters if you ever need to show a suppression decision came from a specific registry entry rather than an internal error.
Time-zone intelligence. The system must apply local-time calling window rules based on the area code and, where possible, the ZIP code of the called number. Area code alone is not always right for central versus mountain time border areas.
STIR/SHAKEN attestation compatibility. STIR/SHAKEN is the FCC-mandated framework requiring voice service providers to authenticate caller ID [5]. Calls that fail attestation are increasingly flagged or blocked by major carriers. Your dialer's provider should hold full A-level attestation for numbers you own and use legitimately.
How should you evaluate DNC scrubbing quality in a dialer vendor?
This is where most buyers get fooled. "We scrub against the DNC" can mean anything from a real-time API call before each dial to a monthly batch file upload. The gap in legal exposure between those two is enormous.
Ask these specific questions:
1. How often is your National DNC Registry data refreshed? (Acceptable: daily or real-time API. Anything slower is a risk.) 2. Do you scrub the number at the moment of dialing, or when the list is uploaded? (You want at-dial-time scrubbing.) 3. Do you support state-level DNC lists? Several states, including Indiana, Texas, and Wyoming, keep their own lists separate from the federal registry [6]. Your dialer needs to handle these. 4. Can I see a sample scrub audit log? A legitimate vendor produces one without hesitation. 5. How does the system handle a number that was clean when the list loaded but lands on the DNC the day you call? (The right answer: the scrub happens at dial-time, so it gets caught.)
The FTC's Telemarketing Sales Rule requires sellers and telemarketers to access the Registry at least every 31 days for the area codes they call [2]. That is a floor, not a best practice. Reputable vendors scrub daily or in real time.
Ask about wireless number identification too. The dialer should support a wireless number identification service (sometimes called a WNIS or a cell-phone number checker) so your team knows whether a number is a mobile before picking a calling mode. For how those rules connect to texting, see our guide to tcpa sms compliance.
What is the difference between a predictive dialer and a power or preview dialer for compliance purposes?
This distinction matters legally and operationally. More automation means more abandoned-call risk and stronger arguments that you are running an ATDS.
| Dialer Type | How it works | Abandoned call risk | ATDS risk | Best use |
|---|---|---|---|---|
| Predictive dialer | Algorithm dials multiple numbers per agent, connects answered calls to available agents | Higher (3% FCC cap) | High | High-volume outbound with stable consent records |
| Power dialer | Dials one number per available agent automatically | Low | Moderate | Moderate volume, mixed lead quality |
| Preview dialer | Agent reviews contact record, then triggers dial | Very low | Low to moderate | Complex sales, regulated industries |
| Manual click-to-call | Agent clicks to initiate each call | None | Lowest | Small teams, high-touch, sensitive contact data |
After Facebook v. Duguid, courts are still working through which dialer architectures qualify as an ATDS [3]. The Ninth Circuit has gone back and forth. The Eleventh Circuit reads it differently. The practical rule: if your dialer decides which numbers to dial and when, without a human clicking for each individual call, treat it as a potential ATDS and require written consent for cell phone calls.
A preview dialer where the agent sees the record and manually initiates each call is the lowest-risk configuration. If your team handles sensitive populations (healthcare, debt collection, financial services), preview or click-to-call is worth the efficiency tradeoff.
Power dialers sit in the middle. They automate pacing but usually dial only one number per available agent. Some courts have found this removes the "random or sequential" element that defines an ATDS. Others have not. Do not bet your business on a favorable court reading.
Which predictive dialer platforms are known for compliance features?
I will not rank vendors or take their marketing at face value. What I can do is tell you which features separate compliance-serious platforms from the rest, and name a few that compliance people keep bringing up.
Five9, NICE CXone (formerly inContact), Genesys Cloud, Convoso, and CallShaper come up regularly in compliance-focused discussions among outbound call center operators. Each claims real-time DNC scrubbing, consent management hooks, and call recording. That does not mean they configure those features correctly out of the box for your specific use case.
Salesforce's built-in dialing tools and HubSpot's calling features are lighter. They are generally not built for high-volume outbound with serious DNC hygiene needs.
The questions to ask any of these vendors are the same ones from the previous section. Get the answers in writing. Ask to see audit logs from a current client (they will likely refuse, but asking shows how seriously you take the request).
One practical note. Several mid-market platforms sell "compliance packages" as add-ons. Treat these with skepticism. Compliance is not a module you bolt on. It has to live in the dialing logic itself.
If you are in real estate and also running outbound SMS alongside calls, dialer compliance and text-message consent get tangled together fast. See how those rules work in our article on real estate text message marketing.
How does consent management connect to dialer compliance?
This is the part most teams get wrong. They buy a compliant dialer, then feed it unconsented leads.
For calls to cell phones using an ATDS, you need prior express written consent under 47 C.F.R. § 64.1200(a)(2) [1]. The FCC's 2012 Order (FCC 12-21, effective October 2013) killed the "established business relationship" exception for prerecorded calls to residential lines. That exception is gone. You need affirmative written consent.
What counts as written consent? The FCC requires a signed written agreement (electronic signatures count) that clearly authorizes calls using an ATDS or prerecorded voice, names the telephone number to be called, and is not a condition of purchase [1].
Your dialer should have a consent status field on every contact record. Before it places a call to a mobile number, it should check: does a valid consent record exist? What was the scope of that consent? When was it collected? Has the person revoked it?
Revocation is the tricky part. Under the FCC's 2023 Order (FCC 23-107, the one-to-one consent rule), starting January 2025 (currently subject to litigation and court stays), leads generated through co-registration forms would have required consent specific to each seller [7]. Even with the legal uncertainty around that order, the underlying principle holds. Broad consent collected through a third-party lead generator is a liability.
The safest consent is consent you collect directly, through your own sms opt in flow, your own web form, or a verbal confirmation recorded at the start of a call. Third-party consent transfers the risk right along with the lead.
For the full picture of how consent requirements tie into TCPA exposure, the tcpa overview is the right starting point.
What records should a compliant dialer generate for litigation defense?
The first thing a plaintiff's attorney does after filing a TCPA case is send a preservation letter and demand call records. If you cannot produce them, your position collapses fast.
At minimum, your dialer should generate and retain:
- A complete call log for every outbound call: number dialed, date, start time, end time, outcome (answered, no-answer, busy, abandoned), agent ID, campaign ID.
- The DNC scrub result for each number at the time of dialing, including which lists were checked and the timestamp of the check.
- The consent record tied to each number, including source, collection date, and the specific language the consumer agreed to.
- A recording of the call itself (check your state's wiretapping laws; many require two-party consent for recordings [6]).
- Any do-not-call requests received, with timestamp and the list they were added to.
- The IVR message or identification disclosure played on abandoned or transferred calls.
How long do you keep these? The TCPA's statute of limitations is four years under 28 U.S.C. § 1658 (the general federal-question limitations period). Keep records at least five years to give yourself margin.
Some states run longer exposure windows. Illinois, for one, has its own Automatic Telephone Dialers Act [6]. Know your states.
LeadCompliant's free compliance kit includes a call record retention checklist and a consent documentation template. Use it to audit whether your current dialer setup actually generates what you need.
What do TCPA class action settlements tell us about dialer failures?
Case outcomes reveal which failures generate the most expensive litigation. Looking at TCPA class action settlements from the past decade gives a clearer picture than any vendor pitch.
Capital One settled a TCPA class action in 2014 for $75.5 million, one of the largest at the time, over autodialed calls to cell phones without consent [8]. The core failure: calling numbers that had been reassigned to new subscribers after consent was collected from the previous holders.
Number reassignment is a specific and underappreciated risk. The FCC estimated in 2018 that roughly 35 million numbers are reassigned each year in the United States [9]. If a consumer consented to calls, then ported or gave up the number, and a new consumer picked it up, calling it without refreshed consent is a potential TCPA violation. A good dialer integrates with a reassigned number database. The FCC launched its own Reassigned Numbers Database in 2021 [9].
Other common failure patterns from the case record: calling numbers after an oral DNC request during a prior call (failure to honor internal DNC requests), calling outside the 8 a.m. to 9 p.m. window because of a bad time-zone assignment, and abandoned call rates blowing past 3%.
Nobody has clean data on the exact share of TCPA suits by violation type. But litigation trackers like WebRecon (webrecon.com) publish monthly filing counts that show the volume. TCPA filings in federal court averaged roughly 3,500 to 4,000 per year through the early 2020s, with some variation year to year [10].
How do state laws create additional compliance requirements beyond the FCC rules?
Federal TCPA rules are the floor, not the ceiling. Several states passed their own telemarketing and auto-dialer laws that go further [6].
Florida's Telephone Solicitation Act (FTSA), heavily revised in 2021 and amended again in 2023, created a private right of action for unsolicited calls or texts using an auto-dialer to Florida residents. For a stretch after the 2021 revision, it was arguably stricter than the federal TCPA and drew heavy litigation. The 2023 amendments narrowed some of those provisions. Florida is still a high-litigation state.
California has the Invasion of Privacy Act (CIPA, Penal Code § 632) covering call recording consent. It requires all-party consent for recorded calls. California also has an active TCPA plaintiffs' bar.
Washington State's Commercial Electronic Mail Act and its mini-TCPA analog add notice and consent requirements. Texas has a state DNC list. So does Indiana.
Your dialer's time-zone logic and DNC scrubbing have to account for state-specific rules. If you call into multiple states, a compliance-grade dialer should be configurable at the state level for calling windows, DNC lists, and recording disclosures.
Stay current on state changes. The tcpa news today section of LeadCompliant tracks the regulatory and case developments that matter.
For teams working B2B contexts that also touch GDPR because of international leads, the compliance picture widens further. See b2b lead generation platforms gdpr compliance for how those rules fit together.
What is the reassigned numbers database and why should your dialer use it?
The FCC's Reassigned Numbers Database (RND) launched in 2021 [9]. It is a central registry, maintained by SOMOS Inc., that tracks when a telephone number is permanently disconnected by a subscriber. Telemarketers can query it before calling to see whether the number has been reassigned since consent was collected.
The FCC created a safe harbor: if a caller queries the RND, gets a "no" result (no reassignment since consent was collected), then calls the number, any violation from an actual reassignment is treated as a single inadvertent error rather than a knowing one [9]. That matters, because knowing violations carry up to $1,500 per call versus $500 for inadvertent ones.
Not every dialer vendor has integrated with the RND. Ask directly: "Do you query the FCC's Reassigned Numbers Database before calls?" If the answer is no or vague, that is a gap.
The cost of RND queries is not prohibitive. SOMOS charges per query, and bulk rates for high-volume callers exist. For teams making thousands of calls a day, baking in RND lookups is cheap insurance.
The RND does not replace managing consent collection and revocation. It fixes one failure mode: calling a legitimately consented number that has since been reassigned to a new, unconsented subscriber.
How should a small outbound team set up a dialer for compliance without a dedicated compliance officer?
Most TCPA suits do not hit Fortune 500 companies with big legal teams. They hit small and mid-size shops that moved fast and cut corners on documentation.
Here is a practical setup checklist for a team under 20 seats:
1. Pick a dialer that does DNC scrubbing at dial-time, not at upload-time. Get it in writing from the vendor. 2. Subscribe to the National DNC Registry for every area code you plan to call [2]. The FTC runs this at telemarketingdnc.ftc.gov. Annual fees vary by the number of area codes. 3. Build an internal DNC list that lives in your CRM and feeds the dialer. Every opt-out request, however it arrives (phone, email, mail), goes on it within 24 hours. 4. Create a consent intake process. If you buy leads, get the exact consent language the lead generator used. If it does not meet the "clearly authorized, not a condition of purchase" standard, do not call those leads on cell phones with an autodialer. 5. Enable call recording and confirm recordings are stored for at least five years. 6. Set the dialer to the 3% abandoned call cap and get an alert at 2% so you have margin [4]. 7. Set calling windows to 8 a.m. to 8:30 p.m. local time (not 9 p.m.) to buffer against time-zone errors. 8. Document everything: your policies, your vendor agreements, your consent collection process. A written policy is evidence of good faith.
The LeadCompliant compliance kit has template policies and a consent documentation checklist you can adapt without hiring outside counsel just to get started.
For teams running SMS alongside calls, the consent and opt-out requirements overlap but are not identical. The sms double opt in process is worth understanding, and so is having a proper sms opt in form in place.
Frequently asked questions
Can a predictive dialer be used to call cell phones legally?
Yes, but only with prior express written consent from the called party before the call is placed. The FCC's 2012 rules require a signed, written agreement (electronic counts) that specifically authorizes autodialed or prerecorded calls to that cell phone number and was not a condition of purchase. Calling cell phones without valid written consent using an ATDS exposes you to $500 to $1,500 per call under 47 U.S.C. § 227.
What is the FCC's abandoned call rate limit for predictive dialers?
The FCC caps abandoned calls at 3% of all answered calls per campaign over any 30-day period. An abandoned call is one where the consumer answers but no agent is connected. Calls exceeding this threshold must play an automated message identifying the caller, and a callback number must be provided. Setting your internal alert at 2% gives you margin to correct before hitting the limit.
How often does a predictive dialer need to scrub the National DNC Registry?
The FTC's Telemarketing Sales Rule requires accessing the National DNC Registry at least every 31 days for the area codes you call. That is the legal floor. Best practice, and what compliance-grade vendors do, is scrubbing at the moment of dialing via real-time API. Monthly batch scrubbing creates a window where newly registered numbers get called, which is a direct violation.
Does the TCPA apply to B2B calls made with a predictive dialer?
Partially. The TCPA's residential calling restrictions apply most clearly to consumer numbers. B2B calls to a business's landline have more flexibility. But if the number called is a mobile phone, even a business-issued one used by an individual, most courts treat it as protected under TCPA. B2B teams calling cell phones via an autodialer should still obtain consent and scrub the DNC.
What is the FCC's Reassigned Numbers Database and do I need to use it?
The FCC launched the Reassigned Numbers Database (RND) in 2021 to help callers identify numbers that have been disconnected and reassigned to new subscribers. Querying it before calling creates a safe harbor: if the RND shows no reassignment since consent was collected, any subsequent violation from an actual reassignment is treated as a single inadvertent error, capping exposure at $500 versus $1,500 for a knowing violation.
Can I use a predictive dialer for text message campaigns?
A predictive dialer handles voice calls. SMS campaigns use a separate SMS gateway or messaging platform. That said, the TCPA consent requirements for texts sent using an ATDS are essentially the same as for autodialed voice calls: prior express written consent is required for marketing texts to cell phones. If you run both channels, you need consent records that cover both, and your calling and texting platforms both need DNC suppression.
What records do I need to keep to defend a TCPA lawsuit?
Keep, for at least five years: complete outbound call logs with timestamps and outcomes, DNC scrub results for each number at dial-time, consent records with source and collection date, call recordings, any internal DNC requests with timestamps, and the identification disclosures played on abandoned calls. The TCPA has a four-year statute of limitations under 28 U.S.C. § 1658. Some states have longer windows.
What is the difference between the National DNC Registry and an internal company DNC list?
The National DNC Registry is maintained by the FTC and covers consumers who have opted out of telemarketing calls nationally. An internal DNC list is your own company's record of individuals who have specifically asked you not to call them. You are legally required to maintain both. A consumer who requests no further calls from you must be on your internal list within 30 days and must be suppressed for at least five years, regardless of their status on the national registry.
How does Florida's FTSA affect predictive dialer use?
Florida's Telephone Solicitation Act created a private right of action for unsolicited autodialed calls or texts to Florida residents. After sweeping 2021 amendments generated heavy litigation, 2023 amendments narrowed some provisions. Florida remains a high-litigation state for TCPA-adjacent claims. Callers reaching Florida numbers should ensure consent is documented to the federal TCPA standard and that calling hours and DNC suppression are applied correctly for Florida numbers.
What is STIR/SHAKEN and why does it matter for my dialer?
STIR/SHAKEN is the FCC-mandated caller ID authentication framework requiring voice service providers to digitally sign calls with an attestation level (A, B, or C). Calls that fail attestation or carry no attestation are increasingly labeled as spam or blocked by major carriers before they reach the consumer. If your dialer places calls on numbers your business legitimately owns and uses, your voice provider should carry full A-level attestation for those numbers.
Does using a third-party lead vendor's consent protect me from TCPA liability?
No, not reliably. The FCC's 2023 one-to-one consent rule (currently subject to litigation and court stays) aimed to require consent specific to each seller. Even without that rule in force, courts have found that sellers can be held liable for relying on third-party consent that was not clearly tied to their specific organization. The safest approach is to collect consent directly and to independently verify the consent language used by any third-party lead source before calling those leads.
What calling hours apply to outbound telemarketing calls under federal law?
The FCC prohibits telemarketing calls to residences before 8 a.m. or after 9 p.m. local time at the called party's location under 47 C.F.R. § 64.1200. The FTC's Telemarketing Sales Rule sets the same window. Your dialer must apply local time at the called number's location, not the time zone where your call center sits. Many compliance professionals set dials to stop at 8:30 p.m. as a buffer against time-zone errors.
How much does it cost to subscribe to the National DNC Registry?
The FTC charges a fee to access the National DNC Registry. As of the most recent fee schedule, access to the first five area codes is free. Each additional area code costs around $75 per year, with a maximum annual charge around $18,900 for unlimited national access. These figures are set by FTC rule and can be verified at the FTC's website. Annual fees apply; you must re-subscribe each year.
Is a click-to-call dialer safer from a TCPA standpoint than a predictive dialer?
Generally yes. Click-to-call systems require an agent to manually trigger each individual call, which courts have often found removes the ATDS characteristic of dialing without human intervention. Predictive dialers make calling decisions algorithmically. After Facebook v. Duguid, the ATDS definition is still being litigated in various circuits, but click-to-call is the lower-risk architecture, at the cost of much lower call volume per agent.
Sources
- FTC, Telemarketing Sales Rule and National Do Not Call Registry: TSR abandoned call safe harbor at 3%, National DNC Registry access requirements, 31-day refresh minimum, internal DNC list five-year retention requirement
- U.S. Supreme Court, Facebook, Inc. v. Duguid, 592 U.S. 395 (2021): ATDS defined as equipment using random or sequential number generator; narrowed ATDS definition from certain broader circuit interpretations
- FCC, Rules and Regulations Implementing the TCPA, Report and Order FCC 03-153 (2003): 3% abandoned call rate cap per campaign per 30-day period, identification requirements for abandoned calls, 8 a.m. to 9 p.m. local time calling window
- National Conference of State Legislatures, State Telemarketing Laws: Multiple states including Florida, California, Texas, Indiana, and Washington have state-level telemarketing laws adding requirements beyond the federal TCPA
- FCC, Report and Order FCC 23-107, One-to-One Consent Rule (2023): FCC 2023 order requiring consent to be specific to individual sellers in lead generation contexts; effective date subject to litigation and court stays
- U.S. District Court, N.D. Illinois, In re Capital One Telephone Consumer Protection Act Litigation, No. 12-cv-10064 (2014): Capital One settled TCPA class action for $75.5 million in 2014 involving autodialed calls to cell phones without consent, including calls to reassigned numbers
- FCC, Reassigned Numbers Database: FCC launched RND in 2021 to track permanently disconnected numbers; provides safe harbor for callers who query and receive no-reassignment result; approximately 35 million numbers reassigned annually
- WebRecon LLC, TCPA Lawsuit Tracker: TCPA federal court filings averaged approximately 3,500 to 4,000 per year in the early 2020s