TCPA Statutory Damages Explained: What $500 and $1,500 Per Violation Really Means
If you buy or sell leads that turn into phone calls and texts, the Telephone Consumer Protection Act is the statute most likely to end a bad month with a demand letter. What makes it dangerous isn't a single big number. It's a small number — $500 — that multiplies quietly across every call and text in a campaign until it becomes a number that can close a company.
This is a practical walk-through of how those damages actually work, grounded in the statute itself. I've quoted the primary text so you can read the words that a plaintiff's lawyer will read.
The private right of action: $500, trebled to $1,500
The TCPA lets consumers sue directly. You don't need a regulator to act. The core damages provision lives at 47 U.S.C. § 227(b)(3), and it's short enough to read in full.
The statute, verbatim
47 U.S.C. § 227(b)(3): "A person or entity may... bring in an appropriate court of that State—(A) an action based on a violation of this subsection or the regulations prescribed under this subsection to enjoin such violation, (B) an action to recover for actual monetary loss from such a violation, or to receive $500 in damages for each such violation, whichever is greater, or (C) both such actions."
Three things matter here. First, the plaintiff gets the greater of actual loss or $500 — and since a nuisance call rarely causes provable monetary loss, the $500 floor is effectively the number. Second, injunctive relief (an order to stop) is available on top of money. Third, and most importantly, that $500 is per violation, not per lawsuit or per person.
The statute then adds a multiplier for bad conduct: "If the court finds that the defendant willfully or knowingly violated this subsection... the court may, in its discretion, increase the amount of the award to an amount equal to not more than 3 times the amount available under subparagraph (B)." Three times $500 is $1,500. That's where the headline "$1,500 per call" comes from.
The second private right of action: internal DNC and § 227(c)(5)
There's a second, separate path to liability that lead-driven callers underestimate. Section 227(c) governs the Do-Not-Call rules — including the requirement that callers maintain an internal do-not-call list and honor the National DNC Registry. Its private right of action is at 47 U.S.C. § 227(c)(5).
The DNC private right of action
47 U.S.C. § 227(c)(5): a person who has received "more than one telephone call within any 12-month period by or on behalf of the same entity in violation of the regulations prescribed under this subsection" may bring an action "to recover for actual monetary loss from such a violation, or to receive up to $500 in damages for each such violation, whichever is greater," and the same treble-damages provision applies for willful or knowing violations.
The damages mirror § 227(b)(3): up to $500 per violation, trebled to $1,500 for willful or knowing conduct. The practical consequence is that a single unwanted call can breach both subsections at once — say, an autodialed call to a cell number (a (b) violation) placed to someone on the DNC list who never consented (a (c) violation). Plaintiffs plead both. The exposure stacks.
How "per violation" compounds
This is the part operators feel in their stomach once they do the math. Each call is a violation. Each text is a violation. A dialer that makes six attempts to reach one bad number can be six violations against one person.
Illustrative math — not a real case
Suppose a campaign texts 10,000 numbers from a purchased list, and 2,000 of those recipients never consented. That's 2,000 violations. At the $500 statutory floor: 2,000 × $500 = **$1,000,000**. If a court finds the conduct willful or knowing and trebles it: 2,000 × $1,500 = **$3,000,000**. Now assume the dialer sent an average of three texts each before anyone opted out — multiply again. These numbers are a hypothetical to show the mechanics, not a prediction of any specific outcome.
Notice what the illustration reveals: the driver isn't the per-call number, it's the volume. TCPA damages scale linearly with the size of your list and the aggressiveness of your cadence. A high-volume lead-buying operation is, mathematically, a high-exposure operation.
The Operator’s Compliance Brief
What changed in lead-gen compliance, and what to do about it. Free, no spam.
The four-year clock
How far back can a plaintiff reach? The TCPA has no limitations period of its own, so courts apply the general federal catch-all at 28 U.S.C. § 1658(a): "a civil action arising under an Act of Congress enacted after the date of the enactment of this section may not be commenced later than 4 years after the cause of action accrues." The TCPA was enacted in 1991, so this four-year window applies.
Four years of call records is a lot of violations to aggregate. It's also why your dialer logs, consent records, and suppression files matter long after a campaign ends — they're the evidence in a suit that may not be filed until years later.
Why this is a class-action magnet
Fixed statutory damages + no need to prove individual harm + a four-year lookback + high call volumes = a claim that certifies as a class with ease. Every member's damages are identical and calculable from the defendant's own records. That's close to an ideal class action.
Class action dynamics and why settlements run large
The features that make TCPA claims easy to bring individually make them devastating in aggregate. Because every class member's damages are the same $500 (or $1,500) and provable from the defendant's call logs, there's little of the individualized-injury problem that defeats certification in other consumer suits. Serial and professional plaintiffs — people who document unwanted calls specifically to sue — target lead-driven calling because purchased lists and reassigned numbers reliably produce non-consenting recipients.
When you multiply a small per-violation number by a class of hundreds of thousands, the theoretical exposure dwarfs most companies' balance sheets. That asymmetry is exactly why defendants settle rather than roll the dice at trial.
A concrete, verifiable benchmark: In re Capital One Telephone Consumer Protection Act Litigation settled for roughly $75.5 million ($75,455,098.74), resolving claims that Capital One and three collection firms used autodialing equipment to call consumers' cell phones without consent. At the time it was reported as the largest TCPA settlement on record. That figure came from a class built on the same $500-per-call arithmetic above — just at enormous scale.
What "willful or knowing" actually means
Operators often assume the treble multiplier only bites bad actors who intended to break the law. That's not how the term is read. The Communications Act defines "willful" at 47 U.S.C. § 312(f)(1) as "the conscious and deliberate commission or omission of such act, irrespective of any intent to violate any provision of this chapter or any rule or regulation of the Commission." Courts have widely applied this definition to TCPA treble damages.
You don't have to mean to break the law
Under § 312(f)(1)'s definition, "willful" means you consciously made the call or sent the text — not that you knew it was illegal. If you deliberately dialed a number, a court can find willfulness even if you believed you had consent. "I didn't know" is not, by itself, a defense to trebling.
That reading is why the $1,500 tier is closer to the default than the exception in contested cases. If you meant to send the message — and you almost always did — the conduct element of willfulness is satisfied.
Practical takeaways for lead buyers and sellers
- Treat consent as the asset you're actually buying. When you purchase leads, you're buying the consent record behind them. Get the TrustedForm or Jornaya certificate, the timestamp, the IP, and the exact disclosure language the consumer saw — and store it for at least four years to match the limitations window.
- Audit the seller's source. Co-registration paths and aged lists are where non-consent hides. If the seller can't show you the originating opt-in, price the lead as if it has no consent — because in court it may not.
- Scrub against the National DNC Registry and your internal DNC list before every campaign, and honor opt-outs immediately. Section 227(c)(5) liability is separate from autodialer liability.
- Cap your cadence. Because each attempt is a separate violation, retry logic multiplies exposure faster than it improves contact rates.
- Keep clean, immutable logs. In a TCPA suit, the defendant's own records supply the damages math. Records that prove consent and suppression are the difference between a defense and a rubber stamp on the plaintiff's spreadsheet.
- Push indemnification down and up the chain. Contracts between buyers and sellers should allocate TCPA risk explicitly — but remember indemnity is only as good as the counterparty's solvency.
The throughline: TCPA damages are small per unit and catastrophic in aggregate. The operators who survive aren't the ones with the best lawyers — they're the ones with the best consent records and the discipline to not dial numbers they can't prove they were allowed to call.
Not legal advice
This is a practical field guide for operators, not legal advice. Compliance rules change and turn on your specific facts. Confirm anything here with a qualified telemarketing/TCPA attorney before you rely on it.
Sources
- 47 U.S. Code § 227 - Restrictions on use of telephone equipment — Cornell Law School, Legal Information Institute (accessed 2026-07-03)
- 28 U.S. Code § 1658 - Time limitations on the commencement of civil actions — Cornell Law School, Legal Information Institute (accessed 2026-07-03)
- 47 U.S. Code § 312 - Administrative sanctions (definition of "willful") — Cornell Law School, Legal Information Institute (accessed 2026-07-03)
- Capital One, collection agencies agree to $75.5M settlement of TCPA claims — Washington Examiner (accessed 2026-07-03)
- Capital One Sets Record With $75M TCPA Deal — Manatt, Phelps & Phillips, LLP (accessed 2026-07-03)
30+ years in lead gen · BRSG Founder
Bill Rice has spent 30+ years in mortgage, lending, and performance marketing — generating leads, buying them, and building the systems that route and work them. He founded a performance-marketing agency, owned a direct-to-consumer lender, and wrote The Lead Buyer's Playbook. He built Lead Compliance Hub to help operators navigate the legal landmines of online lead generation from an operator's seat, not a law firm's. Nothing he writes here is legal advice.
The Operator’s Compliance Brief
What changed in lead-gen compliance, and what to do about it. Free, no spam.