Tool
Compliance Self-Audit
A three-minute gut check for a lead-gen operation. Answer honestly and you'll get a risk score and a prioritized punch list of the landmines worth clearing first. Nothing you enter is stored.
1. Do you capture prior express written consent before making marketing calls or texts?
2. Does your opt-in clearly and conspicuously disclose who may contact the consumer?
3. Do you capture and store reproducible proof of consent (e.g., TrustedForm or Jornaya)?
4. Do you scrub against the national and applicable state Do-Not-Call lists before dialing?
5. Do you honor opt-out/STOP requests promptly and maintain an internal do-not-call list?
6. If you buy leads, do you verify the consent actually authorizes calls by your company?
7. Do you know whether you must register as a data broker (California Delete Act and similar)?
8. Do you account for stricter state mini-TCPA rules in the states you call into?
9. If you use mortgage trigger leads, are you ready for the HPPA restrictions taking effect in 2026?
Your risk score
Mostly clear
0 of 9 answered
Get the full route
Get the plain-English fixes for each landmine, plus the rule changes coming this year — straight to your inbox.
The Operator’s Compliance Brief
What changed in lead-gen compliance, and what to do about it. Free, no spam.
This is an educational tool, not legal advice. It offers general, best-practice guidance from an operator's perspective and does not account for your specific facts or jurisdiction. Using it does not create an attorney–client relationship. For advice on your situation, consult qualified counsel.