LeadEnrich logo
LeadEnrich

Blog/Compliance

TCPA, DNC, and FCRA: What Real Estate Agents Actually Need to Know

Most agents either panic about compliance or ignore it completely. Neither works. Here is a plain-English breakdown of what TCPA, DNC, and FCRA mean for your prospecting, and what to do about it.

·4 min read·LeadEnrich TeamProduct

TCPADNCFCRAskip tracing compliance
Compliance

Disclaimer: This is not legal advice. I am not your attorney. This is a practical field guide so you know what questions to ask your broker, compliance officer, or lawyer before you pick up the phone.

The two kinds of agents who get in trouble

There are agents who are so scared of compliance that they never call anyone. They sit on a list of 200 expireds, afraid to dial, and watch someone else pick up those listings.

Then there are agents who call everyone, text everyone, and figure they will deal with problems if they come up. Those are the ones who end up writing checks to class action attorneys.

Both approaches are wrong. The agents who build real businesses sit in the middle. They prospect hard, but they follow a process. That is what this post is about.

TCPA: the law that scares everyone

The Telephone Consumer Protection Act is the federal law behind most of the horror stories you hear. It covers calls and texts to cell phones, autodialers, prerecorded messages, and marketing texts.

Here is what matters for your day-to-day:

  • Marketing texts require written consent. Not verbal. Not implied. Written. A portal opt-in, a signed form at an open house, a checkbox on your website. If you do not have it, do not send the text.
  • Autodialers and prerecorded messages to cell phones are high-risk. If you are using any kind of dialer that sends prerecorded voicemails or auto-dials cell numbers, you need consent or a very clear exemption. Many teams skip this entirely unless they have counsel sign off.
  • Manual one-to-one calls are generally lower risk. Picking up your phone and calling a number you found through skip tracing is different from blasting 500 numbers through a power dialer with a prerecorded message. The distinction matters.
  • Keep your receipts. Every opt-in, every sign-in sheet, every portal form. If someone files a complaint two years from now, you need to show where consent came from.

The penalty for a TCPA violation can run $500 to $1,500 per call or text. Multiply that by a list of a few hundred contacts and you are looking at real money. Class action firms actively hunt for these cases. This is not theoretical.

DNC: simpler than you think

The National Do Not Call Registry is the list of phone numbers belonging to people who said they do not want telemarketing calls. States often have their own lists on top of the federal one.

Two things to get right:

Scrub your lists. Before you run a calling campaign, run your numbers against the DNC registry and any applicable state lists. This is table stakes. If a number is on the list, do not call it for telemarketing purposes.

Honor opt-outs immediately. When someone tells you to stop calling, add them to your internal DNC list right then. Not at the end of the day. Not when you get around to it. Right then. Your CRM should have a "do not contact" flag, and it should be non-negotiable.

That is it. DNC compliance is not complicated. It just requires discipline.

FCRA: the one most agents do not know about

The Fair Credit Reporting Act probably does not come up in your team meetings. But if you use skip tracing, it should.

FCRA governs how consumer data gets collected, shared, and used. Some of the data that skip tracing providers return — phone numbers, addresses, associated records — can fall under FCRA depending on the source and how the vendor classifies it.

What this means for you:

  • You need a legitimate business reason for every search. You are looking up a property owner because you want to market to them about their property. That is a business purpose. Looking up your neighbor because you are curious about their phone number is not.
  • Do not treat skip tracing like a toy. Every lookup should tie back to a real prospecting or business need. Random searches create liability.
  • Pick vendors who take this seriously. Your skip tracing provider should document permissible use, explain their data sources, and have a compliance posture you can point to. If a vendor cannot explain their FCRA stance, find a different vendor.

LeadEnrich is built with TCPA and FCRA compliance in mind, scrubs against DNC lists, and documents permissible use. That is worth checking when you evaluate any data provider — not because compliance is a feature, but because it is a requirement.

Your five-minute pre-campaign checklist

Before you start dialing or texting, run through this:

  1. What channel am I using? Calls, texts, and mail each have different consent requirements. Know which rules apply to your channel.
  2. Where did this list come from? Public records, portal leads, purchased data, and skip traced data all have different compliance profiles. Document the source.
  3. Have I scrubbed it? DNC registry, state lists, and your internal opt-out list. All three.
  4. Do I have consent for this channel? Especially for texting. If the answer is no or maybe, do not send.
  5. Am I logging everything? Your CRM should show who you contacted, when, how, and what consent you had. If you ever need to prove compliance, this is your evidence.
Field note

If your broker has a compliance policy, read it before your next campaign. Treat it like your pre-listing checklist — it is not optional.

Compliance is not the opposite of hustle

The agents who close the most deals are not the ones who ignore the rules. They are the ones who build systems that let them prospect at volume without looking over their shoulder.

Get your lists clean. Track your consent. Use tools that take compliance seriously. Then go make your dials with confidence.

The goal is not to avoid prospecting. The goal is to prospect like someone whose records could be subpoenaed tomorrow — because in this business, they can be.

FAQ

Can I cold-call numbers from a skip trace?

Yes, in many cases, but it depends on the number type, your state, and how you got the data. Manual calls to landlines for non-telemarketing purposes generally have fewer restrictions. Calls to cell phones, especially with autodialers or prerecorded messages, carry more risk. Scrub against the DNC registry, check your state rules, and talk to your broker or attorney about your specific workflow before you start dialing.

What is the penalty for a TCPA violation?

Federal penalties can reach $500 per violation, and up to $1,500 per willful violation. A single bad campaign to a list of 500 numbers could mean six or seven figures in liability. Class action attorneys actively look for these cases. The fines are real, which is why list hygiene, consent tracking, and documentation matter so much.

Do I need consent to text a lead?

For marketing texts, yes. TCPA requires prior express written consent before you send marketing messages to a cell phone. That means a signed form, a checked box on your website, or a clear opt-in from a portal. One-to-one conversational texts to someone you already have a relationship with sit in a grayer area, but the safe play is to treat all texting as consent-required until your attorney tells you otherwise.

What does FCRA have to do with skip tracing?

FCRA governs how consumer data gets used. Some skip trace data overlaps with information covered by FCRA, depending on the vendor and the data source. The short version is that you need a legitimate business purpose for every lookup, you cannot run searches out of curiosity, and you should use a vendor that documents permissible use. This protects you and the people in your database.