Compliance
DNC obligations
Federal and state DNC rules, and how to stay on the right side of them.
The National Do Not Call registry (federal, run by the FTC) restricts who you may make telemarketing calls to. OpenPhn checks every outbound call against a global suppression list and against your tenant's DNC list — but you're still responsible for:
- Scrubbing your own lead lists before dialing. OpenPhn rejects calls to listed numbers; it doesn't re-screen your list for you, and a rejected call still counts against abuse-pattern heuristics.
- Honoring opt-outs within 30 days. When someone asks to be removed, add them to DNC immediately.
- State-level registries. Some states maintain their own lists with stricter rules. OpenPhn doesn't subscribe to all of them — check your state's rules.
- Maintaining your internal DNC for at least 5 years.
What OpenPhn's enforcement does and doesn't do
Does:
- Blocks
POST /v1/callsto any number on the global or tenant DNC list, witherror: "dnc_blocked". - Checks every item in a batch independently.
- Audit-logs every block with
dnc_blocked_dials_totalmetric.
Doesn't:
- Substitute for your own pre-dialing scrub. We block when we see the request, not before you build your call list.
- Cover state DNC registries.
- Cover industry-specific rules (healthcare HIPAA, financial TCPA, etc.).
Uploading your DNC
The mechanics are on the DNC concept page. TL;DR:
curl -X POST https://api.openphn.com/v1/dnc/upload \
-H "Authorization: Bearer $OPENPHN_KEY" \
-F "file=@suppressions.csv"Up to 10,000 numbers per request. Re-uploading is safe — duplicates are deduped. Removals are a separate call.
Exemptions
TCPA and DNC don't apply uniformly. Common exemptions:
- Prior express written consent (overrides DNC).
- Existing business relationship (limited window, limited purposes).
- Non-commercial / informational calls (transactional, safety, etc.).
None of these are a blank cheque — the content of the call matters. See Consent.