InfoBytes Blog
Filter
Subscribe to our InfoBytes Blog weekly newsletter and other publications for news affecting the financial services industry.
New York enacts robocall measures
On November 8, the New York governor signed measures to help prevent robocalls and increase consumer protections. The measures build upon federal actions to combat robocalls and “will enable telecom companies to prevent these calls from coming in in the first place, as well as empower our state government to ensure that voice service providers are validating who is making these calls so enforcement action can be taken against bad actors,” Governor Kathy Hochul stated.
S.6267a requires telecommunication companies to block certain calls, including those from (i) numbers that are not valid North American numbering plan numbers; (ii) numbers that are not allocated to a provider by the North American numbering plan administrator or the pooling administrator; and (iii) unused numbers that are allocated to a provider. According to the governor’s press release, the act codifies into state law the provisions of an FCC 2017 rule that took effect in June 2021 and allows telecommunications companies to proactively block calls from certain numbers. (Covered by InfoBytes here.) These types of numbers, the release states, “are indicative of ‘spoofing’ schemes in which the true caller identity is masked behind a fake, invalid number.” The act takes effect immediately.
The second act, S.4281a, requires voice services providers to authenticate calls using the STIR/SHAKEN call authentication framework. As previously covered by InfoBytes, in 2020, the FCC, pursuant to the TRACED Act, adopted new rules requiring providers to implement the STIR/SHAKEN framework by June 2021. Under New York’s new measure, providers have up to 12 months to implement this framework or an “alternative technology that provides comparable or superior capability to verify and authenticate caller identification in the internet protocol networks of voice service providers.” Violators face a fine of up to $100,000 for each offense per day that the framework is not in place. This act is also effective immediately.
Biden announces key FCC nominees
On October 26, President Biden nominated acting FCC Chair Jessica Rosenworcel to be permanent Chair of the FCC. According to the announcement, in her time at the FCC, Rosenworcel has focused on addressing illegal robocalls and worked to enhance consumer protections in the agency’s telecommunications policies. Prior to joining the FCC, Rosenworcel served as Senior Communications Counsel for the United States Senate Committee on Commerce, Science, and Transportation. Biden also nominated Gigi Sohn, currently a Distinguished Fellow at the Georgetown Law Institute for Technology Law & Policy, to be a Commissioner. Biden’s announcement highlighted Sohn’s work pertaining to competition, innovation, and access to the Internet. The FCC’s leadership will be fully staffed at five members if Rosenworcel and Sohn are confirmed as commissioners.
FCC proposes obligations on international robocalls
On October 1, the FCC released a notice of proposed rulemaking (NPRM) to impose obligations on gateway providers to prevent illegal robocalls originating abroad from reaching U.S. consumers and businesses. Among other things, the NPRM seeks to require domestic gateway providers “to apply STIR/SHAKEN caller ID authentication to, and perform robocall mitigation on, foreign-originated calls with U.S. numbers.” As previously covered by InfoBytes, the STIR/SHAKEN framework addresses “unlawful spoofing by confirming that a call actually comes from the number indicated in the Caller ID, or at least that the call entered the US network through a particular voice service provider or gateway.” According to the FCC, the STIR/SHAKEN framework decreases illegal spoofing, provides assistance to law enforcement, and strengthens voice service providers’ blocking of robocalls using illegally spoofed caller ID information. The notice also proposes ensuring that gateway providers are engaged in the fight against illegal robocalls by requiring them to timely respond to traceback requests, which are utilized to block illegal robocalls and inform FCC enforcement investigations. Additionally, the NPRM seeks to require that both the gateway provider and the network accepting questionable traffic from the gateway provider actively block such calls. In a statement, acting Chairwoman Jessica Rosenworcel stated that such measures “will help [the FCC] tackle the growing number of international robocalls.” Comments on the proposed rules are due 30 days after the date of publication in the Federal Register.
FCC proposes largest TCPA robocall fine
On August 24, the FCC released a proposed total fine of more than $5.1 million against two consultants and their firm for allegedly violating the TCPA by making 1,141 unlawful robocalls to wireless phones without prior express consent. According to the FCC, the robocalls utilized messages informing “potential voters that, if they vote by mail, their ‘personal information will be part of a public database that will be used by police departments to track down old warrants and be used by credit card companies to collect outstanding debts.’” As previously covered by InfoBytes, the Telephone Robocall Abuse Criminal Enforcement and Deterrence (TRACED) Act amended the TCPA to not require the FCC to warn robocallers before violations could be counted toward a proposed fine. The recent action is the first the agency has taken regarding the amendment. According to a statement by the FCC acting Chairwoman Jessica Rosenworcel, the agency is “stepping up its efforts to combat illegal robocalls.”
9th Circuit revives TCPA suit against insurance servicer
On August 10, the U.S. Court of Appeals for the 9th Circuit revived a lawsuit against an insurance servicing company (defendant) for allegedly using both an automated telephone dialing system and an artificial or pre-recorded voice to place a job-recruitment call without obtaining the plaintiff’s consent. According to the opinion, the plaintiff filed a suit alleging, among other things, TCPA violations after receiving the pre-recorded voicemail from the defendant regarding his “industry experience” and that the defendant is “looking to partner with select advisors in the Los Angeles area.” The district court dismissed the plaintiff’s action under Federal Rule of Civil Procedure 12(b)(6) for failing “to state a claim upon which relief can be granted,” holding that the TCPA and the relevant implementing regulation do not prohibit conducting job recruitment robocalls to a cellular telephone number. In addition, the district court “read the Act as prohibiting robocalls to cell phones only when the calls include an ‘advertisement’ or constitute ‘telemarketing,’ as those terms have been defined” by the FCC. The court found that since the plaintiff admitted that the job recruitment call he received did not involve advertising or telemarketing, he had not adequately pleaded a violation of the TCPA.
On the appeal, a three-judge panel of the 9th Circuit determined that the district court misread the TCPA and the implementing regulation when dismissing the plaintiff’s suit and remanded the case for further proceedings. The appellate court noted that the FCC provision was intended to tighten the consent requirement for robocalls that involve advertising or telemarketing, but the lower court incorrectly perceived the provision as “effectively removing robocalls to cellphones from the scope of the TCPA’s coverage unless the calls involve advertising or telemarketing.” Moreover, the panel wrote that “[t]he applicable statutory provision prohibits in plain terms ‘any call,’ regardless of content, that is made to a cellphone using an automatic telephone dialing system or an artificial or pre-recorded voice, unless the call is made either for emergency purposes or with the prior express consent of the person being called.”
State AGs ask for faster implementation of STIR/SHAKEN
On August 9, state attorneys general from all 50 states and the District of Columbia, through the National Association of Attorneys General, sent a letter to the FCC urging the Commission to confront illegal robocalls by moving the deadline for smaller telephone companies to implement caller ID technology, STIR/SHAKEN, by June 30, 2022 at the latest. The TRACED Act (the Act), which became law in 2019 (covered by InfoBytes here), requires phone companies to implement STIR/SHAKEN technology on their networks to ensure that telephone calls are originating from verified numbers, not spoofed sources. As previously covered by InfoBytes, the STIR/SHAKEN caller ID authentication framework is an “industry-developed system to authenticate Caller ID and address unlawful spoofing by confirming that a call actually comes from the number indicated in the Caller ID, or at least that the call entered the US network through a particular voice service provider or gateway.” Currently under the Act, large companies are required to implement the technology by June 2021, and smaller voice service providers have until June 2023. According to the letter, the state attorney generals’ advocate that “[r]emoving — or, at least, curtailing — the Commission's blanket extension for small voice service providers that flout the commission's largess by perpetrating this high-volume traffic would truly serve the purpose of the TRACED Act: ‘to deter criminal robocall violations and improve enforcement’ of the TCPA.”
FCC takes action against robocalls
On August 5, the FCC announced a “fair and consistent” process for reviewing actions regarding a voice service provider’s ability to comply with the FCC’s anti-spoofing caller ID authentication rules. FCC rules require broad implementation of the STIR/SHAKEN caller ID authentication framework on voice service providers’ IP networks. As previously covered by InfoBytes, the STIR/SHAKEN framework addresses, among other things, “unlawful spoofing by confirming that a call actually comes from the number indicated in the Caller ID, or at least that the call entered the US network through a particular voice service provider or gateway.” Since June 30, all major phone companies are using the STIR/SHAKEN caller ID authentication framework in their IP networks (covered by InfoBytes here). To combat illegal spoofing, the STIR/SHAKEN standards are considered a common digital language utilized by phone networks, which facilitates valid information to be passed from provider to provider. The standards also allow most caller ID information to be verified for providers and third-party consumer protection services to use that information to inform call blocking or warning services to protect customers. According to the FCC, “[t]he widespread implementation of STIR/SHAKEN is a major step forward in the FCC’s fight against malicious spoofing and scam robocalls.”
FCC signs robocall enforcement MOU with Australia
On June 3, the FCC announced that it entered into a memorandum of understanding (MOU) with the Australian Communications and Media Authority (ACMA) on providing mutual assistance in the enforcement of laws on certain unlawful communications, such as robocall, robotexts, and “spoofing.” FCC Acting Chairwoman Rosenworcel noted that “[r]obocall scams are a global problem that require global commitment and cooperation” and that coordinating with ACMA can aid in removing scammers off of networks to protect consumers and businesses. ACMA Chair Nerida O’Loughlin noted that the agreement strengthens the existing relationship between the ACMA and the FCC in the regulation of unsolicited communications. According to the MOU, the FCC and ACMA understand that it is in their common public interest to, among other things: (i) “cooperate with respect to the enforcement against Covered Violations, including sharing complaints and other relevant information and providing investigative assistance”; (ii) enable “research and education related to unlawful robocalls and caller ID spoofing or overstamping”; (iii) “facilitate mutual exchange of knowledge and expertise through training programs and staff exchanges”: (iv) encourage awareness of economic and legal conditions and theories related to the enforcement of applicable laws as identified in Annex 1 to the MOU; and (v) update each other regarding developments related to the MOU in their respective countries in a timely manner.
FCC issues $4.1 million fine for deceptive robocalls
On April 22, the FCC imposed a $4.1 million fine against a phone carrier for allegedly impersonating other carriers in telemarketing calls and deceiving consumers into changing carriers without consent. The FCC first proposed the fine in 2018 after the agency, state regulators, and the Better Business Bureau received many complaints about this conduct. According to the FCC, the company’s “actions specifically harmed elderly and infirm consumers who, in some cases, were left without telephone service for extended periods of time while the company refused to reinstate service until the unauthorized charges were paid in full.” FCC acting Chairwoman Jessica Rosenworcel issued a statement condemning the “ugly scam” as a violation of the Communications Act, and warned: “To anyone else using our nation’s phone systems to perpetuate this kind of scam, take note because our efforts won’t stop here.”
FCC pushes on robocall blocking
On April 13, the FCC took several actions associated with blocking illegal and unsolicited robocalls, including sending cease and desist letters (see here and here) to two carriers that “appear to be transmitting multiple unlawful robocall campaigns” and seeking updated information from all carriers and developers of call-blocking tools to learn more about the tools available to consumers and their effectiveness. Key questions include:
- Whether the companies are offering call blocking tools to consumers at no charge.
- How the companies measure the effectiveness of blocking tools.
- What protections the companies have put in place to ensure that call blocking does not interfere with emergency services.
In addition to seeking input from the industry, the FCC sent cease and desist letters to two carriers regarding the transmission of illegal robocalls through their networks. The letters warn the carriers that downstream carriers will be authorized to block all of their traffic if they do not take steps within 48 hours to “effectively mitigate illegal traffic.”