Compliance is infrastructure, not footer text
Contractor lead generation touches phone numbers, consent language, outbound calls, SMS, recordings, and opt-outs. A provider that says "TCPA compliant" should be able to show the operational controls behind that claim. This is not legal advice, but it is a practical checklist for vendor review.
Consent capture should be stored, not implied
Ask whether every submission stores the disclosure text shown to the homeowner, page URL, timestamp, IP address, user agent, and a tamper-evident signature or audit record. If consent cannot be reconstructed later, it is weaker than it looks.
DNC and suppression checks should happen before outreach
The safer pattern is a runtime gate in front of outbound calls and messages. Internal suppression, opt-outs, federal and state DNC checks, and calling-window logic should run before contact is attempted.
Recordings need disclosure and retention rules
If calls are recorded, the process should include an audible disclosure where required, consistent storage, and exportable records. Recordings are useful only when your team can find them during a dispute, refund review, or audit.
Vendor questions to ask
- Can you export the consent snapshot for a specific lead?
- Do outbound contact attempts fail closed when compliance data is stale?
- Are opt-outs and blocked numbers enforced across every channel?
- Can you show why a lead was allowed, blocked, or deferred?
