Skip to main content
It鈥檚 a good time to review some rules
It鈥檚 a good time to review some rules

The FCC鈥檚 Gateway Order, released on May 20, was published on July 18, that triggering certain compliance deadlines:

The Order imposes a number of new obligations on Gateway Providers designed to prevent foreign-originated illegal robocalls from entering U.S. networks. The Order defines Gateway Providers as a U.S.-based intermediate provider that receives a call directly from a foreign originating provider or a foreign intermediate provider. In other words, Gateway Providers are the entities whose U.S.-based facilities are the entry point into the U.S. for foreign-originated traffic.

The Order鈥檚 publication in the Federal Register sets the following implementation deadlines:

路 By September 16, 2022, Gateway Providers must block traffic that the FCC has notified the provider constitutes potentially illegal robocalls. Providers immediately downstream from the Gateway Provider must block all traffic from the identified Gateway Provider if notified by the FCC that the Gateway Provider failed to meet its obligation to block illegal traffic.

路 By October 16, 2022, Gateway Providers must have adopted and implemented a general mitigation standard requiring them to take reasonable steps to avoid carrying or processing illegal robocall traffic.

路 By January 14, 2023, Gateway Providers must implement a know-your-upstream provider obligation. Specifically, Gateway Providers must take reasonable steps to ensure that the immediate upstream foreign provider is not using the Gateway Provider to carry or process a high volume of illegal robocall traffic onto the U.S. network.

In addition, the order mandated that by June 30, 2023, Gateway Providers must have implement STIR/SHAKEN in the IP portions of their network and authenticate unauthenticated foreign-originated calls using U.S. numbers in caller ID.

The additional obligations adopted in the Order are predicated on approval by the Office of Management and Budget (OMB) of the information collections required by the rule. The following obligations become effective 30 days after Federal Register notice of OMB approval:

路 Gateway Providers must file in the robocall mitigation database (RMD) a certification regarding STIR/SHAKEN implementation and submit their robocall mitigation plans.

路 Gateway Providers must begin blocking calls to numbers on an established Do Not Call list.

路 Gateway Providers Respond to traceback requests within 24 business hours.

Within 90 days of the date that Gateway Providers must file in the RMD, two additional obligations take effect.

First, providers downstream of the Gateway Provider must block all traffic from any Gateway Provider that has not filed in the RMD.

Second, foreign providers, either originating providers or foreign intermediate providers, that send calls to the U.S. using U.S. numbers in the caller ID must file in the RMD or their calls will be blocked by Gateway Providers to which they directly connect.

WHAT TO DO?

We can assist you with every item covered above. We provide stir/shaken tokens, call verification, DID verification, and live TCPA compliance monitoring.

But remember, whatever solutions you take to reverse your ASR trend, you must comply with both stir/shaken and TCPA regulations. By not doing so, or ignoring them, will invite your eventual demise.

Subscribe to our newsletter
Let's keep in touch!

Stay updated on the latest news in the regulatory and compliance world! Sign up to receive our newsletter.