SMS and email automation can grow your book fast, but the wrong consent language can cost you $500 to $1,500 per text. Here is how we keep every Agent Lead Engine client compliant by default.
Two federal laws govern every automated text and email an insurance agency sends. TCPA covers SMS and automated calls. CAN-SPAM covers commercial email. Violations carry real dollar penalties, carrier shutdowns, and class-action exposure.
Standard TCPA fine per violation. Jumps to $1,500 per willful violation.
CAN-SPAM penalties reach $50,120 per non-compliant commercial email.
Keep consent records for at least 5 years after the last communication.
Only send SMS between 8 AM and 9 PM in the recipient's local time.
TCPA applies to any text or call sent using an autodialer or automation platform. That includes GoHighLevel, which every Agent Lead Engine CRM is built on. The core rule is simple: get real, written, documented consent before you send.
Every landing page that collects a phone number needs this disclosure visible next to the submit button, with an unchecked consent checkbox the user must click.
"By submitting this form, you consent to receive automated text messages and calls from [Agency Name] at the phone number provided. Message frequency varies. Message and data rates may apply. Reply STOP to opt out at any time. This consent is not required to receive a quote."
"Hi {first_name}, this is [Agency Name]. Thanks for requesting a free insurance quote. A licensed agent will reach out shortly. Reply STOP to opt out."
Every first-touch SMS must identify your business by name and include STOP language. Missing either can get your number flagged by carriers and suspended.
CAN-SPAM applies to all commercial emails sent by your agency. Transactional emails (appointment confirmations, receipts) are exempt from marketing rules but should still be professional.
The "From" name and email must accurately identify your agency. No false or misleading header information.
Subject lines must reflect the actual content of the email. No deceptive bait.
Every commercial email must include a valid physical postal address in the footer.
Include a clear unsubscribe link. Honor opt-out requests within 10 business days.
If the message is marketing content, the email must clearly identify itself as an advertisement.
If a vendor sends emails on your behalf, you are still responsible for compliance.
We do not leave compliance to chance. Every new client sub-account ships with these controls active on day one.
Every funnel form ships with TCPA consent disclosure visible near the submit button and an unchecked consent checkbox by default.
Privacy Policy and Terms of Service links are placed on every form page. No buried disclosures.
GoHighLevel STOP handling is verified at launch. Any contact who texts STOP is auto-suppressed from every SMS workflow immediately.
SMS workflows are configured to only send between 8 AM and 9 PM in the recipient's local time.
Every email workflow uses your verified "From" name, your business email, your physical address, and a working unsubscribe link.
Every form submission, consent record, opt-out, and message is stored on the contact record in your CRM for the full retention window.
Use this list to audit any new sub-account, funnel, or workflow.
Honoring opt-outs immediately is the single most important compliance habit.
The CRM automatically suppresses that contact from future SMS sends. Verify the suppression on the contact record. Do not add the contact back to any SMS workflow. You can continue sending email (an SMS opt-out does not affect email consent).
The CRM automatically removes them from email marketing workflows. Transactional emails like appointment confirmations may still be sent. Never manually re-subscribe a contact.
Acknowledge the complaint right away. Remove the contact from all automated communications. Document the complaint in the CRM notes. Escalate to management if there is any legal threat.
At least 5 years after the last communication. Keep the form configuration with the original consent language intact as proof that the contact opted in to that exact disclosure.
Only if you still have a valid, documented consent record. If the consent was for a different agency, a different purpose, or has been withdrawn, you need fresh consent before sending marketing SMS.
Book a free call. We will review your forms, SMS workflows, and email sequences, and tell you exactly what to fix. No pressure. No contracts.