DNC and TCPA Compliance for Skip-Traced Lists
Updated June 17, 2026
Finding a phone number through skip tracing does not give you permission to call or text it. US numbers should be scrubbed against the National Do Not Call Registry, and the TCPA governs consent for calls and texts — especially automated ones. Skip tracing is a lookup, which is legal; outreach is regulated, and the rules apply to traced lists exactly as they do to any cold list.
The most expensive mistake in cold outreach isn't a low response rate — it's a TCPA complaint. Skip tracing makes it dangerously easy to go from zero to thousands of phone numbers in an afternoon, and the speed of acquiring the data can make it feel like the contacts are yours to use however you want. They aren't. The number being findable says nothing about whether you may legally text it.
This isn't legal advice, and the rules have real teeth — statutory damages run per violation and class actions are a live risk. The point of this article is to make the obligations concrete so you build compliance into your workflow from the start rather than bolting it on after a complaint.
What the rules actually cover
Two regimes matter for traced lists. The National Do Not Call Registry covers telemarketing calls to residential numbers (including wireless) registered on it — you're expected to scrub against it and honor it. The TCPA (Telephone Consumer Protection Act) governs consent for calls and text messages, with stricter requirements when you use automated dialing or pre-recorded messages, and it requires you to honor opt-outs immediately.
Skip tracing itself sits outside both — pulling a number from licensed databases is a permissible lookup. The regulated act is the contact. So the compliant workflow is always: trace, then scrub and apply consent rules, then reach out. The order is not optional.
Building compliance into the workflow
Practically, that means scrubbing your traced numbers against the DNC registry before you dial, maintaining and honoring an internal opt-out list, respecting quiet-hours restrictions, identifying yourself honestly, and processing opt-out requests immediately. For texting, the TCPA's consent posture is stricter than for manual calls, so automated SMS to cold numbers carries more risk and deserves more caution.
Many investors lean harder on channels with cleaner compliance footing as a result — LOIs to listing agents and cold email under CAN-SPAM, which carries a lighter consent burden than the TCPA. None of that replaces getting phone outreach right; it just means a smart channel mix isn't betting the whole operation on the riskiest channel.
| Channel | Primary rule | Consent burden | Key obligation |
|---|---|---|---|
| Calls to cell | DNC + TCPA | Higher | Scrub DNC, honor opt-outs, observe quiet hours |
| Automated/text SMS | TCPA | Highest | Consent posture is strictest; honor STOP instantly |
| Cold email | CAN-SPAM | Lighter | Honest headers, working opt-out, honor promptly |
| LOI to listing agent | Business communication | Lowest | Offer on a publicly listed property |
Compliance posture by outreach channel on a traced list
How tooling helps you stay clean
Compliance is far easier when it's automated rather than manual. Honoring an opt-out across thousands of contacts, suppressing a number the instant someone replies STOP, and keeping records of consent and opt-outs are exactly the things a system does reliably and a spreadsheet does not. Manual compliance is where mistakes that become complaints happen.
BILT handles the operational side of this — opt-out suppression, A2P 10DLC registration for SMS, and honoring STOP requests automatically across the channels it runs. It doesn't make the legal judgment calls for you, and you still own DNC scrubbing your data and your consent strategy, but it removes the manual gaps where compliance breaks down at scale.
Frequently asked
Can I legally call a number I got from skip tracing?
Not automatically. Skip tracing is a legal lookup, but calling is regulated — US numbers should be scrubbed against the National Do Not Call Registry and calls must comply with the TCPA. The number being findable doesn't make it callable; scrub and apply consent rules first.
Do I need consent to text a skip-traced number?
The TCPA governs text messaging and its consent requirements are stricter than for manual calls, especially with automated systems. This is the highest-risk channel for cold traced lists. Treat it cautiously, honor STOP requests instantly, and don't assume a traced number can be freely texted.
What's the penalty for violating DNC or TCPA rules?
TCPA statutory damages run per violation and class actions are a real risk, so the exposure scales fast across a large list. This isn't legal advice, but the takeaway is clear: the cost of getting compliance wrong dwarfs the cost of building it into your workflow up front.
Is cold email safer than calling a traced list?
Cold email falls under CAN-SPAM, which carries a lighter consent burden than the TCPA — honest headers, a working opt-out, honored promptly. Many investors weight their channel mix toward email and LOIs partly for that cleaner footing, while still doing phone outreach compliantly.
The takeaway
Skip tracing finds the number; it doesn't grant permission to use it. Scrub against the DNC registry, apply TCPA consent rules — strictest for automated texting — and honor opt-outs instantly. Build that into the workflow, not after a complaint. BILT automates the operational side (opt-out suppression, A2P registration, STOP handling), but DNC scrubbing and consent strategy stay yours.