Skip to content
DWT logo
People Services Insights
About Offices Careers
Search
People
Services
Insights
About
Offices
Careers
Search
Advisories
Communications

FCC Reinstates CPNI Privacy Regulations (and Compliance Filing Obligations) for Telecom and VoIP Service Providers

By K.C. Halm
07.05.17
Share
Print this page
In a recent order, the FCC has reinstated its customer proprietary network information (“CPNI”) rules governing the privacy obligations of voice service providers under Section 222. This action follows the Congressional repeal of the FCC’s 2016 Privacy Order that had extended CPNI regulations to broadband internet access services. As a result, telecom and VoIP providers must again file CPNI compliance certification at the beginning of each year (beginning again in 2018) in order to certify compliance with these regulations.
 
While the legislative and administrative history is somewhat complex, the upshot of these developments is not. These actions simply take the industry back to the position of having to comply with the CPNI regulations that were in effect prior to adoption of the 2016 Privacy Order. In practical terms, that means that following publication in the Federal Register providers of interstate telecommunications services or interconnected VoIP services will be required to comply with the FCC’s regulations governing the access, use and disclosure of CPNI.

In addition, in this order the FCC also affirmed that:

  • The reinstated CPNI regulations will not cover broadband internet access services. 
  • Although these regulations do not extend to broadband, broadband service providers remain subject to Section 222 for the time being, until the Commission adopts (as we expect) an order rolling back Title II obligations on broadband. The FCC’s order also reminds providers of the prior Enforcement Bureau guidance offered to broadband providers in May of 2015 explaining how the Commission would enforce the statute absent any effective regulations.
  • This action reinstates the annual compliance certification filing requirement on a prospective basis. Thus, covered providers of telecommunications and VoIP services must file a certification of compliance no later than March 1, 2018 (certifying compliance during calendar year 2017).

As we have advised previously, CPNI certifications must include specific information concerning the provider’s compliance with the regulations, including a written explanation of how the provider’s program ensures compliance, whether the provider has taken action against data brokers, and a summary of all consumer complaints received in the prior year concerning unauthorized release of CPNI, or a clear statement that there were no such complaints.

DWT attorneys assist clients in the creation and implementation of CPNI compliance programs and employee training materials, and have successfully defended clients against FCC enforcement actions involving CPNI compliance. Please contact us for assistance in preparing and filing this annual FCC certification, crafting or revising your CPNI compliance program, reviewing your opt-out procedures, or to answer any questions you may have.

Related Articles

01.08.25
Webinars
Communications
"Preparing for Agency Enforcement Under Trump 2: What You Need to Know," Davis Wright Tremaine Webinar Read More
09.11.24
Insights
Communications
Licensees and Telecom/Video Service Providers Must File and Pay FCC Regulatory Fees by Sept. 26, 2024 Read More
07.17.24
Insights
Communications
Will the Supreme Court's Loper Bright Decision Change How the 6th Circuit Reviews the FCC's Open Internet Order? Read More
DWT logo
©1996-2025 Davis Wright Tremaine LLP. ALL RIGHTS RESERVED. Attorney Advertising. Not intended as legal advice. Prior results do not guarantee a similar outcome.
Media Kit Affiliations Legal notices
Privacy policy Employees DWT Collaborate EEO

SUBSCRIBE
©1996-2025 Davis Wright Tremaine LLP. ALL RIGHTS RESERVED. Attorney Advertising. Not intended as legal advice. Prior results do not guarantee a similar outcome.