Compliance Guide

TCPA Compliance for Appointment Reminders

The Telephone Consumer Protection Act (TCPA) governs how businesses send automated calls and text messages. If you send appointment reminders, you need to understand these rules. Violations carry penalties of $500 to $1,500 per message — and class action lawsuits are common.

Last updated: March 2026

Background

What Is the TCPA?

The Telephone Consumer Protection Act (47 U.S.C. section 227) was enacted by Congress in 1991 to protect consumers from unwanted automated phone calls and text messages. The law is enforced by the Federal Communications Commission (FCC) and through private lawsuits.

The TCPA regulates the use of automatic telephone dialing systems (ATDS), prerecorded or artificial voice messages, and text messages sent to cell phones. Under the TCPA, text messages are legally treated the same as phone calls — every SMS your practice sends to a patient is subject to these rules.

While the TCPA was originally designed to combat telemarketing, its scope has expanded significantly through FCC rulings and court decisions. Today, it applies to virtually any automated text or call, including appointment reminders, regardless of whether the message is commercial in nature.

Key TCPA Facts

Enacted1991 (amended multiple times)

Originally targeted telemarketing robocalls

Statute47 U.S.C. section 227

Part of the Communications Act of 1934 (as amended)

Enforced ByFCC + Private Lawsuits

Consumers can sue directly without proving actual damages

ScopeCalls, texts, faxes

Any automated or prerecorded communication to cell phones

Penalties$500 - $1,500 per violation

Per message, not per campaign — costs escalate fast

Important for Healthcare

The Healthcare Exception

In 2015, the FCC issued a ruling that provided important guidance for healthcare providers. Under this ruling, appointment reminders to existing patients generally qualify as informational, non-marketing messages and may benefit from an exception to the TCPA's stricter consent requirements.

Specifically, the FCC recognized that healthcare calls that deliver "health care messages" — including appointment reminders, prescription notifications, and wellness checkups — may be made to patients who have provided their phone number to the healthcare provider, provided certain conditions are met.

However, this exception has limits and has been subject to ongoing legal interpretation. The safest approach is always to obtain documented consent from patients before sending automated reminders, regardless of the exception.

Must be to existing patients who provided their number
Messages must be healthcare-related (not marketing)
Limited to voice calls; texting rules may differ
Patients must be able to opt out easily
Obtaining express consent remains the safest practice
Best Practice

While the healthcare exception may technically allow appointment reminders without written consent, we strongly recommend always obtaining documented consent. The legal landscape is evolving, and consent protects your practice from class action risk. It takes 10 seconds during patient intake and can save you millions.

Practical Rules

TCPA Rules for Appointment Reminders

Here's what you can and cannot do when sending automated appointment reminders under the TCPA.

What's Allowed

Sending appointment reminders to patients who gave you their phone number
Using automated systems to send reminders (with prior consent)
Texting appointment details: date, time, provider, location
Sending pre-appointment preparation instructions
Sending follow-up care reminders (prescription refills, wellness visits)
Including opt-out instructions in every message (reply STOP)

What's NOT Allowed

Sending marketing messages disguised as appointment reminders
Texting patients who have opted out (replied STOP)
Sending messages to numbers you obtained from a third party without consent
Ignoring wrong-number or reassigned-number complaints
Making it difficult or impossible for patients to opt out
Continuing to text patients after they revoke consent verbally or in writing

Common Mistakes

5 TCPA Mistakes That Get Practices Sued

1

No opt-out mechanism

Every automated text message must include a clear way for patients to opt out. "Reply STOP to unsubscribe" is the standard. Without it, every message you send is a potential violation.

2

Texting after STOP

When a patient replies STOP, you must immediately cease all automated messages to that number. Even a "We're sorry to see you go" confirmation text after STOP has been argued as a violation in court.

3

Mixing marketing with reminders

"Your appointment is tomorrow at 3pm. P.S. We're offering 20% off teeth whitening this month!" This converts your informational reminder into a marketing message, which requires written consent.

4

Not handling reassigned numbers

Phone numbers get reassigned to new people. If you text a number that now belongs to someone who never consented, you're liable. Regularly clean your contact lists and respond promptly to wrong-number complaints.

5

No consent documentation

If a patient sues and you can't prove they consented, you lose. "We always get consent during intake" isn't enough — you need a dated record of each patient's consent linked to their specific phone number.

Financial Risk

TCPA Penalties: What's at Stake

TCPA violations are calculated per message, not per campaign. This means that a single reminder campaign sent to 1,000 patients could result in 1,000 separate violations.

$500
Per Violation

Standard damages per non-compliant message

$1,500
Per Willful Violation

Treble damages for knowing or willful violations

Class Action
Aggregate Risk

Plaintiffs' attorneys actively recruit affected consumers

Real-World Examples

Healthcare system settles for $12.8 million — sent automated appointment reminders to patients who had not consented and did not honor opt-out requests promptly.

Dental practice pays $2.4 million — class action after sending promotional texts about teeth whitening to patients who had only consented to appointment reminders.

Pharmacy chain fined $4.5 million — continued sending automated prescription refill reminders to customers who had replied STOP.

Built-In Compliance

How Appointment Reminder Keeps You TCPA Compliant

We've built TCPA compliance into the core of our platform so you can focus on your patients, not legal risk.

Automatic Opt-Out (Reply STOP)

  • Every SMS includes STOP instructions automatically
  • STOP replies are processed instantly — zero delay
  • Opted-out numbers are blocked across all campaigns
  • No staff action needed — fully automated

Consent Documentation

  • Record and timestamp patient consent electronically
  • Link consent to specific phone numbers
  • Maintain an audit trail for legal protection
  • Export consent records anytime for compliance reviews

Compliant Message Delivery

  • Messages sent only during compliant hours (8am-9pm local)
  • Content limited to appointment information — no marketing
  • Message templates reviewed for TCPA compliance
  • Rate limiting to prevent message flooding

Suppression List Management

  • Centralized do-not-contact list across your entire practice
  • Automatic suppression of opted-out numbers
  • Handles reassigned numbers through carrier lookups
  • Prevents staff from accidentally messaging suppressed contacts

Time-of-Day Restrictions

  • Automatically respects patient's local time zone
  • No messages sent before 8am or after 9pm
  • Queues messages and delivers at the next compliant window
  • Configurable quiet hours for your practice

Compliance Dashboard

  • Real-time visibility into opt-out rates and consent status
  • Alerts for unusual opt-out patterns
  • Delivery reports for audit and compliance documentation
  • Track consent coverage across your patient base

Dual Compliance

TCPA vs. HIPAA: Both Apply to Healthcare Reminders

If you're a healthcare provider sending appointment reminders, you need to comply with both the TCPA and HIPAA. These are separate laws with different requirements, enforced by different agencies. Meeting one doesn't satisfy the other.

TCPA

Focus: Consumer consent for automated communications
Enforced by: FCC + private lawsuits
Key requirement: Get consent before sending automated messages
Penalties: $500-$1,500 per message
Applies to: Any business sending automated calls/texts

HIPAA

Focus: Protecting patient health information (PHI)
Enforced by: HHS Office for Civil Rights (OCR)
Key requirement: Safeguard PHI, sign BAAs with vendors
Penalties: $100-$50,000 per violation (up to $1.5M/year)
Applies to: Healthcare providers and their business associates

Appointment Reminder handles both. Our platform is built for dual compliance — we provide a signed BAA for HIPAA, encrypt all PHI, and enforce TCPA-compliant messaging practices including automatic opt-out handling, consent documentation, and time-of-day restrictions. You don't need separate tools for each regulation.

TCPA Compliance FAQ

For informational appointment reminders (not marketing), you need prior express consent, which can be oral or written. The patient providing their phone number to your practice, with knowledge that it will be used for appointment communications, generally satisfies this requirement. However, we strongly recommend getting written consent during patient intake — it's easier to prove in court and protects you from class action risk. Add a simple checkbox on your intake form: 'I consent to receiving automated appointment reminders at the phone number provided.'
No. Appointment reminders are generally classified as informational, non-marketing messages under the TCPA. This is an important distinction because marketing messages require a higher level of consent (prior express written consent) and are subject to additional restrictions. However, if you include any promotional content in your reminders — such as advertising a new service or offering a discount — the message may be reclassified as marketing. Keep your reminder messages focused strictly on appointment information.
You must immediately stop all automated messages to that phone number. 'Immediately' means no additional messages — not even a confirmation that they've been unsubscribed (though a single, brief opt-out confirmation is generally considered acceptable by the FCC). Appointment Reminder handles this automatically: when a patient replies STOP, their number is instantly added to the suppression list and blocked from all future automated messages across your entire account.
Yes. The TCPA includes a private right of action, meaning individual patients (or classes of patients) can sue directly without needing to go through a government agency. TCPA class action lawsuits are common and lucrative for plaintiffs' attorneys. Damages are $500 per violation (per message), or $1,500 per willful violation, and there is no cap on aggregate damages. A single campaign to 1,000 patients could theoretically result in $500,000 to $1.5 million in damages.
No. The TCPA specifically governs telephone calls, text messages, and fax communications. Emails are regulated separately under the CAN-SPAM Act, which has its own set of rules about commercial messages, opt-out requirements, and sender identification. If you send appointment reminders via multiple channels, you need to comply with the TCPA for texts and calls, CAN-SPAM for emails, and HIPAA for any channel that involves patient health information.

Send Compliant Reminders — Without the Legal Risk

Appointment Reminder has TCPA compliance built in: automatic opt-out handling, consent documentation, time restrictions, and suppression list management. Free 14-day trial — cancel anytime.

Start Free TrialView Pricing