FCC AI Voice Call Regulations: What Australian and US Businesses Need to Know in 2026
As of April 2026, the FCC's February 2024 Declaratory Ruling classifies AI-generated voices as "artificial voices" under the Telephone Consumer Protection Act (TCPA, 47 U.S.C. Section 227), subjecting AI voice calls to the same robocall restrictions that govern autodialers and prerecorded messages. Penalties range from $500 per violation in private lawsuits to $23,727 per violation in FCC enforcement actions. The critical distinction for small businesses: inbound AI receptionists that answer calls on your behalf are treated differently from outbound AI calls that dial customers, because the customer initiates the contact. In Australia, the ACMA enforces parallel restrictions through the Do Not Call Register, with corporate penalties up to AUD $2.5 million. Trillet includes TCPA, ACMA, GDPR, and DNCR compliance on every plan, a feature most competitors either charge extra for or skip entirely.
The regulatory landscape shifted fast. Within roughly a year, the US went from having no explicit stance on AI-generated voice calls to classifying them under decades-old robocall law, and multiple countries followed with their own frameworks. For any business using or considering a voice AI platform, understanding these rules is no longer optional.
Which Trillet product is right for you?
Small business owner who needs an AI receptionist to answer missed calls: Trillet AI Receptionist starts at $49/month with 150 minutes, TCPA and ACMA compliance included.
Marketing agency wanting to resell voice AI under your own brand: Trillet White-Label starts at $99/month with $0.12/minute usage and built-in compliance across all plans.
US Regulations: The FCC/TCPA Framework
The FCC's February 8, 2024 Declaratory Ruling brought AI voice calls under the TCPA by ruling that AI-generated speech qualifies as an "artificial" or "prerecorded" voice. This was not new legislation. The FCC used its existing authority to clarify that the TCPA's 1991 definitions already covered AI-generated audio, closing a loophole that had allowed AI robocalls to operate in a gray area.
Under the TCPA, businesses making AI voice calls to cell phones need prior express written consent for telemarketing purposes. The FCC's one-to-one consent rule, effective January 27, 2025, tightened this further: consent must be granted to a single, identified seller. Blanket consent forms covering multiple companies no longer satisfy the requirement.
The penalty structure is tiered. Private litigants can sue for $500 per violation, trebled to $1,500 for willful violations. FCC enforcement actions can reach $23,727 per violation as of April 2026. For a business that makes a few hundred noncompliant calls, the math gets uncomfortable quickly.
Informational (non-telemarketing) AI calls to cell phones require prior express consent, though not necessarily written. Calls to landlines have fewer restrictions but still cannot use artificial voices without consent if the call is telemarketing. The rules are complex enough that businesses should consult their legal team before launching any outbound AI voice campaign.
Inbound vs. Outbound: Why the Distinction Matters
Inbound AI receptionists that answer calls placed by customers are generally compliant with the TCPA because the customer initiated the call. The TCPA's consent requirements target calls made to consumers, not calls received from them. When a customer dials your business number and an AI agent picks up, no robocall provision has been triggered because no automated dialing or unsolicited calling occurred.
Outbound AI calls, where a system dials customers using AI-generated voice, fall squarely under the TCPA's restrictions. This includes appointment reminders, follow-up calls, marketing calls, and any scenario where the business initiates contact with an AI voice. These calls require proper consent documentation and compliance with do-not-call lists.
This distinction is why AI receptionists like Trillet's $49/month service operate in well-established legal territory. The customer calls your business number, the AI answers because you missed the call, and no outbound dialing occurs. The regulatory risk sits almost entirely on the outbound side.
That said, even inbound operations should maintain good practices: inform callers they are speaking with an AI system when practical, keep call recordings in compliance with state two-party consent laws, and document your compliance posture. Consult your legal team if your AI receptionist also initiates outbound follow-up calls or texts, as those touchpoints may trigger separate consent requirements.
Australian Regulations: ACMA and the Do Not Call Register
The Australian Communications and Media Authority (ACMA) regulates telemarketing through the Do Not Call Register (DNCR) and the Spam Act 2003. As of April 2026, businesses making AI-generated voice calls to Australian numbers must comply with the same rules that apply to human telemarketers: check numbers against the DNCR before calling, honor opt-out requests, and include caller identification.
ACMA penalties are significant. Corporations face fines up to AUD $2.5 million per contravention. The ACMA has historically been aggressive in enforcement, particularly against overseas operators targeting Australian consumers.
Australia's Privacy Act 1988 adds another layer. AI systems that collect, store, or process personal information from phone calls must comply with the Australian Privacy Principles (APPs). For a deeper look at how this affects AI answering services, see Privacy Act Compliance for AI Answering Services.
The practical upshot for Australian small businesses: using an AI receptionist to answer your incoming calls is permissible, but any outbound AI calling campaigns must comply with the DNCR and telemarketing rules. Trillet includes ACMA and DNCR compliance on every plan, handling the regulatory baseline so the business owner does not need to build compliance infrastructure from scratch.
EU AI Act: Disclosure Requirements
The EU AI Act (Article 50) requires that people interacting with an AI system be informed they are communicating with AI, "unless this is obvious from the circumstances and context of use." This transparency obligation applies regardless of whether the call is inbound or outbound.
For businesses operating across the US, Australia, and the EU, the disclosure requirement is the safest default. Even where disclosure is not legally mandated (the TCPA does not explicitly require it), proactively telling callers they are speaking with an AI agent reduces complaint risk and aligns with the direction every major regulatory body is heading.
US State-Level AI Voice Regulations
Several US states have enacted or proposed AI-specific voice call regulations that go beyond federal TCPA requirements. California's Bolstering Online Transparency Act (BOT Act) requires bots to disclose their non-human identity in certain commercial interactions. Illinois, Texas, and Washington have biometric privacy laws that may apply to voice data collected during AI calls. New York and other states have introduced bills specifically targeting AI-generated voice in telemarketing.
The state-level landscape changes frequently. Businesses operating across multiple states should assume the strictest applicable standard and consult legal counsel for state-specific compliance. A voice AI platform with built-in compliance guardrails reduces the burden of tracking these changes manually.
What Businesses Must Do to Stay Compliant
Compliance for small businesses using AI voice technology comes down to five core obligations: obtain proper consent before any outbound AI calls, maintain documentation of that consent, check numbers against applicable do-not-call registers, disclose AI involvement when required or when prudent, and retain call records per applicable regulations.
For businesses using an inbound AI receptionist only (answering calls from customers), the compliance burden is substantially lighter. The customer initiated the call, so TCPA consent provisions for outbound calling do not apply. The primary obligations become state-level recording consent laws, data privacy requirements, and any industry-specific regulations (HIPAA for healthcare, for instance).
Businesses that also use outbound AI calling, whether for appointment reminders, follow-ups, or marketing, should treat every outbound AI call as subject to TCPA and ACMA requirements. Document consent, check do-not-call lists, and build opt-out mechanisms. The penalties for getting this wrong are not theoretical.
AI Receptionist Compliance Checklist
This checklist covers the minimum compliance posture for a small business using an AI receptionist. It is not legal advice. Consult your legal team for requirements specific to your jurisdiction and industry.
Inbound AI receptionist (answering missed calls):
Verify your voice AI platform includes TCPA and ACMA compliance features
Confirm call recording compliance with your state's consent laws (one-party vs. two-party)
Ensure customer data collected during calls is stored per applicable privacy laws
If in a regulated industry (healthcare, finance), confirm the platform supports relevant standards (HIPAA, SOC 2)
Consider disclosing AI involvement to callers, even where not strictly required
Outbound AI calls (follow-ups, reminders, marketing):
Obtain prior express written consent before making AI telemarketing calls to cell phones
Ensure consent is one-to-one (tied to your business specifically, per the January 2025 FCC rule)
Check numbers against the FCC's National Do Not Call Registry (US) or ACMA's DNCR (Australia)
Provide opt-out mechanisms on every call
Retain consent records and call logs for at least four years (TCPA statute of limitations)
Consult legal counsel before launching any outbound AI voice campaign
Which Voice AI Platforms Include Compliance
Most AI receptionist platforms treat compliance as optional or charge extra for it. As of April 2026, Trillet includes TCPA, ACMA, GDPR, and DNCR compliance on every plan at no additional cost. HIPAA compliance, which some competitors charge $500 or more as an add-on, is also included. See the AI Receptionist Pricing Models Explained breakdown for how compliance costs vary across platforms.
When evaluating any voice AI platform, ask three questions: does the platform include compliance features on every tier, does the platform own its infrastructure (wrapper platforms built on Vapi or Retell add compliance complexity because data flows through multiple third parties), and does the platform provide documentation you can show a regulator if asked. If the answer to any of these is no, you are accepting regulatory risk the platform is not managing for you.
Frequently Asked Questions
Are AI receptionist phone calls legal?
Yes, with conditions. In the US, inbound AI receptionists that answer calls from customers are generally compliant with the TCPA because the customer initiated the call. Outbound AI calls (where a business dials customers using AI-generated voice) require prior express written consent for telemarketing to cell phones. In Australia, similar rules apply under ACMA. The legality depends on direction (inbound vs. outbound), purpose (informational vs. telemarketing), and consent status. Consult your legal team for your specific use case.
Does my AI receptionist need to tell callers it is AI?
The EU AI Act (Article 50) requires disclosure unless the AI nature is obvious from context. The US TCPA does not explicitly require disclosure, though several states have introduced or passed AI disclosure laws. Australia does not have a blanket disclosure requirement as of April 2026, but the ACCC has signaled interest in AI transparency rules. Best practice: configure your AI receptionist to identify itself as an AI assistant. It reduces complaint risk and aligns with the regulatory direction globally.
What is the penalty for making illegal AI robocalls?
In the US, TCPA violations carry $500 per violation in private lawsuits, $1,500 for willful violations, and up to $23,727 per violation in FCC enforcement actions. In Australia, ACMA can impose fines up to AUD $2.5 million for corporations. These penalties apply per call, so even a small campaign of a few hundred noncompliant calls can result in substantial liability.
Does Trillet handle compliance automatically?
Trillet includes TCPA, ACMA, GDPR, and DNCR compliance on every plan at no extra cost, including the $49/month AI Receptionist plan. This covers the platform-level compliance infrastructure: call handling that respects consent frameworks, data storage per privacy regulations, and support for industry standards like HIPAA. Platform compliance does not replace the need for legal counsel on your specific obligations, but it ensures the technology layer is not creating compliance gaps.
Which Trillet product should I choose?
If you are a small business owner needing an AI receptionist to catch missed calls, the Trillet AI Receptionist at $49/month with 150 minutes is the right fit. If you are a marketing agency wanting to resell compliant voice AI to your own clients under your own brand, Trillet White-Label starts at $99/month with $0.12/minute usage and the same compliance stack included.
