top of page

SMS Privacy Compliance Policy

1. Purpose and Scope

This SMS Privacy Compliance Policy outlines the principles and practices for ensuring the privacy and protection of personal information when utilizing SMS communications. The goal is to ensure compliance with applicable data protection regulations, such as the General Data Protection Regulation (GDPR), the Telephone Consumer Protection Act (TCPA), and the Controlling the Assault of Non-Solicited Pornography And Marketing (CAN-SPAM) Act, along with other applicable local laws regarding privacy and data security.

This policy applies to all employees, contractors, and third parties involved in sending or receiving SMS messages as part of business operations.

2. Data Collection and Consent

  • Opt-In Requirement: Customers must provide explicit consent before receiving any SMS communications. Consent must be obtained through a clear opt-in mechanism (e.g., a checkbox or a "text keyword to opt-in" option).

  • Clear Communication: The purpose of SMS communications must be clearly explained during the opt-in process, including the type of messages the customer will receive, such as marketing, transactional, or informational content.

  • Opt-Out Option: Every SMS message sent must include an easy and clear way for recipients to opt-out of future communications, such as replying with "STOP" to unsubscribe.

  • Age Restriction: SMS communications will only be sent to individuals who are 18 years or older or in compliance with applicable age consent laws.

3. Data Usage and Retention

  • Minimal Data Collection: Only the minimum necessary personal information (e.g., phone number) should be collected to fulfill the purpose of the SMS communication.

  • Data Retention: Personal data collected for SMS purposes should be retained only for as long as necessary to meet the original purpose of communication. Once this period has expired, the data should be securely deleted or anonymized.

  • Third-Party Sharing: Personal data will not be shared with third parties without the explicit consent of the recipient, except where required by law or for service-related purposes, such as SMS service providers.

4. Security Measures

  • Data Protection: All personal data collected, processed, or stored as part of SMS communication must be protected using appropriate security measures, such as encryption and secure storage.

  • Access Control: Access to personal data must be restricted to authorized personnel only. All individuals with access to SMS data must undergo regular training on data privacy and security best practices.

  • Incident Response: In the event of a data breach or unauthorized access to personal data, a breach response plan must be followed, including notifying affected individuals and regulatory authorities within the required timeframe, as outlined by applicable laws.

5. Compliance with Regulations

  • TCPA Compliance: SMS communications must comply with the Telephone Consumer Protection Act (TCPA), which includes obtaining prior express written consent for marketing messages and honoring opt-out requests promptly.

  • CAN-SPAM Act Compliance: All SMS communications must comply with the CAN-SPAM Act by including an opt-out mechanism and ensuring that messages are not misleading or deceptive.

  • GDPR Compliance (if applicable): For individuals in the European Union or other regions subject to GDPR, ensure that SMS communications are in line with GDPR principles, including transparency, data subject rights, and lawful basis for processing.

6. Monitoring and Auditing

  • Monitoring: Regular monitoring of SMS communication practices will be conducted to ensure compliance with this policy and applicable regulations.

  • Auditing: Periodic audits will be conducted to verify that consent is being properly obtained, data is being appropriately handled, and opt-out requests are being honored.

7. Employee and Contractor Responsibilities

  • Training: All employees and contractors involved in SMS communications must be trained on this policy, data privacy laws, and security best practices.

  • Reporting Issues: Any potential privacy or security issues regarding SMS communications must be reported promptly to the designated compliance officer or team.

8. Policy Review and Updates

This policy will be reviewed annually or whenever there is a significant change in applicable laws or business practices. Any updates or revisions to the policy will be communicated to all relevant stakeholders.

9. Contact Information

For questions or concerns about this policy, or to exercise your privacy rights, please contact [Insert contact information, such as a dedicated privacy email or phone number].

This SMS Privacy Compliance Policy ensures that all SMS communications are conducted in a manner that respects the privacy rights of individuals and complies with relevant regulations.

Essential Lawn & Landscaping Logo

336-223-3951

©2025 by Essential Lawn Care & Landscaping.

bottom of page