What Is A2P 10DLC?
A2P 10DLC is a mandatory U.S. carrier registration system for businesses sending text messages. It verifies who is sending SMS (brand registration) and what they're sending (campaign registration). Every business texting U.S. phone numbers — including GoHighLevel agencies — must complete A2P registration or their messages will be blocked by carriers.
A2P stands for Application-to-Person. 10DLC stands for 10-Digit Long Code — the standard local-looking phone numbers businesses use for SMS. The registration system was built by U.S. carriers to verify who is sending and what is being sent before allowing traffic through their networks.
The process has two layers:
Brand Registration
Verifies your company identity — legal name, EIN, address, website. Tells carriers who you are.
Campaign Registration
Describes exactly what types of messages you'll send and how you collected consent. Tells carriers what you're sending and why.
Most rejections don't happen at Brand Registration. They happen at Campaign Registration — because opt-in forms, privacy policies, and terms of service don't match what carriers require. The rest of this guide covers exactly what they're looking for.
Note for GoHighLevel users: Hot Prospector enforces TCPA compliance at the session level inside GHL — color-coding calling hours by timezone and building compliance gates into campaign workflows. Once your A2P registration is approved, your SMS follow-up sequences run automatically. This guide gets you to that point.
What Does a Compliant A2P Opt-In Form Require?
A compliant A2P opt-in form requires two separate, unchecked consent checkboxes — one for marketing messages, one for non-marketing — both with specific carrier-required language. Consent must remain optional even when the phone field is required. Privacy Policy and Terms & Conditions links must appear in the footer.
Your opt-in form is the most scrutinized part of your submission. Carriers want proof that your contacts explicitly agreed to receive messages — and that the form itself gives them a real, unconstrained choice.
Two Separate Checkboxes: Marketing vs. Non-Marketing
You must have two distinct, independent consent checkboxes — one for marketing messages and one for non-marketing messages. Contacts must be able to opt into one, both, or neither. A single combined checkbox will get you rejected.
Marketing checkbox — exact language required:
Required Language
I consent to receive marketing text messages, about special offers, discounts, and service updates, from [BUSINESS NAME] at the phone number provided. Message frequency may vary. Message & data rates may apply. Text HELP for assistance, reply STOP to opt out.
Non-marketing checkbox — exact language required:
Required Language
I consent to receive non-marketing text messages from [BUSINESS NAME] about [SPECIFIC USE CASE — e.g., appointment reminders, booking confirmations]. Message frequency may vary. Message & data rates may apply. Text HELP for assistance, reply STOP to opt out.
Your Business Name
Request a Free Consultation
SMS Consent (Optional)
No Pre-Selected Checkboxes
Consent checkboxes must arrive unchecked. The person filling out your form must manually check the box — that's what "affirmative action" means in carrier compliance language. Pre-checking a consent box is an automatic rejection trigger and may result in your numbers being flagged entirely.
Consent Is Always Optional — Even When Phone Is Required
If your form has a required phone field, that's fine. But the consent checkbox must still be optional. A person must be able to submit the form with their phone number without agreeing to receive texts. You cannot block form submission based on whether someone checked the SMS consent box.
After submission, you can only contact them through channels they actually consented to. Phone number captured but no SMS consent checked? Call them. Don't text them.
Does Your Campaign Description Need to Match Your Opt-In Form?
Yes. Your A2P campaign description and opt-in checkbox language must align exactly. If your campaign says "appointment reminders," your non-marketing checkbox must say "appointment reminders" — not just "non-marketing messages." Mismatched language is one of the most common campaign rejection reasons during Twilio review.
Your Campaign Registration includes a description of the types of messages you'll send. Carriers will compare that description against your consent checkboxes word for word.
Campaign description says "appointment reminders" but the opt-in checkbox just says "non-marketing messages." Too vague. Doesn't match.
Campaign description says "appointment reminders" and the opt-in checkbox says "appointment reminders and booking confirmations." Specific. Matches.
What Links Must Appear in Your A2P Form Footer?
Every form collecting phone numbers must include two visible, clickable links in the footer: a Privacy Policy link and a Terms & Conditions link. Both must be accessible before the form is submitted. Links hidden behind popups, overlays, or a logged-in view will result in A2P rejection.
This applies to all forms — landing pages, GHL funnels, booking pages, website contact forms, everything.
Privacy Policy link
A direct, clickable link. Not a tooltip. Not buried in the fine print. Visible before the person submits.
Terms & Conditions link
Same as above. Must be accessible before form submission — not gated behind account creation.
No obstructions
Legal links cannot be hidden by a popup, overlay, chat widget, or sticky header. They must be clearly visible.
© 2026 Your Business Name LLC. All rights reserved.
What Must Your Privacy Policy Include for A2P Approval?
Your Privacy Policy must include a non-sharing clause stating that no mobile information will be shared with third parties for marketing purposes. It must never mention buying, selling, or affiliating with lead data. All contact information in the policy must exactly match your Brand Registration.
Your Privacy Policy must do more than exist — it must say the right things. Carriers and Twilio reviewers read it. These are the non-negotiable requirements:
No Mention of Selling, Buying, or Sharing Leads
If your Privacy Policy mentions lead affiliation, lead sharing, or buying/selling lead data in any context — even to say you don't do it poorly — it will get flagged. Keep lead-commerce language out of it entirely.
Required Non-Sharing Clause
This exact language, or language to this effect, must appear in your Privacy Policy:
Required Language
No mobile information will be shared with third parties/affiliates for marketing/promotional purposes. Information sharing to subcontractors in support services, such as customer service, is permitted. All other use case categories exclude text messaging originator opt-in data and consent; this information will not be shared with any third parties.
What Clauses Must Your Terms of Service Include for A2P?
A2P-compliant Terms of Service must include five clauses: a business identity statement, opt-out and support instructions (STOP/HELP keywords), a carrier liability disclaimer, a message frequency disclosure, and a cross-link to your Privacy Policy. Missing any one of these is a common rejection trigger.
Not paraphrases. Not vague references. The actual substance of each clause, in plain language — verified against carrier requirements.
1. Business Identity Clause
State your business name and give a brief description of the types of messages subscribers will receive. This tells users who they're hearing from and why.
2. Opt-Out & Support Mechanism
Users must be told exactly how to stop messages and how to get support. Here is the required substance:
Required Language
You can cancel the SMS service at any time. Just text "STOP" to the phone number. After you send the SMS message "STOP" to us, we will send you an SMS message to confirm that you have been unsubscribed. After this, you will no longer receive SMS messages from us. If you want to join again, just sign up as you did the first time and we will start sending SMS messages to you again. If you are experiencing issues with the messaging program you can reply with the keyword HELP for more assistance, or you can get help directly at [support email address or toll-free number].
3. Carrier Liability Clause
This one is short but required word-for-word:
Required Language
Carriers are not liable for delayed or undelivered messages.
4. Message Frequency Clause
Required Language
Message and data rates may apply for any messages sent to you from us and to us from you. You will receive [message frequency — e.g., "up to 4 messages per week" or "messages as needed related to your account"]. If you have any questions about your text plan or data plan, it is best to contact your wireless provider.
5. Privacy Policy Cross-Link
Your Terms of Service must link back to your Privacy Policy:
Required Language
If you have any questions regarding privacy, please read our privacy policy: [link to privacy policy]
How Does A2P Registration Work for DBA Businesses?
If you operate under a brand name different from your legal EIN name, declare the DBA relationship explicitly in your campaign description, on your website header or footer, and throughout your Privacy Policy and Terms. Use the format: [Legal Name] DBA [Brand Name] — consistently, everywhere.
If your registered EIN is under one legal name but you operate under a different brand name, that's a DBA (Doing Business As) situation. Carriers need to see that relationship clearly documented — not buried or implied.
In your Campaign Description
Add: "We are doing DBA as [Brand Name]" explicitly in the campaign use case description.
On your website
The DBA relationship must be declared in your website's header or footer — not buried in a policy page. Carriers look at your site.
In your opt-in form
The business name in your consent checkboxes must match either the legal name or the declared DBA. Inconsistency = rejection.
In your Privacy Policy and Terms
Use the format "[Legal Business Name] DBA [Brand Name]" so every document is internally consistent.
Brand Name
A DBA of Acme Holdings LLC · EIN 12-3456789
Header shows: "by Acme Holdings LLC" — relationship is clear
Footer shows: "A DBA of Acme Holdings LLC" — reviewers can verify it
Can You Use a Subdomain for A2P Registration?
Yes, subdomains are allowed for A2P registration — but carriers must clearly see how the subdomain connects to your main brand and how users discover it. If the subdomain appears to exist only as a compliance front with no organic path to it, it will be rejected.
Subdomains like form.youragency.com are fine, but carriers need to understand two things before they'll approve them.
1. How the subdomain connects to the main brand
If your main site is youragency.com and your opt-in form is at form.youragency.com, make sure both sites visually match — same logo, same brand name, same color scheme. If they look like different businesses, expect rejection.
2. How users actually get to the opt-in page
Carriers want to see a logical path — email marketing, social posts, paid ads, or navigation from the main site. If your subdomain looks like it only exists to satisfy a compliance checkbox (with no organic traffic path), it looks like a "compliance front" and will be rejected.
Subdomain Readiness Checklist
Brand match: subdomain shares the same name, logo, and visual identity as the main domain
Discovery path: there's an obvious way users get there (ad, email, nav link) — not just a direct URL
CTIA disclosures: the opt-in page has all required consent checkboxes, footer links, and language
Use-case match: the content on the page matches the campaign use case you're registering
Why Do A2P Campaigns Get Rejected?
A2P campaigns are most commonly rejected for: opt-in forms that aren't publicly accessible, a single combined consent checkbox instead of two separate ones, pre-selected checkboxes, missing footer links, campaign descriptions that don't match checkbox language, and Privacy Policies that mention lead sharing. Most rejections are avoidable.
Opt-in form missing or not publicly accessible
Your opt-in form must be live on a public URL that carriers can visit without logging in. Forms inside a GHL funnel that's unpublished = instant rejection.
Single generic checkbox instead of two separate ones
Split marketing consent and non-marketing consent into separate checkboxes. Never combine them.
Consent checkbox is pre-selected
Uncheck it. Make users opt in manually. Check every form on every page and sub-account.
Privacy Policy or Terms & Conditions link missing from footer
Add both links to the footer of every form. Test that the links actually work and load.
Campaign description doesn't match checkbox language
If your campaign says "appointment reminders," your non-marketing checkbox must say "appointment reminders" — not just "non-marketing messages."
Privacy Policy mentions sharing, selling, or buying leads
Remove all lead commerce language. Add the required non-sharing clause verbatim.
Contact info in Privacy Policy doesn't match Brand Registration
Audit every piece of contact info. Business name, phone, email, and website must be identical across both.
DBA relationship is unclear or absent from website
Put "[Legal Name] DBA [Brand Name]" in your site footer. Don't make reviewers guess the relationship.
Campaign use case doesn't fit the business type
Match your use case to your actual business model. If you're a dental practice, register for appointment reminders — not "order updates."
A2P Pre-Submission Checklist: What to Verify Before You Submit
Before submitting A2P registration, verify: your opt-in form is publicly accessible with two separate unchecked consent checkboxes, your form footer includes clickable Privacy Policy and Terms links, your campaign description matches your checkbox language exactly, and your Privacy Policy contains the required non-sharing clause.
Opt-in form is publicly accessible (no login required)
Form has two separate checkboxes — one marketing, one non-marketing
Neither checkbox is pre-selected
Consent checkboxes are optional even when phone number field is required
Marketing checkbox includes: business name, HELP, STOP, message frequency, data rates
Non-marketing checkbox names the specific use case (not just "non-marketing messages")
Privacy Policy link is in the form footer and is clickable
Terms & Conditions link is in the form footer and is clickable
Privacy Policy contains the required non-sharing clause word-for-word
Privacy Policy does NOT mention affiliation, buying, or selling leads
Contact info in Privacy Policy matches Brand Registration exactly
Terms of Service includes all 5 required clauses
Campaign description matches opt-in checkbox language
Campaign use case makes sense for your business type
If DBA: legal name + DBA name declared in website header or footer
If subdomain: brand matches main site + discovery path is clear
Ready to put your texts to work?
Once A2P is approved, Hot Prospector handles your SMS sequences automatically inside GoHighLevel — no extra setup required.
Book a Demo