FAQ: Legal & security

How do we prevent security issues and vulnerabilities in our SMS software?

What’s the right way to draw up a subscriber consent form authorising receipt of SMS?

There are two types of consent:

  1. Electronic, in the form of a record in the information system database. In this case, the user accepts the contract offered and agrees to receive SMS. If the mobile operator or regulator requests additional information, we also recommend recording the following parameters; exact registration time, client IP address, browser name, user language and device type. Please note that the user must explicitly agree to receive SMS messages. They also must have the opportunity to familiarise themselves with the contract before accepting it.
  2. Written, in a completed form. It’s important that the form includes the clients’ data, allowing the creation of a unique identity for them with their full name, date of birth, phone number, email and address. There must be a date and signature.

What if I don’t have a subscriber’s consent to send them SMS?

If you don’t have a subscriber’s consent to receive messages from you, we strongly recommend that you start obtaining it immediately. If you send SMS to subscribers without their consent, then you run the risk of restrictions and fines being imposed on you by the regulator or mobile operator should recipients complain

Do SMS campaigns break the law and constitute spam?

Sending SMS to subscribers is legal if they have consented to you sending them content via this digital channel and if the SMS being sent are part of what can be deemed reasonable when fulfilling the needs of services requested by subscribers e.g. two-factor authentication required to complete and online transaction

Do you have a license to provide such services?

Sending SMS is not a licensed activity in the UK and EU member countries.

What types of SMS are prohibited?

Intis Telecom prohibits the sending of any kind of spam i.e. messages that a user is not expecting to receive and for which they have not expressly consented to receiving. Additionally, should the message include the likes of a call to action deliberately misleading the recipient, this constitutes fraud. Intis Telecom has the right to suspend any user’s account where cases of the sending of suspicious or unlawful content using the SMS messaging service is identified. Should it be required, we may transfer data about the violator to law enforcement agencies, regulators and other official bodies bound by the prevailing regulations of the countries the content is either originated or received in.

How confidential is my and my subscribers’ own data?

Contact details are kept strictly confidential. We don’t transfer, rent or sell the phone number information of our clients or their own customers downstream. Only the account owner has access to the data, including contacts. For additional security, we provide the following functionality:

  • restricted access to your personal account from certain IP addresses
  • ability to restrict the display of SMS in your personal account whether sent via API or SMPP
  • two-factor authentication

Where is my data kept?

When you create an account, we store your information on our secure servers which are co-located in date centres in Frankfurt and London. With 1 Gbps bandwidth access, uptime of 99.9%, daily back-ups and encryption of your data using the AES strong encryption algorithm, we have you truly covered

Sign Up