Wholesale VoIP Compliance

Compliance built into every US route.

STIR/SHAKEN attestation, FCC robocall mitigation, KYC controls, and audit-ready reporting — wired into every Teloz wholesale route.

STIR/SHAKEN-signed
RMD-registered
SOC 2 Type II
24/7 SOC monitoring
01
Step 01
Lost interconnection

Tier-1 carriers block your traffic without notice — no warning, no grace period.

02
Step 02
FCC forfeitures

Penalties routinely run into the tens of millions of dollars per violation.

03
Step 03
State AG litigation

Consumer class-actions and attorney general enforcement compound financial exposure.

04
Step 04
RMD removal

Your traffic stops landing — it's an operational penalty that hits before any court date.

Why It Matters

The US voice framework has no soft landings.

The TRACED Act, FCC call-authentication mandates, the Robocall Mitigation Database, and state AGs set hard requirements for every carrier that originates, terminates, or transits a US call.

Teloz builds compliance into the core of every US route — so you grow inside every regulatory boundary.

Falling short is no longer a written warning. Lost interconnection, FCC forfeitures, and RMD removal are operational — they stop your traffic before your legal team finishes reading the notice.

STIR/SHAKEN
STIR/SHAKEN · SBC Layer
Live
Attestation distribution · US routes
AFull Attestation
87%
BPartial
10%
CGateway
3%
PASSporT tokens signed at SBC · iconectiv STI-PA
FCC-mandated framework
Decides “Verified” vs filtered on every call

Attestation on every call

Full Attestation by Default

KYC-verified customers receive Level A — the highest trust rating — ensuring calls ring as Verified downstream.

PASSporT Token Signing

Generates cryptographic PASSporT tokens and attaches STIR/SHAKEN signatures at the SBC layer on every call.

Inbound Signature Validation

Validates attestation on inbound calls and surfaces verified caller data directly in your CDR records.

iconectiv STI-PA Enrolled

Signs through CA partners enrolled with the FCC-authorized STI Policy Administrator — full chain of trust.

Robocall Mitigation

FCC Robocall Mitigation and RMD Registration

Carriers not listed in the RMD lose downstream connectivity. The penalty is operational, not just financial.

Step 01

RMD filed and renewed automatically.

Teloz handles FCC Robocall Mitigation Database registration, publishes a written mitigation plan, and files the annual renewal — no carrier action required.

Step 02

Every call analyzed in real time.

A velocity engine watches calls-per-second, destination concentration, and spoofing signatures. ML models trained on CDR data flag anomalies within minutes.

Step 03

Route blocks trigger in seconds.

When patterns match known robocall campaigns, traffic auto-pauses and routes to SOC review — with full CDR provenance for dispute resolution.

KYC & Fraud Protection

KYC Controls and Real-Time Fraud Detection

The TRACED Act requires carriers to verify every customer. Teloz adds real-time fraud detection on top.

KYC workflow at onboarding

TRACED Act compliant
1Business registration and tax ID verification.
2Beneficial ownership disclosure.
3OFAC, EU, and UK HMT sanctions screening.
4Number-ownership verification via Letter of Authorization.

Real-time fraud detection

Sub-second response
Velocity engine — calls-per-second by customer.
Destination concentration and sudden-shift alerts.
IRSF signature detection.
PBX hacking, bypass fraud, and CLI spoofing matching.
Automatic rate limits within seconds of confirmed events.
$39B

Global telecom fraud estimated annually by the CFCA — IRSF is the largest single category. Active detection stops six-figure losses before monthly billing catches them.

Audit & Security

Audit-ready reporting and data privacy

Compliance is judged by what you can prove. Teloz retains the records and gives you self-serve reporting.

Immutable Record Retention
CDRs · Signing logs · KYC · Fraud events
Healthy
CDRs & signing logs
STIR/SHAKEN, KYC, fraud events, routing decisions
FCC
FCC-required retention
Stored well beyond the mandated window
Immutable
Self-serve exports
PDF, CSV, or JSON via portal — any time window
On-demand
Self-serve export via portal · PDF · CSV · JSON · any time window
Privacy & Security Stack
Certifications and active controls
GDPREU data
SOC 2 IIInfrastructure
TLS / SRTPSignaling
Hardened SBCsTopology
DDoS scrubNetwork edge
ISO 27001InfoSec
Pen testingRegular
24/7 SOCAlways-on
Daily Operations

Compliance is not a project. It's daily operations.

A dedicated team runs compliance tasks on a fixed cadence — so nothing slips between audits.

Compliance Operations
6 active processes · Teloz Compliance Team
All systems operational
Cadence
Task
What it covers
Status
Continuous
FCC & ATIS rule monitoring
Platform policy updated within hours of any rule change
Continuous
Fraud detection & route blocking
Velocity engine + ML models — rate limits triggered in seconds
Daily
STIR/SHAKEN certificate signing
Every outbound call signed via iconectiv STI-PA enrolled CA
Quarterly
KYC refresh
Customers re-verified against OFAC, EU, and UK HMT lists
Annual
RMD renewal filing
FCC Robocall Mitigation Database certification handled automatically
On demand
Dispute resolution via SBC logs
Signing records surface call provenance in minutes, not days
Last policy update: < 2 hours ago · FCC ATIS publication digestCompliance status: healthy
Compliance FAQ

The short answers.

Common questions from resellers, ITSPs, and enterprise carriers evaluating wholesale VoIP compliance.

STIR/SHAKEN attaches a cryptographic signature to every IP-originated call. Level A means full verification, B means partial, C means gateway pass-through. US customers passing KYC and number-ownership checks should receive A — anything lower risks downstream filtering.

Yes. Every US voice service provider must file its own RMD entry. Teloz registers its own platform and helps wholesale customers prepare and file theirs as part of onboarding.

We apply velocity and pattern analysis to every call — calls per second, destination concentration, short-duration spikes, premium-rate dial patterns, off-hours traffic. Anomalies trigger automatic rate limits and SOC review with sub-minute response.

CDRs, STIR/SHAKEN signing logs, KYC records, fraud-event timelines, and routing decisions are stored in immutable archives. Customers self-serve compliance reports via the portal in PDF, CSV, or JSON.

Standard onboarding takes 3–7 business days, including KYC review, RMD assistance, STIR/SHAKEN certificate provisioning, and route testing. Enterprise accounts with enhanced due diligence take 2–3 weeks.

Ship compliant from day one. No extra setup required.

STIR/SHAKEN, RMD registration, KYC controls, and audit-ready CDR retention — built into every Teloz wholesale route.

STIR/SHAKEN A-levelRMD registration includedKYC & fraud detectionAudit-ready archive