VERICODE vericode.com.au

$2,500 per call: the FCC priced identity failure now

Vericode · 3 May 2026


The FCC voted on Thursday to adopt a proposed rulemaking that puts a $2,500 base price on a single illegal call tied to an originating provider’s KYC failure. Proposed is the important word. This is not a final fine schedule landing tomorrow. It is still a sharp signal because the regulator is asking the market to think about caller-identity failure per call.

That is a different posture from broad supervision.

The proposed rules point upstream. Originating voice providers would be expected to verify customers at onboarding, re-verify them at renewal or when traffic patterns raise flags, capture more information for high-volume callers and retain records for years after the relationship ends. The provider that lets the call enter the system becomes part of the identity story.

That sits beside the FCC’s earlier call-branding work. Put together, the direction is plain enough: caller identity is not just something the recipient should figure out. It is something the originator and the display layer should help make trustworthy before the call arrives.

Australia is not there. That is not an insult. It is a description of the architecture.

The Scams Prevention Framework goes live on 1 July with banks, telcos and digital platforms in the first wave. ACMA has blocking programs, compliance work and the SMS Sender ID Register. Telcos are already doing serious operational work against scam traffic. But Australia does not currently have a per-call originator KYC price that says: this failed call can be traced to your customer due diligence and here is the base forfeiture.

There are good reasons to be cautious about copying the United States. The US voice market is different. Its robocall problem has different scale, history and technical wiring. Per-call penalties can create strange incentives if they are not calibrated well. A proposal can sound cleaner in a fact sheet than it behaves in the network.

The point is not that Australia should import the rule. The point is that the global conversation has moved.

For years, the receiver carried much of the trust burden. Did the customer answer, did the business pick up, did the bank detect the later payment, did the victim recognise the scam, did the staff member challenge the caller? The FCC’s move asks a harder upstream question: who allowed this caller into the system with that identity posture in the first place?

That question will travel.

It will travel because voice scams are getting more personal and more synthetic at the same time. Blocking suspicious volume is necessary, but it does not answer every branded, spoofed or high-context call. Payee verification protects the payment moment. SMS sender registration protects the message name. Platform enforcement protects part of the ad surface. The caller-originator layer is the next obvious pressure point.

Australia’s current model is broader and less per-call. Sector codes, regulatory supervision, blocking and registered sender IDs all matter. They may be a better fit for this market. But when an overseas regulator starts putting a dollar figure on a single failed call, Australian boards and fraud teams will eventually ask what the local equivalent is.

That does not mean the answer has to be a fine. It may be a code obligation, a procurement requirement, a telco standard, an attestation scheme, a verified call display or something quieter. But the comparison will not go away.

The FCC put a number on a single failed call. Australia has not. That is not a flaw; it is a forecast.