149 countries · crypto-native · no KYC

SMS Opt-In and Opt-Out Message Templates That Stay Compliant

Copy-paste opt-in, confirmation, and STOP-reply wording that satisfies TCPA, CTIA, and the 2026 one-to-one consent rule. Plus the three words that turn a compliant reply into a violation.

$0.035/msg from sub-100ms median 98.6% delivered
SMS Opt-In and Opt-Out Message Templates That Stay Compliant — smsroute
$0.004
per SMS from
149
countries
60s
to first message
6
crypto rails
Compliant SMS opt-in and opt-out messages are mostly a fill-in-the-blanks job. Once you know the rules the blanks encode, three sit underneath every template here. CTIA carrier standards require you to honor STOP and HELP keywords. TCPA makes non-compliance expensive: $500 to $1,500 per message. And a rule effective January 2026 adds one-to-one consent. You cannot share or sell consent across brands, so each sender collects its own. For the authoritative reference, see the TCPA.

The rules these templates encode

What rules do SMS opt-in and opt-out templates encode?

SMS opt-in and opt-out templates encode carrier and legal rules for consent collection, STOP handling, and confirmation messages. SMSRoute’s no-KYC API lets you deploy compliant templates in minutes across 149 countries, with automatic failover and real-time DLRs to verify delivery. No identity documents needed.

Compliant SMS opt-in and opt-out messages are mostly a fill-in-the-blanks job. Once you know the rules the blanks encode, three sit underneath every template here. CTIA carrier standards require you to honor STOP and HELP keywords. TCPA makes non-compliance expensive: $500 to $1,500 per message. And a rule effective January 2026 adds one-to-one consent. You cannot share or sell consent across brands, so each sender collects its own. For the authoritative reference, see the TCPA. The full text of the TCPA is codified at 47 U.S.C. § 227. The FCC’s implementing rules are available at 47 C.F.R. § 64.1200.

Copy the templates below, swap in your details, and you clear all three.

Opt-in: the message that collects consent

What should an SMS opt-in message include to collect consent?

An SMS opt-in message must clearly state the program, frequency, and how to opt out (e.g., 'Reply STOP to cancel'). With SMSRoute, you can send opt-in templates from $0.004 per message, using custom sender IDs on request, and get real-time delivery reports to confirm consent was received.

Opt-in: the message that collects consent — comparison diagram

Consent has to be specific and logged. The opt-in confirmation (the first message after someone signs up) must name you, state message frequency, flag that rates apply, and give the opt-out path.

MyBrand: You're subscribed to order alerts. Msg freq varies. Msg&data rates may apply. Reply HELP for help, STOP to cancel.
Element Required? Why it's there
Brand name Yes Anonymous programs fail CTIA carrier review
Message frequency Yes 'Msg freq varies' or a number; missing it is a top rejection reason
Rates disclosure Yes 'Msg&data rates may apply' — expected boilerplate carriers check for
HELP + STOP Yes CTIA requires both keywords in every program
Consent log Yes (server-side) TCPA puts the burden of proof on the sender
  • Name yourself — 'MyBrand' up front. Anonymous opt-ins fail CTIA review.
  • State frequency — 'Msg freq varies' or a specific cadence ('4 msgs/month'). Silence here is a common rejection reason.
  • Include the rates line — 'Msg&data rates may apply' is expected boilerplate; carriers look for it.
  • Give both keywords — HELP and STOP, every program, no exceptions.
  • Log it — store who opted in, when, and to what wording. In a TCPA dispute the burden of proof is yours, a point our compliance checklist hammers.

Opt-out: STOP handling and the confirmation trap

How should STOP handling and opt-out confirmation work in SMS?

STOP handling must immediately process the opt-out and send a final confirmation message (e.g., 'You’re unsubscribed'). SMSRoute’s adaptive multi-route delivery ensures STOP replies are processed reliably across 149 countries, with automatic failover and real-time DLRs to confirm the opt-out was delivered.

You must recognize STOP and more. Per CTIA guidance, opt-out intent counts regardless of casing or punctuation. 'stop', 'end', 'unsubscribe', 'cancel', 'quit', and plain-language requests like 'please opt me out' all trigger it. You may send exactly one confirmation within five minutes, with zero promotional content.

MyBrand: You're unsubscribed and will get no more messages. Reply HELP or email support@mybrand.com for help.

The trap: a single upsell word in that confirmation. 'We're sorry to see you go, here's 10% off to stay!' converts a compliant acknowledgement into a TCPA-actionable marketing message sent after opt-out. The confirmation confirms. Nothing else.

And in 2026 the exits multiplied. Businesses must honor opt-out through any reasonable method: texts, email, phone, web form, chatbot, in person. Process within 10 business days, though real-time suppression is the practical standard. A STOP-only unsubscribe flow is no longer sufficient on its own.

HELP and the deploy checklist

What is the deploy checklist for HELP keywords in SMS?

The deploy checklist for HELP keywords includes: set up a HELP auto-reply with program info, test with free credits, and monitor via real-time DLRs. SMSRoute’s no-KYC API lets you deploy in minutes. Fund with crypto, get an API key, and send your first compliant message from $0.004.

MyBrand: Support at support@mybrand.com or 1-800-555-0100. Msg&data rates may apply. Reply STOP to cancel.
  1. Wire STOP suppression before launchSTOP must actually stop sends, tested per destination. This is the single most-enforced rule across every US regime.
  2. Add plain-language and multi-channel opt-outCatch 'unsubscribe', 'cancel', 'quit', and route email/web/phone opt-outs into the same suppression list.
  3. Cap the confirmationOne message, within 5 minutes, promo-free. Enforce it in code so a marketer cannot 'improve' it later.
  4. Keep consent one-to-oneUnder the January 2026 rule, never reuse consent across brands. Each sending entity gets its own opt-in record.
  5. Localize beyond the USThese templates are TCPA/CTIA-shaped. The EU and other regimes differ — pair with our GDPR consent wording and the regional compliance checklist.

One note on scope: SMSRoute is a no-KYC SMS API with crypto billing (BTC, ETH, USDT, XMR, LTC, and SOL), and no-KYC onboarding does not move any of these obligations — consent and opt-out law binds the sender regardless of provider. What we do is deliver the messages reliably once you have built the consent flow right; the OTP integration guide shows the transactional side that these marketing rules mostly exempt. SMSRoute's published route pages list delivery from $0.004/message (premium direct-carrier corridors up to $0.035) with sub-100ms median submission and ~98.6% delivered success (smsroute.cc route pages, 2026). For a detailed walkthrough of the technical setup, see the OTP integration guide at smsroute.cc.

FAQ

What must an SMS opt-in message include?
Your brand name, message frequency, a 'message and data rates may apply' notice, and both HELP and STOP instructions — and you must log who consented, when, and to what wording. Missing frequency or the rates line are the most common reasons carriers reject a program.
What words trigger an SMS opt-out?
STOP is required, but CTIA guidance says intent counts regardless of casing or punctuation, so 'stop', 'end', 'unsubscribe', 'cancel', 'quit', and plain-language requests like 'please opt me out' must all work. As of 2025-26 you must also honor opt-outs from email, phone, web forms, and other reasonable channels.
Can I send a message after someone texts STOP?
Exactly one: a confirmation, within five minutes, with no promotional content whatsoever. It may only confirm the unsubscribe. Adding any offer or upsell turns it into a marketing message sent after opt-out, which is a TCPA violation at $500-$1,500 per message.
What is one-to-one consent for SMS?
A rule effective January 2026 requiring that consent be obtained by and used for a single sender — it cannot be shared across brands or sold to third parties. Each entity that sends must collect its own opt-in from each consumer, so 'partner network' consent no longer covers you.

Send your first SMS in 5 minutes

No KYC. Pay with BTC, ETH, USDT, XMR, LTC, and SOL. Live routes to 149 countries.

Get an API key →