Both the Communications Act and the Commission’s rules require telecommunications carriers, and interconnected providers of Voice over Internet Protocol (VoIP) services, to protect “customer proprietary network information,” or CPNI. CPNI includes some of the most sensitive personal information that carriers and providers have about their customers as a result of their business relationship (e.g., phone numbers called; the frequency, duration, and timing of such calls; and any services purchased by the consumer, such as call waiting). To protect consumer privacy, the Commission’s rules require carriers/providers to file reports, annually, to certify their compliance with the CPNI rules.
The Enforcement Bureau recently took enforcement action  and proposed fines against carriers/providers failed to comply, and published an advisory  to remind carriers/providers of their obligations. To learn more about the Bureau’s activities with CPNI enforcement, click here .