Client Advisory Sign-up
CommLaw Group Resources
CPNI Compliance Manual

Click image to view Sample


We offer a number of very helpful guides and manuals. Click here to view all of our resources.
What our Clients say...
"I have been extremely satisfied with our attorney and the entire CommLaw Group team; very professional, responsive, and great advice. I recommend you any chance I get. I really like your focus and how you can offer more than just pure legal advice (like the CPNI audits, Compliance and Reporting, etc.). These other value added services go beyond pure legal advice and make me think of your company more as a partner that can help me in many areas, with the right expertise at the right time."
"We are very satisfied with your firm's service and that is reason enough for us to keep on engaging your firm for any legal questions that we may have regarding telecom services. Your team's response time is great."
"I think you guys are night and day to the representation we have had in the past and I enjoy that I get answers that are thoughtful and well educated."
"We are definitely happy with your firm's services. It is as if you are an internal department of our company to whom we refer all telecom-related matters."
"Not a month goes by that I don't refer someone to your firm, which is the highest compliment that I can make... I am looking forward to continuing our long and mutually beneficial relationship."
"You all have been a real joy to work with, and I thank God every day for your competence, dedication, trust, guidance and counsel."
"We are against the government and high profile professionals, but... we will definitely win the case based on your support. Allison, Jackie, and [Chuck] have been doing a great job. Thank you always..."
"We hired Jonathan to represent our telecommunications licensing needs. At the time we were a start-up company with only a small amount of investment revenue. Attorney costs could have been enough to rethink the business plan. Jonathan worked with us on a payment plan basis which allowed us to focus on getting customers while he worked on getting us our licenses. He provided introductions to companies we eventually hired to assist us with tax issues and other FCC requirements. When we were interested in selling our company Jonathan made introductions to other telecom companies that were in the market for our type of company. He managed the contract process at every level through the acquisition. The best recommendation I can give is that when I go to do this again I will hire Jonathan."
"Jonathan is well-versed in a broad range of telecom regulatory matters. He uses his expertise to arrive at innovative, real-world business solutions while maintaining a high degree of professionalism."
"Jonathan is extremely knowledgeable in his field. He has provided invaluable telecom expertise to us and our subsidiary company on countless occasions. We would be lost without him. I highly recommend Jonathan!"
"Jonathan['s firm] was able to provide our ISP association with fresh responses to the RBOC FCC petitions as opposed to the boilerplate comments most law firms offered. Jonathan has a good understanding of the industry and how things work at the FCC."
—COO of a leading virtual
system company
—President of US operating
unit of foreign PTT
—CEO and Founder of a
nationwide Hosted
VoIP provider
—Senior Director of Telecom
of US operating unit
of international multi-media
conglomerate
—President & CEO of
regional CLEC
—Founder/CEO of enhanced
international communications carrier
—Controller of leading
provider of long distance,
wireless, point-of-sale and
carrier services
—Founder/CEO of
regional CLEC
—Vice President of
leading provider of
long distance, wireless,
point-of-sale and carrier
services
—CFO of enhanced
conferencing solutions
provider
—Member, Federation of
Internet Solutions Providers
of the Americas
Contact Information

Marashlian & Donahue, LLC

The CommLaw Group
1420 Spring Hill Road
Suite 401
McLean, Virginia 22102

Telephone: (703) 714-1300
Facsimile: (703) 714-1330

E-mail: mail@commlawgroup.com
Annual CPNI Certification due by March 1st
02/17/2010

Customer Proprietary Network Information ("CPNI") Certifications must be filed with the FCC by March 1st.

Under the FCC's rules, all providers of telecommunications and interconnected VoIP services must file a CPNI Certification with the FCC.  The Certification must contain a statement of compliance which: (a) describes, in detail, the policies and procedures a service provider has instituted to safeguard CPNI and (b) reports any instances of CPNI-related breaches during the past year.

Before filing the CPNI Certification, all affected service providers must ensure that they are in full compliance with the FCC's CPNI rules.  This includes adopting stringent internal procedures safeguarding the use of and access to CPNI, among other things.

To avoid a wasteful and disruptive FCC investigation or enforcement action, all affected service providers are advised to file a CPNI Certification with the FCC, even those providers who lacked access to and/or did not use CPNI during the past year.  If a service provider is registered with the FCC, i.e., possesses either an FCC Filer ID or FCC Registration Number, remittance of a compliant CPNI Certification is highly recommended.  Last year, the FCC's Enforcement Bureau released an Omnibus CPNI Notice of Apparent Liability finding over 660 service providers apparently liable for fines of up to $20,000; the majority of these investigations remain open. 

CLIENT ACTION ITEMS:

In anticipation of the March 1st deadline, our firm advises all clients providing telecommunications and interconnected VoIP services to review internal policies regarding the protection of CPNI.  Since CPNI Certifications must be signed by an officer of the company, under penalty of perjury, all clients are advised to conduct an internal review to validate compliance with the FCC's CPNI rules before we execute and file a CPNI Certification with the FCC.

Clients who have not authored a CPNI Certification this past year should contact our firm as soon as possible so we can conduct an audit, prepare, and file a comprehensive, fully-compliant CPNI Certification  (See CPNI Audits below).

C&R Services Subscribers: Clients currently subscribed to the firm's Compliance & Reporting Service ("C&R Service") will be contacted shortly to prepare a CPNI Certification.  C&R Service clients who have questions about CPNI compliance, or would like to schedule an audit, should contact Chris Canter directly at cac@commlawgroup.com or by telephone: 703-714-1308.

Non-Subscribers: Clients not currently subscribed to C&R Services, but who require assistance with the preparation and filing of the CPNI Certification, may contact either Jonathan Marashlian at jsm@commlawgroup.com or Chris Canter at cac@commlawgroup.com to schedule an audit and make appropriate arrangements to ensure timely filing.

CPNI AUDITS

If you are uncertain about the FCC's CPNI Rules or the specific steps your company must take to ensure compliance, our firm is available to assist.  The CommLaw Group routinely conducts audits of our clients' CPNI protection and use procedures.  Our standard legal fee schedule for performing a CPNI Compliance Audit is set forth below:

 CPNI Compliance Audit Legal Fee Schedule   

First-Time CPNI Compliance Audit: $500 - $1,500[1]      

 Refresher CPNI Compliance Audit:  $250 - $500
 (available to existing clients on whose behalf  The CommLaw Group 
  conducted a 2008 Audit)

A CPNI Compliance Audit will not only confirm your company's compliance during the prior calendar year or identify areas that require further attention prior to the filing of a CPNI Certification,  an Audit will also ensure full compliance with the FCC's CPNI rules in future years, thereby making future annual reviews easier, faster, and less costly.     

ENFORCEMENT PENALTIES

The FCC's CPNI regulations must be taken seriously.  Over the past several years, the FCC issued several forfeitures in excess of $100,000 against carriers for allegedly failing to comply with existing CPNI requirements.  Last year, over 660 service providers were fined $20,000 each, and several dozen more were fined between $2,000 and $6,000 for a variety of minor deficiencies. 

Our firm expects that the FCC will continue to monitor CPNI compliance just as stringently in the upcoming year. For this reason, all companies providing telecommunications and interconnected VoIP services should file a fully-compliant CPNI Certification in a timely manner.

ADDITIONAL BACKGROUND INFORMATION:

Definition of CPNI

Under federal law, CPNI is certain customer information obtained by a telecommunications provider during the course of providing telecommunications services (including interconnected VoIP) to a customer.  This includes information relating to the quantity, technical configuration, type, destination, location, and amount of use of a telecommunications service subscribed to by any customer of a telecommunications carrier.

Examples of CPNI include information typically available from call detail records ("CDRs"), such as the types of services purchased by a customer, numbers called, duration of calls, directory assistance charges, and calling patterns.  CPNI does not include names, addresses, and telephone numbers, because that information is considered subscriber list information under applicable law.

CPNI Protection Procedures

Under the FCC's rules governing CPNI, all providers of telecommunications services and interconnected VoIP service providers are required to file a CPNI Certification with the FCC annually.  The CPNI Certification must outline all the steps a service provider took during the previous year to prevent unauthorized access to CPNI.  Specific CPNI protection procedures include, but are not limited t

  • Enacting strict controls regulating the use of and access to CPNI 
  • Notifying customers about access to CPNI
  • Training employees about safeguarding CPNI
  • Protecting CPNI used in sales and marketing campaigns
  • Notifying the FCC and law enforcement agencies of unauthorized CPNI access
  • Establishing "opt-in/ opt-out" procedures for the use of CPNI by third parties

Affected service providers must also inform the FCC about any instance of unauthorized access to CPNI and formal procedures taken to prosecute "pretexters," or third parties who attempt to illegally gain access to customer information.

The CPNI Certification must be signed by a corporate officer, attesting that the officer has personal knowledge that the company has established adequate operating procedures to ensure CPNI compliance.                

[1] Fees based on good faith estimates; actual cost may vary slightly depending on the size and scope of each particular client's organization and circumstances revealed during the audit process.