Do the Shared Leads You Buy Actually Have Consent?
When you buy a shared lead, you inherit a phone number and none of the paper behind it. Here's why that gap is a TCPA and CIPA problem — and who's on the hook when a homeowner complains.
You bought a phone number, not a consent record
When a reseller sells you a lead, here’s what actually changes hands: a name, a phone number, maybe an email and a short project description. Here’s what almost never changes hands — a record showing the homeowner agreed to be called, when they agreed, and what they agreed to.
That gap is easy to ignore because the lead looks complete. It has a number you can dial. But the number is the easy part. The question that matters for your shop is the one the invoice never answers: can you prove this person consented to hear from you? With a shared lead, usually you can’t — and that’s not a paperwork nuisance. It’s the part of the transaction that carries real legal weight.
Why “the platform handled consent” isn’t your safety net
The reseller’s pitch is that consent was collected upstream, so you don’t have to worry about it. The trouble is that when a homeowner files a complaint about an unwanted call, the law looks at who placed the call.
The TCPA regulates calls and texts made with automated systems or prerecorded messages, and it generally puts the burden on the caller to show that prior express consent existed. If you’re the one dialing — or firing off an automated text — a broker’s assurance that “they opted in somewhere” is not the same as a record you can produce. You inherited the outreach risk. You did not inherit a document that proves you’re clear.
And it isn’t only about how you contact the person. Laws like California’s CIPA and newer state privacy statutes govern how the data was collected — the tracking, the forms, the disclosures on whatever site first captured that homeowner. When you buy a shared lead, you have no visibility into any of that. You’re trusting that every step upstream was done cleanly, on a lead you’ll never be able to trace.
The 4–5-pro problem makes it worse
Shared leads aren’t sold once. The same homeowner is typically resold to 4–5 contractors at the same time. Think about what that means from the homeowner’s phone: one form fill, then four or five different companies calling and texting within the hour.
Now stack the consent question on top of that volume. If the homeowner’s agreement was thin or unclear to begin with, it’s being stretched across five separate businesses, each running its own follow-up cadence. A person who feels ambushed by a wall of calls is a person who is far more likely to complain — and complaints are where TCPA exposure starts. You didn’t create the pile-up, but if you’re one of the five voices, you’re one of the five names attached to it.
The reseller’s incentive is to sell that lead as many times as it can. Your incentive is to contact people who actually want to hear from you. Those two incentives don’t line up, and the $7.2 million FTC consent order against HomeAdvisor — over how it marketed the quality and source of its leads — is a reminder of what happens when the seller’s claims and the underlying reality drift apart.
What “consent you can hold” actually looks like
The alternative isn’t to stop generating leads. It’s to change who holds the proof.
With a consent-first approach, the homeowner becomes a lead on your own site. They land on your page, a clear consent banner asks permission, and only after they affirmatively agree do they become a named contact you can reach. The difference from a shared lead is not subtle:
- You hold the record. The agreement is timestamped and logged, so if anyone ever asks whether the homeowner consented, you have the answer in your own hands — not a broker’s.
- You know the source. The lead came from your website, from a visitor who was already looking at your work. There’s no mystery upstream form, no data of unknown origin.
- Follow-up is by email, not a cold call. A consent-first lead is email-grade and lands in the funnel you already run. You’re not auto-dialing a stranger; you’re emailing someone who raised their hand on your site, which is a materially calmer posture under the TCPA.
That’s the whole point of building compliance into the capture rather than bolting it on after you’ve already bought the risk.
Run the compliance check before you run the numbers
Contractors usually compare lead channels on price and volume. Add one more column before you buy: can I prove consent for this lead, and do I hold that proof myself?
- Ask the reseller for the consent record — the actual document, not a policy page. If they can’t hand you a timestamped record tied to the specific lead, you’re buying outreach risk you can’t defend.
- Ask how the data was collected. If the answer is vague, treat the state-law exposure as real. You can’t audit a source you can’t see.
- Ask how many other pros got the same lead. More buyers on one homeowner means more total outreach, which raises the odds of a complaint that lands on your name too.
- Compare it to a lead where you hold the paper. A consent-first exclusive lead is a flat $7, goes only to you, and carries a consent record you keep. Put the channels side by side on our comparison tool and weigh the risk, not just the price.
A shared lead sells you a phone number and quietly hands you the liability that comes with it. A consent-first lead sells you a contact and the proof that they agreed to be one. When a homeowner someday asks, “how did you get my information and why are you contacting me?” — one of those leads lets you answer with a record, and the other leaves you repeating what a reseller told you. Every figure behind this, sourced, is on our stats page.