Walk into a gas station, grab a $30 prepaid phone off the rack, pay cash, and walk out with a working number nobody can trace back to you. That ritual — used by everyone from privacy-conscious parents to journalists protecting sources — could soon require handing over your government ID, home address, and an alternate phone number before the thing even powers on. The FCC’s new proposal, FCC 26-27, would make that the law.
What the FCC Actually Wants From You
Every company that puts a call on the public phone network would face the same sweeping identity requirements under this proposal.
Mobile carriers, landline providers, VoIP services, and prepaid phone sellers are all covered. The Further Notice of Proposed Rulemaking, adopted unanimously on April 30, 2026, converts broad KYC principles into hard obligations. Here’s what providers would need from you before activation:
- Your name, physical address, government-issued ID number, and an alternate phone number — collected before service turns on
- Verification of that data, not just collection
- Records retained for four years after your service ends
- Re-verification triggered by “red flags” like unusual call volumes or cryptocurrency payments
- A proposed $2,500-per-call fine for providers who skip these steps
The FCC frames this as a robocall killer. Banking groups point to nearly $200 billion in annual fraud losses, according to the American Bankers Association — and phone scams are genuinely devastating. But privacy advocates note that most illegal robocalls originate internationally, and fewer than half of U.S. telecoms have fully implemented STIR/SHAKEN, the existing caller authentication standard built specifically for this problem. The FCC hasn’t finished deploying the targeted fix it already has. “Americans should not have to sacrifice their privacy because the Commission hasn’t exhausted more targeted alternatives to stop robocalls.” — EFF and ACLU joint filing.
The people least able to fight this rule are the ones who need anonymity most. Domestic-violence survivors, trafficking victims, whistleblowers, journalists protecting sources — and roughly 15 million U.S. adults without a driver’s license, disproportionately Black and Hispanic Americans, people with disabilities, and lower-income households. An ID requirement for basic phone service doesn’t inconvenience criminal networks nearly as much as it blocks the people the system should protect.
Storing Your ID With Companies That Can’t Keep Secrets
The FCC wants telecoms to hold your most sensitive data — the same companies with a proven record of losing it.
The security irony here is hard to ignore. AT&T lost 109 million customer records in 2024. Comcast’s Xfinity division exposed 36 million accounts the year before — both figures cited by security researcher Bruce Schneier on his blog. Requiring telecoms to warehouse government ID numbers and home addresses for every customer creates what Schneier calls a high-value, single point of failure. It’s like giving your spare house keys to someone who locks themselves out on a weekly basis and calling it a security upgrade.
Public comments closed June 25; reply comments are due July 27. Critical definitions — what legally counts as a “physical address,” whether P.O. boxes qualify, how exemptions might work for vulnerable populations — remain unresolved. The FCC hasn’t finalized anything yet, and those gaps are exactly where public input can still matter. Your window to shape this rule is short, and the stakes for everyday anonymity are very real.




























