There’s a TCPA complaint sitting in a Virginia federal court that should be on every outbound operator’s radar — not because of the consumer who filed it, but because of who he sued.
In Lowry v. OpenAI, the plaintiff alleges he received unwanted marketing text messages from a company called Fresh Start Group, sent via Twilio-provisioned numbers, that were generated using OpenAI’s platform. So far, so unremarkable. The unusual move is that the complaint names OpenAI itself and Twilio as defendants — not just the company that actually sent the messages.
The platform liability theory
The theory: under the TCPA, you can be liable if you ’cause’ a call or text to be initiated — not just if you physically dial. The complaint argues that by providing the AI platform that generated the messages and the telephony infrastructure that delivered them, OpenAI and Twilio caused the messages and should share liability with the downstream caller.
If that theory survives — and even if it only survives early motions long enough to drive a settlement — it reshapes the TCPA risk model for every operator that uses an AI agent or a CPaaS provider in their outbound stack. Which, in 2026, is basically all of them.
The exposure math
The complaint seeks to represent a class of every U.S. consumer who received marketing messages generated on OpenAI’s platform, where the recipient’s number was on the DNC list and OpenAI did not have consent. At $500 per call with a four-year TCPA lookback, the theoretical class damages run into the trillions. That number is obviously aspirational, but it is the number plaintiff’s counsel will use at the settlement table.
Twilio is not new to this argument. The company received an FCC cease-and-desist letter in 2024 over allegedly enabling illegal robocall traffic. The platform-liability theory in Lowry didn’t appear from nowhere — it’s the legal extension of years of regulatory pressure on the infrastructure layer.
Why this matters even if you’re not Twilio or OpenAI
For operators, the practical implication is not ‘we should stop using AI or CPaaS providers.’ The implication is that the indemnity and consent structure of your vendor agreements just got a lot more important. If your CPaaS or AI vendor takes a settlement-driven hit from a Lowry-style case, every contract clause about pass-through liability, indemnity, and audit rights becomes live.
Three operator action items:
1. Read your CPaaS terms of service. Most CPaaS providers explicitly disclaim TCPA liability and push it back to the customer. That’s fine until a court holds the CPaaS provider liable anyway — at which point the disclaimer becomes a contract fight, not a liability shield.
2. Document your consent-to-platform chain. If a platform-liability case lands and the platform comes asking, you want a clean record of how every number on your campaign ended up there with consent.
3. Watch the FCC’s posture. The FCC has already issued cease-and-desist letters to infrastructure providers and has ruled that AI-generated voices are ‘artificial or prerecorded voice’ under the TCPA. The trend is toward more, not less, liability up the stack.
If you run an outbound calling or texting program, the cheapest insurance against any of this is screening your dial list before you hit send. TCPALitigatorList.com maintains a continuously updated database of known TCPA plaintiffs and serial litigators so operators can scrub their files and quietly remove the numbers most likely to turn a routine campaign into a class action. A few minutes of list hygiene beats a few months of discovery every time.
The bigger arc
The TCPA was written in 1991 for a world of human dialers calling from cubicles. The legal system has spent 35 years stretching its concepts of ‘call,’ ‘caller,’ and ‘consent’ to cover autodialers, prerecorded voice, ringless voicemail, SMS, and now AI-generated messages routed through stack-of-stack platforms.
Lowry v. OpenAI is the next chapter of that stretch: holding whoever provided the technology that caused the message, not just the entity whose name was on the customer-facing brand. Watch this case closely. Whether it wins or settles, it will move where TCPA liability lands for the next decade.
Sources
National Law Review: New TCPA Complaint Names OpenAI and Twilio
Henson Legal: OpenAI and Twilio Sued for Customers’ TCPA Violations
Lowry v. OpenAI Complaint (PDF)