CTA Website Inaccessible
Why This Rejection Happens
The vetting agent attempted to access the website URL you provided as the Call-to-Action (CTA) source but was unable to load the page. If carriers cannot verify where users opt-in, they must reject the campaign for safety reasons.
Common Triggers: 404 (Not Found) errors, 500 (Server Error), geometric blocking (blocking traffic from outside your country), or password-protected "Coming Soon" pages.
Root Cause Analysis
Primary Triggers
- Broken Link: A typo in the URL (e.g., `ww.brand.com` or `http://`) prevents the page from resolving.
- Geo-Blocking: Your website firewall blocks traffic from certain countries. Vetting agents (or bots) may be accessing from locations or IP ranges you have blocked.
- Maintenance Mode: The site is set to "Private" or "Coming Soon" during development, requiring a password that the agent does not have.
Required Elements
| Requirement | Standard | Why? |
|---|---|---|
| Public Access | No login/password | Vetting is often automated; bots cannot login. |
| Global Visibility | No IP blocking | Reviewers may be international or use VPNs. |
| Uptime | 99.9% Availability | If the site is down during the 5-minute review window, it fails. |
Step-by-Step Remediation
Test the URL Externally
Do not just click the link yourself (it might be cached). Use an external tool like "DownForEveryoneOrJustMe" or open it on a mobile device on cellular data (off Wi-Fi).
✓ Valid URL
https://www.brand.com/signup
(Loads instantly for all users)
✗ Invalid URL
http://localhost:3000
(Local development link - inaccessible to world)
Disable "Coming Soon" Mode
If you are using WordPress, Shopify, or Wix, ensure you have published the site and removed any site-wide password protection.
Check Firewall Settings
If you use Cloudflare or a security plugin, ensure you are not blocking AWS, Google Cloud, or other major ISP ranges, as vetting bots often run on cloud infrastructure.
Carrier-Specific Requirements
T-Mobile
- Vetting partners may access from outside the US. Geo-blocking non-US traffic is a common cause of rejection here.
AT&T
- Requires the privacy policy link on the site to also be functional. If the main CTA page loads but the Privacy Policy link on it 404s, the whole CTA is marked invalid.
MyTCRPlus Tools That Can Help
Website Validator
Simulates an external visit to your URL to check for HTTP status codes (200 OK vs 404/403/500) and SSL validity.
Use This Tool →Screenshot Hosting Service
If your site is truly private (e.g., employee portal), host a screenshot here instead of providing a dead link.
Use This Tool →Pre-Resubmission Checklist
- I have clicked the URL from an Incognito/Private window.
- The site loads without a password prompt.
- I have checked for typos (http vs https, www vs no-www).
- The privacy policy link on the page works.
- Geo-blocking is disabled or permissive for the review period.
Common Mistakes to Avoid
❌ Copy/Pasting Internal Links
Links like admin.shopify.com/... or docs.google.com/edit... require your login session. Ensure you submit the public-facing URL.
❌ Ignoring DNS Propagation
If you just bought the domain an hour ago, it might not be visible to the vetting agent yet. Wait 24-48 hours after DNS changes before submitting.
Expected Timeline
This guidance provides general information about 10DLC compliance requirements. Public accessibility of your opt-in mechanism is a fundamental requirement for carrier auditing. MyTCRPlus does not provide legal advisory services or regulatory representation.