Fronter Perimeter: The Regulatory Line in Nearshore Voice (2026)

What is the fronter perimeter?

The fronter perimeter is the boundary between pre-licensed pre-qualification work (which can legally happen with nearshore agents) and licensed activity (which must stay with US-licensed staff). When the perimeter is drawn correctly, most regulated voice volume moves nearshore at Caribbean prices without touching the regulated layer. Inside the perimeter sits intent confirmation, basic eligibility, T-65 outreach, FNOL intake, validation-notice scripting, scripted information, and the warm-transfer setup. Outside the perimeter sits enrollment, binding, settlement, plan recommendation, premium quotes, clinical advice, and anything else that requires a credential the fronter does not hold.

The concept is not new in spirit. Every regulated-vertical outsourcing program in the United States has implicitly drawn some version of this line. What is new in 2026 is that buyers and procurement teams now need a single phrase to describe it, because the same line shows up in five regulatory frameworks (CMS MCMG, FDCPA Section 805, state DOI plus NAIC, HIPAA, FCC CG Docket 02-278) with five different statutes, five different agencies, and five different credentialing rules. Without a unified name, every scoping conversation starts from scratch. With one, the conversation becomes a checklist.

This pillar consolidates the perimeter concept across Medicare AEP, debt collection, insurance, healthcare, and TCPA outbound. It walks the regulators (CMS, CFPB plus state collection bodies, state Department of Insurance and NAIC, HHS Office for Civil Rights under HIPAA, FCC) and shows what activity sits inside the perimeter versus outside in each one. It describes the warm-transfer architecture that lets a nearshore room hand the call to the licensed US closer without the closer losing context. It lays out the cost-and-risk math that makes the perimeter the central scoping decision in any compliant program. And it names the four scoping mistakes we see most often. The companion procurement-side breakdown is in fronter vs licensed agent: the regulatory line, and the activity-level breakdown is in the fronter scope matrix 2026.

The regulatory layers that define the perimeter

Five regulatory frameworks set the perimeter for nearshore voice. Each draws the line slightly differently, but the structural pattern is identical: a fronter step inside the perimeter, a licensed step outside, a warm transfer between them. Procurement and general counsel teams should walk all five before scoping any nearshore voice contract.

CMS MCMG (Medicare Communications and Marketing Guidelines)

For Medicare Advantage and Part D, the perimeter sits on the CMS MCMG line. Fronter scope: T-65 outreach to consumers approaching age 65, plan-comparison setup (confirming the consumer wants to compare plans without naming carriers or quoting benefits), AEP intake during the October 15 to December 7 election window, scripted CMS-approved language, basic eligibility verification (age, ZIP, dual-eligible status flag), consent capture, warm-transfer setup. Licensed scope: enrollment submission, binding the consumer to a plan, plan recommendation, naming specific carriers, premium and copay discussion, formulary lookup. Every party making plan-specific statements must hold AHIP certification plus applicable state insurance licensing. See Medicare AEP outsourcing 2026 for the full operational pattern and CFG Medicare services for the fronter-only scope CFG runs.

FDCPA Section 805

For consumer debt collection, the perimeter sits on FDCPA Section 805 plus applicable state collection-license statutes. Fronter scope: first-party verification of contact (confirming the right person is on the line under Section 805 location-information restrictions), validation-notice scripting, scripted information presentation, warm-transfer setup. Licensed scope: third-party collection, settlement negotiation, payment plan binding, hardship-discount approval, any binding statement about the debt. Several states (including New York, Massachusetts, California, and others) require an active state collector license on the licensed side. See CFG debt collection services for the fronter-side scope CFG operates.

State Insurance Department rules (state DOI plus NAIC)

For health, life, property and casualty, and other lines of insurance, the perimeter sits on the state Department of Insurance plus NAIC Producer Licensing Model Act line. Fronter scope: pre-qualification on auto, home, or health (intent confirmation, basic eligibility, prior-coverage status), intake of claim notice (FNOL) where the carrier permits non-licensed intake, scripted information presentation, warm-transfer setup. Licensed scope: binding coverage, quote-to-policy conversion, advice on coverage adequacy, product recommendation, rate quoting. Each state issues the license under its own adoption of the NAIC model act, and the NAIC reciprocity framework allows non-resident licensing across states. See CFG insurance services.

HIPAA (covered entity vs business associate)

For healthcare programs that touch protected health information (PHI), the perimeter sits on the HIPAA covered-entity vs business-associate line under 45 CFR Part 164. Fronter scope: intake of demographic and contact information, appointment scheduling, payment-status questions that do not disclose clinical detail, scripted information delivery within the bounds of a business associate agreement (BAA). Licensed scope: clinical advice, treatment decisions, ePHI handling beyond the BAA scope, anything requiring a covered-entity provider's judgement. The fronter is a business associate when handling PHI on behalf of a covered entity client and operates under a BAA, encryption controls, audit logs, and breach-notification flow-down. See CFG customer support outsourcing for the operational controls CFG runs for healthcare programs.

TCPA plus FCC CG Docket 02-278

For any outbound voice campaign (regardless of vertical or license), the TCPA framework under FCC CG Docket 02-278 sits on top of the vertical-specific perimeter. This rulemaking docket implements the Telephone Consumer Protection Act and governs how outbound calls must be placed, identified, consented, and disclosed. The September 2024 declaratory ruling added explicit offshore-disclosure obligations to calls originating outside the United States. Applies to all outbound, regardless of license: caller identification, consent capture, do-not-call honor, time-of-day restrictions, offshore-origination disclosure where applicable. The vertical-specific licensing perimeter (CMS, FDCPA, state DOI, HIPAA) governs what can be said once the call connects. See the FCC CG Docket 02-278 compliance checklist and the broader TCPA compliance call center outsourcing guide.

Why drawing the perimeter at the right place matters

The perimeter is both a cost lever and a risk lever. Get it right and a program runs cheaper and cleaner. Get it wrong in either direction and the buyer pays for it twice: once in dollars, once in enforcement risk.

Cost-per-call math. An onshore licensed agent in a regulated vertical runs 42 to 60 dollars per hour fully loaded depending on credential mix, benefit load, and US wage zone. A Caribbean or Latin American nearshore fronter runs 14 to 22 dollars per hour fully loaded, with native English on the call, US Eastern overlap, and HIPAA-trained operations. The volume split in a regulated program typically lands at 60 to 80 percent of voice hours on the fronter side and 20 to 40 percent on the licensed side. Doing the weighted blend, a buyer who moves the inside-the-perimeter work nearshore lands at 40 to 55 percent total program cost savings against a fully-licensed onshore baseline. In transfer-only programs (debt, Medicare AEP, insurance), CFG has reported up to 87 percent cost-per-transfer reduction versus an onshore licensed baseline, with no expansion of the licensed-exposure surface. The detailed rate bands sit at how pricing works.

Risk math. Drawing the perimeter wrong has tangible enforcement consequences. CMS audit findings for MCMG breaches can result in marketing-partner debarment and sanction in Medicare programs. Insurance programs that let unlicensed staff quote rates or bind coverage face state DOI cease-and-desist orders and producer-license revocation for the supervising party. Debt programs that let unlicensed staff negotiate settlement face FDCPA private-action exposure plus state attorney general enforcement. FCC enforcement under CG Docket 02-278 can run six figures per violation in TCPA settlement classes. The buyer's loss when the perimeter is drawn wrong is typically larger than the savings would have been if the perimeter had been drawn right in the first place.

The reason this works is the perimeter, not the geography. Geography just determines where the inside-the-perimeter work happens. If the perimeter is drawn cleanly, the inside-the-perimeter work can sit in any jurisdiction that meets the buyer's operational requirements (language, time zone, data handling, attrition profile). The Caribbean nearshore (Jamaica, Saint Lucia, Trinidad, Belize, Colombia) currently leads the cost-and-retention math for US programs, but the perimeter logic would apply equally to any other compliant nearshore geography.

The warm-transfer architecture

The warm transfer is the operational seam between inside-the-perimeter and outside-the-perimeter work. If the seam leaks (the nearshore agent slips into plan-specific language, the licensed agent loses context on what was already said) the perimeter erodes and the buyer's exposure surface expands. The architecture below is how CFG rooms hold the seam tight.

Step 1: CRM and dialer configuration. The nearshore fronter qualifies the call against the client's scorecard inside the dialer (debt amount band, age range, ZIP, prior carrier status, FNOL category, whatever the scorecard requires). When the qualification threshold is met, the dialer attaches the scorecard data to the call record, attaches the recording link, and routes the transfer to the next available licensed US closer on the client's queue. Caller-ID passing keeps the original consumer ANI visible to the licensed closer for compliance recording.

Step 2: Verbal handoff and scorecard delivery. The fronter announces the caller by first name, summarizes the qualification status in CMS-approved or product-neutral scripted language (no plan-specific or rate-specific statements), and confirms the caller is willing to continue. The licensed closer hears the verbal summary and simultaneously sees the scorecard payload on screen before saying hello. This avoids the consumer having to repeat the same qualifying information twice.

Step 3: Closer takes ownership and the fronter drops. The licensed closer introduces themselves by name, credential, and license number where required (state insurance producer license, AHIP certification ID for Medicare). From this point forward, every regulated statement (plan recommendation, rate quote, settlement term, clinical advice) is in the licensed closer's voice and on the licensed closer's recorded line. The fronter drops off the call. The regulator is not asking whether the fronter was in the same physical room as the licensed closer. The regulator is asking whether the regulated statements came from a credentialed party on a documented line. The warm-transfer architecture makes that answer unambiguous on every call. Full operational pattern (script blocks, scorecard fields, QA monitoring, caller-ID rules) is in warm transfer architecture.

5 verticals where the perimeter applies

The perimeter shows up the same way in every regulated vertical CFG runs. The line is drawn against a different statute in each one, but the structural shape is identical: a fronter step inside, a licensed step outside, a warm transfer between them.

Medicare AEP

Fronter step: T-65 outreach, AEP intake, basic eligibility, scripted CMS-approved language, warm-transfer setup. Licensed step: plan comparison, enrollment, premium discussion. Anchor statute: CMS MCMG. Credential: AHIP plus state insurance license. See CFG Medicare services.

Debt collection

Fronter step: first-party contact verification under FDCPA Section 805, validation-notice scripting, warm-transfer setup. Licensed step: settlement negotiation, payment plan binding, hardship discounts. Anchor statute: FDCPA Section 805 plus state collection licenses. Credential: state debt collector license where required. See CFG debt collection services.

Insurance

Fronter step: pre-qualification on auto, home, or health insurance, intake of claim notice (FNOL) where permitted, intent confirmation, warm-transfer setup. Licensed step: binding coverage, quote-to-policy, advice on coverage adequacy. Anchor statute: state DOI plus NAIC Producer Licensing Model Act. Credential: state insurance producer license. See CFG insurance services.

Healthcare

Fronter step: intake, scheduling, demographic capture under a HIPAA business associate agreement. Licensed step: clinical advice, ePHI handling beyond BAA scope, treatment decisions. Anchor statute: HIPAA 45 CFR Part 164. Credential: covered-entity provider authorization. See CFG customer support outsourcing.

B2B SDR for regulated industries

Fronter step: prospect qualification against neutral criteria (firmographic fit, role, intent signals), meeting-set with the client's licensed account executive. Licensed step: anything that crosses into regulated-product territory (financial advice, medical-device claims, insurance binding) inside the prospect's industry. Anchor statute: depends on the prospect's industry (FINRA for fintech buyers, HIPAA for healthcare buyers, FDA promotional rules for medical-device buyers). The B2B SDR perimeter is usually less hot than consumer voice, but it matters in fintech, healthtech, insurtech, and pharma SDR motions where the underlying product is regulated. See CFG customer support outsourcing for adjacent operations and the fronter scope matrix for activity-level mapping.

Common mistakes when drawing the perimeter

Four scoping mistakes account for most of the perimeter failures we see in procurement-stage RFPs and live programs.

Mistake 1: Letting the fronter answer "what plan should I get?"

The consumer asks a plan-specific question, the nearshore agent has the answer at hand from training, and the agent answers. That single statement crosses the perimeter, because the agent has now made a plan-specific representation without the credential to make it. The fix is scripted deflection: every plan-specific question routes the consumer immediately to the licensed warm-transfer queue with a CMS-approved scripted line such as "your licensed Medicare specialist will walk you through plan options on this transfer." Train this once. QA-monitor it forever. CFG runs 100 percent AI QA on every call to catch deflection breaches.

Mistake 2: Running offshore voice without TCPA-required offshore disclosure

The September 2024 FCC declaratory ruling under CG Docket 02-278 expanded location-disclosure obligations on offshore-originated calls in regulated verticals. Some programs continued to dial without updating the disclosure block, betting on enforcement inaction. The bet has gotten more expensive as the FCC has signaled increased enforcement around offshore-origination. The fix is updating the scripted disclosure block on day one of any offshore-originated program and re-recording the consent prompt. See the FCC CG Docket 02-278 compliance checklist for the exact disclosure language.

Mistake 3: Failing to suppress against client DNC and internal DNC lists

The buyer maintains an internal DNC list. The buyer's licensed close team maintains a do-not-call list of consumers who have requested no further contact. The nearshore room dials against the consumer file without suppressing against either list. The result is repeat-contact violations under TCPA and consumer complaints that flow to the buyer's CMS or state DOI relationship. The fix is wiring the suppression file into the dialer at the API layer, refreshing every 24 hours, and QA-sampling the suppression rate weekly.

Mistake 4: Routing the licensed close offshore in violation of CMS MCMG (or NAIC, or state collection-license law)

The opposite failure mode: a buyer tries to procure "licensed offshore coverage" to consolidate the voice program in one geography. CMS MCMG, NAIC state insurance licensing, and state collection-license law all require credentialing tied to US state issuance for the licensed activity. Offshore credentialing does not satisfy the requirement in any of the major regulated verticals. The fix is keeping the licensed step onshore by design and not chasing offshore licensed coverage that does not exist or that fails enforcement-style scrutiny.

How CFG runs the perimeter

CFG runs every program strictly inside the fronter perimeter. We do not hold AHIP certification, state insurance producer licenses, FINRA registrations, state debt collector licenses, or any other licensed-agent credential. Our rooms in Jamaica, Saint Lucia, Trinidad, Belize, and Colombia (with HQ in Toronto) pre-qualify consumers and warm-transfer to the client's licensed US closers. That is the entire scope of the offering.

The operational backbone holding the perimeter tight has three pieces. First, 100 percent AI QA on every call (not random sample): every transcript is scored for perimeter breaches, deflection adherence, scripted-language compliance, and consent-capture completeness. Second, daily script coaching: floor supervisors take the AI QA outputs from the prior day and run targeted coaching sessions on the specific lines that drifted, before the next shift. Third, a 14-day script refresh cycle: every two weeks the script library is reviewed against new CMS guidance, FCC rulings, state DOI bulletins, and AI QA breach patterns, then redeployed across the floor. This keeps perimeter breaches near zero in steady state.

This is the operating model, not a limitation. The point of contracting a fronter is to keep the licensed perimeter intact onshore. The moment the fronter crosses into licensed territory (quoting a premium, recommending a plan, negotiating a settlement) the buyer's exposure surface expands and the perimeter loses its compliance value. We respect that perimeter as a precondition of the engagement. The procurement-side breakdown sits at fronter vs licensed agent: the regulatory line, and the rate bands by seat type are at how pricing works.

Caribbean nearshore (Jamaica, Saint Lucia, Trinidad, Belize, Colombia) gives the buyer same-time-zone US Eastern overlap, native English on the call, and a wage structure that is competitive with local labor markets rather than dependent on labor-arbitrage discount. Buyers running 10 to 20 seat pilots can scope the engagement with no setup fee, no annual prepay, and a 7-day ramp from signed pilot.

Sources

1. Federal Communications Commission. Declaratory Ruling, CG Docket No. 02-278. September 2024.
2. Centers for Medicare and Medicaid Services. Medicare Communications and Marketing Guidelines (MCMG).
3. National Association of Insurance Commissioners. Producer Licensing Model Act.
4. Consumer Financial Protection Bureau. Fair Debt Collection Practices Act, 15 U.S.C. section 1692, Section 805 communication restrictions.
5. US Department of Health and Human Services. HIPAA Privacy and Security Rules, 45 CFR Part 164.
6. America's Health Insurance Plans. AHIP Medicare Training and Certification.
7. US Code. Telephone Consumer Protection Act, 47 U.S.C. section 227.

Frequently Asked Questions