Carriers, aggregators, and industry bodies maintain strict rules about the types of content that can be promoted via SMS. At the center of these restrictions is a framework known by the acronym SHAFT — a shorthand for the content categories most likely to trigger filtering, campaign suspension, or outright bans. Understanding SMS SHAFT compliance rules is not optional for marketers and affiliates who rely on text messaging as a channel. Violations can result in message filtering, number deactivation, and in serious cases, legal liability under federal and state regulations.
This guide breaks down what SHAFT means in practice, how carriers enforce these restrictions, and what marketers can do to stay compliant while still running effective campaigns. Whether you are sending promotional messages on a short code, 10DLC, or toll-free number, the same foundational content policies apply.
What Does SHAFT Stand For?
SHAFT is an industry acronym representing five categories of content considered high-risk or outright prohibited in SMS marketing:
| Letter | Category | Examples |
|---|---|---|
| S | Sex / Sexual Content | Adult entertainment, dating services with explicit content, sexual wellness products marketed with explicit language |
| H | Hate / Harassment | Content promoting discrimination, threats, or targeted harassment based on race, religion, gender, or other protected characteristics |
| A | Alcohol | Promotions for beer, wine, spirits, alcohol delivery services, bar and nightclub promotions |
| F | Firearms | Gun sales, ammunition, accessories, gun show promotions, firearms training with a sales component |
| T | Tobacco / Cannabis | Cigarettes, vaping products, CBD, THC, cannabis dispensary promotions, smokeless tobacco |
SHAFT is not a single regulation. It is a framework used by the CTIA (Cellular Telecommunications Industry Association), carriers (AT&T, T-Mobile, Verizon), and messaging aggregators to categorize content that requires special handling or is prohibited entirely. The specific rules vary by carrier, number type, and use case.
Prohibited vs. Restricted: A Critical Distinction
One of the most common misconceptions about SHAFT is that all five categories are completely banned from SMS. The reality is more nuanced: some SHAFT categories are outright prohibited, while others are restricted — meaning they may be allowed under specific conditions and with proper vetting.
Outright Prohibited Content
Certain content types are universally blocked across all carrier networks and number types:
- Hate speech and harassment — No carrier permits messages that promote violence, discrimination, or targeted harassment. This is a hard prohibition with no exceptions.
- Illegal content — Messages promoting illegal activities, including federally illegal drug sales, are blocked regardless of state-level legality.
- Explicit sexual content — Unsolicited adult content is prohibited. Even with consent, explicit sexual content faces severe restrictions and is blocked on most number types.
Restricted Content (Conditionally Allowed)
Other SHAFT categories can be promoted via SMS, but only under strict conditions:
| Category | Short Code | 10DLC | Toll-Free | Conditions |
|---|---|---|---|---|
| Alcohol | Allowed with age gate | Restricted | Restricted | Age verification required; must comply with state laws; no marketing to minors |
| Firearms | Very limited | Generally blocked | Generally blocked | Informational content may pass; direct sales promotions are typically filtered |
| Tobacco / Vape | Very limited | Generally blocked | Generally blocked | Some carriers allow age-gated tobacco loyalty programs on short codes |
| Cannabis / CBD | Blocked (federally illegal) | Blocked | Blocked | Even in legal states, carriers block cannabis promotions due to federal scheduling |
| Sexual wellness | Possible with vetting | Restricted | Restricted | Non-explicit, health-focused messaging may be approved on vetted short codes |
Short codes generally offer the most flexibility for restricted content because they undergo a rigorous vetting process with each carrier. 10DLC and toll-free numbers face stricter content filtering due to lighter vetting. For a deeper look at how content policies differ by number type, see our guide on CTIA Short Code and 10DLC Content Policies.
How Carriers Enforce SHAFT Restrictions
Carrier enforcement of SHAFT compliance operates at multiple layers. Understanding these mechanisms helps explain why even borderline content can cause problems for an entire campaign.
Content Filtering
All major U.S. carriers run automated content filtering systems that scan outbound SMS messages for prohibited keywords, phrases, and URL patterns. These filters operate in real time and can block individual messages or flag entire campaigns. Filtering is not limited to exact keyword matches — carriers use pattern recognition, URL reputation scoring, and machine learning models to identify SHAFT-adjacent content.
Common triggers include:
- Keywords associated with restricted products (e.g., "CBD," "vape," "THC," specific firearm terminology)
- URLs linking to adult content, cannabis dispensaries, or firearms retailers
- Patterns of evasive behavior such as character substitution (e.g., "c@nnabis") or URL obfuscation
Campaign Registry Vetting
For 10DLC traffic, The Campaign Registry (TCR) requires brands to declare their use case and content type during registration. Campaigns flagged as SHAFT-related receive additional scrutiny and may be rejected outright. Even if a campaign passes initial registration, carriers can independently reject or suspend it based on their own content policies.
Number Deactivation
Repeated SHAFT violations can result in the deactivation of sending numbers. For short codes, this means losing a number that may have taken weeks to provision and vet. For 10DLC, carriers can disable a number with minimal notice. In severe cases, the brand itself can be blacklisted from registering new campaigns.
Aggregator-Level Blocking
Before messages even reach carrier networks, aggregators — the intermediaries between SMS platforms and carriers — apply their own content policies. Many aggregators maintain stricter rules than the carriers themselves, particularly around cannabis, firearms, and adult content. A message that might technically pass carrier filtering can still be blocked at the aggregator level.
SHAFT Compliance for Affiliate Marketers
Affiliate marketers face unique SHAFT compliance challenges because they often promote offers from third-party advertisers. The content of those offers may change, landing pages may be updated without notice, and the line between compliant and non-compliant messaging can shift depending on the specific product being promoted.
Offer Vetting
Before promoting any offer via SMS, affiliates should conduct thorough due diligence:
- Review the landing page — Does it contain SHAFT content, even if the SMS message itself does not? Carriers evaluate the full user journey, including the destination URL.
- Check product claims — Health supplements, weight loss products, and sexual wellness items often border on SHAFT territory depending on how they are marketed.
- Monitor for changes — Advertisers may update landing pages or redirect URLs after initial approval. Regular audits are necessary.
Offer Rotation and Content Compliance
Affiliates who rotate through multiple offers need systems to ensure that every offer in their rotation meets SHAFT compliance standards. A single non-compliant offer in a rotation can contaminate an entire sending number or campaign, triggering filtering that affects all messages sent from that number.
Platforms like Trackly address this through offer management features that integrate with affiliate networks such as TUNE and Everflow. By centralizing offer rotation and pairing it with content validation, marketers can reduce the risk of accidentally promoting a non-compliant offer. For more on how offer rotation works in practice, see our piece on SMS offer rotation and creative fatigue management.
URL and Domain Reputation
The domains used in SMS links carry reputation scores with carriers. If a domain has been associated with SHAFT content — even briefly — it can be flagged, causing filtering for all future messages that include that domain. Affiliates should use dedicated short domains for SMS campaigns and avoid sharing domains across compliant and potentially non-compliant traffic.
Trackly's built-in link tracking with custom short domains gives marketers control over their domain reputation by isolating SMS traffic from other channels and providing visibility into click-through patterns that might indicate filtering issues.
Gray Areas: Content That Borders on SHAFT
Many SMS compliance problems arise not from obviously prohibited content but from gray areas where the boundary between compliant and non-compliant messaging is unclear.
Health and Wellness Supplements
Dietary supplements, weight loss products, and sexual health supplements are not inherently SHAFT content. However, the way they are marketed often crosses into restricted territory. Messages that reference sexual performance, use suggestive language, or make unsubstantiated health claims can trigger SHAFT filtering even if the product itself is legal and mainstream.
A sound approach is to focus messaging on general wellness benefits, avoid explicit language and before/after claims, and ensure landing pages follow the same guidelines.
CBD and Hemp Products
CBD derived from hemp is legal at the federal level under the 2018 Farm Bill. However, carriers largely treat CBD the same as cannabis for content filtering purposes. Messages promoting CBD products are routinely filtered on all number types. This is one of the more frustrating gray areas for marketers because the product is legal but the channel effectively prohibits its promotion.
Some marketers attempt to work around this by avoiding the term "CBD" and using euphemisms. This is risky — carriers specifically look for evasive language patterns, and getting caught using them can result in harsher penalties than straightforward content violations.
Dating Services
Mainstream dating apps and services can generally promote via SMS without SHAFT issues, provided the messaging is non-explicit. However, dating services that cater to adult encounters, use suggestive imagery on landing pages, or include explicit language in messages will be classified as sexual content and filtered accordingly.
Gambling and Sports Betting
While not part of the original SHAFT acronym, gambling and sports betting content faces similar carrier restrictions. Some industry professionals have expanded the acronym to "SHAFT-G" to include gambling. State-by-state legality adds another layer of complexity, and carriers generally require that gambling-related SMS campaigns demonstrate compliance with applicable state regulations and include responsible gambling disclosures.
Cryptocurrency and Financial Products
Crypto promotions are not SHAFT content per se, but they face heightened carrier scrutiny due to the prevalence of scams in the space. Messages promoting specific tokens, investment returns, or "get rich" schemes are frequently filtered. Legitimate financial services companies can promote via SMS but should expect additional vetting requirements.
Practical Steps for Maintaining SHAFT Compliance
Staying compliant with SHAFT rules requires both proactive planning and ongoing monitoring. The following framework applies to marketers and affiliates alike.
1. Audit Your Content Before Sending
Before launching any SMS campaign, review every element of the message and the user journey it creates:
- Message body — Scan for SHAFT keywords, suggestive language, and potentially problematic product references.
- Landing page — Verify that the destination URL does not contain SHAFT content, even if the SMS itself is clean.
- Redirect chain — If using link tracking or affiliate redirect chains, verify every page in the chain. Carriers sometimes follow redirects to evaluate final destinations.
- Images and media — For MMS campaigns, ensure that images do not contain explicit, violent, or otherwise restricted content.
2. Use Deliverability Tools to Validate Messages
Technical message validation can catch compliance issues before they reach carrier networks. Trackly's deliverability tools, for example, include GSM-7 encoding validation and segment counting that help marketers ensure messages are properly formatted. While these tools focus on technical deliverability rather than content compliance directly, they are part of a broader quality assurance workflow that reduces the risk of messages being flagged.
Some platforms also offer keyword scanning features that check message templates against known carrier filter lists. No tool can guarantee that a message will not be filtered — carrier algorithms are proprietary and constantly updated — but automated scanning catches obvious violations before they become problems.
3. Segment Your Traffic by Content Type
If your business promotes a mix of mainstream and borderline content, segment your sending infrastructure accordingly. Use separate numbers, campaigns, and domains for different content categories. This prevents a compliance issue with one content type from contaminating your entire sending reputation.
Trackly's audience segmentation features — including custom labels and behavioral targeting — make it straightforward to maintain separate subscriber lists and campaign flows for different content verticals. This isolation is a sound practice even when all content is fully compliant, because it provides cleaner analytics and more granular control.
4. Maintain Documentation
Keep records of your compliance efforts, including:
- Content review logs showing when messages and landing pages were audited
- Opt-in records demonstrating proper consent collection
- Campaign registry details and carrier approval confirmations
- Correspondence with aggregators or carriers regarding content approvals
This documentation is valuable both for internal compliance management and as evidence in the event of a dispute with a carrier or regulatory body.
5. Stay Current on Policy Changes
Carrier content policies are not static. The CTIA updates its messaging guidelines periodically, and individual carriers can change their filtering rules at any time. What was compliant six months ago may not be compliant today. Subscribe to industry updates from the CTIA, your aggregator, and your SMS platform provider to stay informed.
For a comprehensive overview of the regulatory landscape beyond SHAFT, including TCPA requirements and 10DLC registration rules, see our SMS marketing compliance guide for 2026.
What Happens When You Violate SHAFT Rules
The consequences of SHAFT violations escalate based on severity and frequency. Understanding the penalty structure helps contextualize why compliance matters beyond simply following the rules.
Escalation Path
- Message filtering — Individual messages are silently dropped. You may not know this is happening unless you monitor delivery rates closely.
- Campaign suspension — The carrier or aggregator suspends your campaign, halting all messages from the associated number or campaign ID.
- Number deactivation — Your sending number is permanently disabled. For short codes, this can mean losing months of provisioning work and significant financial investment.
- Brand blacklisting — Your brand or business entity is flagged across carrier networks, making it difficult or impossible to register new campaigns.
- Legal action — In cases involving deceptive practices or violations of consumer protection laws, regulatory bodies like the FTC or state attorneys general may pursue legal action.
Key takeaway: Silent message filtering is the most insidious consequence because it degrades campaign performance without any explicit notification. Marketers who do not actively monitor delivery rates may attribute declining results to creative fatigue or list quality when the real issue is carrier filtering triggered by content violations.
SHAFT Compliance Across Number Types
The type of number you use for SMS sending significantly affects how SHAFT rules are applied and enforced.
| Number Type | SHAFT Vetting | Restricted Content Flexibility | Filtering Sensitivity |
|---|---|---|---|
| Short Code | Extensive carrier-by-carrier review | Highest — some restricted categories allowed with age gates and compliance documentation | Lower (pre-vetted content) |
| 10DLC | TCR registration with use case declaration | Limited — most SHAFT categories blocked or heavily filtered | High (automated filtering) |
| Toll-Free | Toll-free verification process | Limited — similar restrictions to 10DLC | High (automated filtering) |
| Unregistered Long Code | None | None — extremely high filtering rates for any commercial traffic | Very high |
If your business legitimately needs to send messages in a restricted SHAFT category (such as age-verified alcohol promotions), a dedicated short code with proper carrier vetting is typically the only viable path. The investment in short code provisioning and compliance documentation pays for itself by providing a channel that actually delivers messages to recipients.
Building a Compliance-First SMS Program
The most effective SMS marketers treat compliance not as a constraint but as a foundation. Programs built on solid compliance practices tend to achieve stronger deliverability, higher engagement rates, and more sustainable long-term performance than programs that attempt to push boundaries.
Here is what a compliance-first approach looks like in practice:
- Content review is part of the creative process — Compliance checks happen during message creation, not as an afterthought before sending.
- Offer selection includes compliance criteria — When evaluating new offers to promote, SHAFT compliance is a qualification factor alongside payout and conversion rate.
- Infrastructure is segmented by risk level — Different content categories use different numbers, domains, and campaign registrations.
- Monitoring is continuous — Delivery rates, click rates, and opt-out rates are tracked in real time to detect filtering issues early.
- Team education is ongoing — Everyone involved in SMS campaign creation and management understands SHAFT rules and carrier content policies.
Platforms designed for SMS marketing at scale, including Trackly, provide the infrastructure to support this approach — from campaign-level segmentation and automated opt-out handling to deliverability monitoring and offer management. The tooling matters, but it only works when paired with a genuine commitment to sending compliant content.
Frequently Asked Questions
Can I promote alcohol via SMS?
Yes, in most cases, but with significant restrictions. Proper age verification mechanisms are required, along with compliance with state-specific alcohol advertising laws. A vetted short code is typically necessary. 10DLC campaigns promoting alcohol face higher rejection rates during TCR registration.
Is CBD promotion possible via text message?
In practice, no. Despite the federal legality of hemp-derived CBD, carriers treat CBD content similarly to cannabis and filter it aggressively across all number types. Some marketers have found limited success with short codes and careful language, but this remains a high-risk category.
What if my landing page has SHAFT content but my SMS does not?
Carriers evaluate the full user journey, not just the message body. If your SMS links to a page containing SHAFT content, the message can be filtered even if the text itself is completely clean. This applies to every page in a redirect chain.
How do I know if my messages are being filtered?
Monitor your delivery rates closely. A sudden drop in delivery rate — particularly on specific carrier networks — is often the first sign of content filtering. Some SMS platforms provide carrier-level delivery reporting that makes this easier to diagnose.
Do SHAFT rules apply to transactional messages?
SHAFT content policies apply to all SMS traffic, including transactional messages. However, transactional messages (order confirmations, shipping notifications, etc.) rarely contain SHAFT content by nature. The risk primarily applies to promotional and marketing messages.
SMS remains one of the highest-performing direct marketing channels available, but that performance depends on messages actually reaching recipients. SHAFT compliance is the foundation that makes everything else — segmentation, creative optimization, timing, offer selection — work. Marketers who invest in understanding and following these rules position themselves for sustainable results in the channel.