California has long held the reputation of being one of the most consumer-friendly jurisdictions in the country, especially when it comes to debt collection. At the heart of that framework is the Rosenthal Fair Debt Collection Practices Act (RFDCPA), California’s analog to the federal FDCPA. And in 2025, the scope and enforcement of the Rosenthal Act are evolving in important and far-reaching ways.
On July 1, 2025, the recent expansion of California’s RFDCPA to include certain commercial debts under $500,000 went into effect. With it comes a shift in how the Department of Financial Protection and Innovation (DFPI) is approaching enforcement. While creditors and collectors have long understood the importance of compliance when pursuing consumer debts, the latest enforcement actions and priorities make it clear that a more aggressive regulatory era has arrived.
This blog post unpacks what has changed under the RFDCPA in 2025, how DFPI is using its regulatory authority, and what first- and third-party creditors must do to stay compliant and minimize legal risk.
The Rosenthal Act: A Quick Refresher
The Rosenthal Fair Debt Collection Practices Act is codified at California Civil Code § 1788 et seq. It mirrors many provisions of the federal Fair Debt Collection Practices Act but has important differences:
- It applies not only to third-party debt collectors, but also to original creditors collecting their own debts
- It prohibits harassment, misrepresentation, and unfair practices
- It grants consumers the right to request validation and dispute debts
- It imposes venue and disclosure requirements unique to California
Historically, the Rosenthal Act applied only to consumer debts, defined as obligations for personal, family, or household purposes. However, beginning in 2025, the scope of the law has expanded significantly.
What Changed on July 1, 2025
The most significant recent development is the implementation of SB 1286, which became effective July 1. This amendment to the RFDCPA extends the law’s protections to certain commercial debts, specifically:
- Business debts incurred primarily for commercial purposes
- Personal guaranties on commercial loans
- Commercial debt obligations up to $500,000 in principal balance
This is a major departure from the traditional consumer-only scope. It brings small business owners, sole proprietors, independent contractors, and other commercial borrowers under the Rosenthal umbrella, at least for debts below the statutory cap.
Why This Matters for Creditors
With this expansion, the DFPI has made it clear that it will now enforce the Rosenthal Act more aggressively, including against creditors who had previously assumed the law did not apply to their activities. This includes:
- Banks and lenders with in-house collections teams
- Equipment lessors and leasing companies
- Merchant cash advance providers and fintech platforms
- Law firms and agencies collecting commercial debts
- Medical or healthcare billing offices
These organizations must now follow all Rosenthal-compliant practices when collecting on covered debts, or risk regulatory investigation, administrative penalties, and civil lawsuits.
Recent DFPI Enforcement Trends
In the first six months following the July 1 implementation date, DFPI has already announced several investigations and enforcement actions against debt collectors and original creditors operating in the commercial space. Although the names of targeted entities are not always disclosed, public statements and press releases reveal a clear pattern of enforcement.
1. Increased Focus on First-Party Collectors
The DFPI has clarified that original creditors collecting their own debts are fully subject to the RFDCPA. This is particularly important for banks, credit unions, and finance companies that previously assumed their internal collections teams were exempt.
Recent investigations have involved:
- Collection departments making repeated calls to small business borrowers
- Lack of proper validation notices in business-related collection letters
- Misrepresentations about legal consequences of nonpayment
2. Investigations of Fintech and Online MCA Platforms
Fintech companies operating in California, particularly those offering revenue-based financing or merchant cash advances, are now under scrutiny.
Enforcement priorities have included:
- Use of aggressive auto-dialers and SMS-based communication without proper disclosures
- Confusing or deceptive fee structures marketed to small business owners
- Collection threats implying legal action when none was authorized
Fintechs often rely on speed and automation. However, those efficiencies are now creating legal vulnerabilities if they do not align with RFDCPA requirements.
3. Focus on Venue and Jurisdiction Misuse
The Rosenthal Act includes specific venue requirements that prevent creditors from filing lawsuits in inconvenient forums. The DFPI has taken aim at creditors who:
- File lawsuits against out-of-county debtors
- Sue small businesses in jurisdictions far from their principal place of business
- Include venue waiver provisions in commercial loan agreements
This has resulted in lawsuits being dismissed and creditors being referred for investigation. Venue violations are particularly easy for regulators to spot and pursue.
4. Emphasis on Communication Practices
The DFPI has issued warnings about the “unreasonable frequency” of debt communications, especially where business owners are receiving:
- Multiple daily calls
- Text messages without consent
- Emails that do not include required opt-out language
These practices, once common in the commercial space, are now being treated as possible harassment under the Rosenthal Act.
What the DFPI Is Prioritizing in 2025
DFPI officials have outlined several enforcement themes for the coming year. Creditors operating in California should anticipate the following areas of focus:
Misrepresentations in Debt Collection
- Overstating the consequences of nonpayment
- Implying legal action where no lawsuit is filed or authorized
- Using language that suggests government affiliation or urgency
Improper Fee Practices
- Charging unlawful collection fees not disclosed in the original agreement
- Inflating balance amounts in collection letters
- Deducting “processing fees” without proper contractual basis
Communications Without Disclosures
- Failing to provide debt validation rights in initial written contact
- Omitting consumer warnings in voicemails or texts
- Using vague or misleading subject lines in email
Failure to Identify the Debt and the Creditor
- Generic collection letters with no detail
- Not identifying the creditor of record
- Misidentifying assigned debts as original obligations
Lack of Written Agreements in Third-Party Settlements
- Accepting or negotiating debt settlements with unlicensed third-party firms
- Failing to document the terms of agreement clearly
- Not sending written confirmation of accepted settlement terms
Practical Implications for Creditors
Given the expanded scope of the Rosenthal Act and increased DFPI enforcement, creditors must now treat nearly every collection interaction as a compliance exercise. The risks are too high to rely on outdated processes or assumptions about exemptions.
1. Train Your Internal Teams
- Ensure collection staff understand the full scope of the RFDCPA
- Emphasize that even commercial debts may now be protected
- Provide training on acceptable call frequency, tone, and language
2. Audit Your Communications
- Review all written templates, scripts, and emails for compliance
- Include appropriate validation notices and creditor identification
- Confirm that venue disclosures and opt-out mechanisms are present
3. Vet Third-Party Vendors
- Review contracts with collection agencies and settlement firms
- Confirm that vendors are licensed and follow California regulations
- Monitor complaints and enforcement actions against partners
4. Maintain Clear Records
- Document all debtor communications
- Keep logs of calls, emails, and texts
- Retain signed agreements, payment histories, and settlement terms
5. Monitor DFPI Guidance
- Subscribe to DFPI bulletins and press releases
- Monitor rulemaking and comment periods
- Stay engaged with trade groups and legal counsel
Common Mistakes Creditors Should Avoid
As DFPI scrutiny increases, certain mistakes are showing up repeatedly in enforcement actions. Avoiding these can reduce liability exposure and preserve goodwill.
Do not:
- Assume a commercial loan is exempt based on purpose alone
- Use consumer templates without reviewing for commercial applicability
- Treat personal guarantors as outside the scope of compliance
- Ignore venue requirements when filing lawsuits
- Delegate compliance responsibility entirely to third parties
Do:
- Update internal policies to reflect July 2025 rule changes
- Monitor how your debts are being collected, both in-house and externally
- Prioritize transparency in all borrower interactions
- Err on the side of full disclosure when in doubt
The Legal Exposure Is Real
Violations of the Rosenthal Act can result in:
- Statutory damages up to $1,000 per violation
- Actual damages for emotional distress or reputational harm
- Attorney’s fees and court costs
- DFPI fines and administrative orders
- Class action lawsuits for systemic violations
In an environment where small businesses and commercial guarantors are gaining more legal protections, creditors must assume that a mistake will not just cost a few dollars. It could generate a lawsuit, a DFPI audit, or reputational damage.
Looking Ahead: The Future of Rosenthal Act Enforcement
The expansion of the Rosenthal Act into commercial territory is likely just the beginning. California has signaled an ongoing interest in aligning consumer and small business protections, especially in the area of financial services.
Expect continued developments, including:
- DFPI guidance on applying the RFDCPA to mixed-purpose debts
- Further clarification of venue, disclosure, and notice standards
- Coordination between DFPI and national regulators
- Proposed legislation to codify additional protections for business guarantors
Creditors operating in California must remain agile. Compliance is no longer optional or just a best practice. It is now a critical part of legal risk management.
Conclusion: Compliance Is a Competitive Advantage
The expanded Rosenthal Act presents real risks, but also a real opportunity. Creditors who get ahead of enforcement priorities can position themselves as trustworthy and ethical partners, while those who fall behind risk regulatory scrutiny, lawsuits, and operational disruption.
At Tatman Legal, we help creditors navigate this new terrain. From policy reviews and training to defense against Rosenthal Act litigation, our team is here to provide the strategic legal support you need.
Contact us today to schedule a compliance consultation or litigation strategy review.
Key Takeaways
- As of July 1, 2025, California’s RFDCPA now applies to certain commercial debts under $500,000
- The DFPI is prioritizing enforcement of deceptive practices, unfair collection behavior, and noncompliant communication tactics
- First-party creditors, not just third-party collectors, are squarely within the law’s reach
- New DFPI investigations are targeting internal collection departments of lenders, fintech companies, and MCA providers
- Creditors must update training, scripts, and workflows to reflect the expanded scope and increased scrutiny