2026 Dealership Compliance Guide
Every federal and state compliance obligation a US car dealership needs to think about in 2026 — what applies, where to document it, and how Test Drive Pro builds the evidence layer.
Auto retail compliance is stitched together from federal rules (FTC, CFPB, OFAC), state dealer licensing regimes, state attorney general advertising guidance, and (when financing is involved) lender-specific policies. The list is long, the documentation is everything, and the examiners do not care what your intent was — they care what your file shows.
This guide walks through the eight pillars below, points to deeper pages on the two that most dealers miss, and shows where Test Drive Pro sits in the evidence chain.
The eight pillars
Red Flags Rule
Identity Theft Prevention Program, red flag detection, response logging, and periodic updates.
CARS Rule
Offering price, express consent, add-on prohibitions, misrepresentation prohibitions, and record retention.
TCPA consent
Express written consent required for marketing text messages and autodialed calls.
Safeguards Rule
A written information security program, encryption, access controls, and incident response.
OFAC screening
Screening customers against the SDN list before closing.
Dealer record retention
State-by-state rules on how long deal jackets, test drive waivers, and license copies must be retained.
Test drive laws
State-specific insurance, license, and waiver requirements for test drives.
Advertising rules
State attorney general guidance on dealer advertising and price disclosures.
Where dealers lose
Almost every compliance finding at a dealership traces back to one of three things: missing documentation, inconsistent enforcement, or a policy nobody was trained on. Software alone does not solve the last two. But the first one — documentation — is where Test Drive Pro is opinionated.
Every drive in Test Drive Pro produces a verified ID result, a signed agreement, a TCPA consent capture (if elected), a timestamped drive log, and an assigned salesperson. These are retained to the dealership’s configured retention policy and exportable on demand.
Deep dives
For the two pillars most dealerships struggle with, see:
- The Red Flags Rule for Car Dealers — how to build a compliant ITPP.
- The FTC CARS Rule Checklist — offering price, consent, retention, and prohibited practices.
State overlays
State dealer licensing boards and state attorneys general often impose obligations that go beyond federal rules — for example, specific language on test drive waivers, retention floors for signed agreements, or advertising disclosure formats. See the state-by-state guides under state test drive laws for a starting point.
This is general information, not legal advice. Work with counsel for your jurisdiction and operating model.
Frequently asked questions
Document compliance as a byproduct of selling cars
Test Drive Pro captures the evidence the examiner wants, in the flow the customer already runs.
Keep exploring
Red Flags Rule for Dealers
Build a compliant ITPP.
Read more →
FTC CARS Rule Checklist
Offering price, consent, retention.
Read more →
Dealership ID Verification
The detection layer for Red Flags.
Read more →
Digital Test Drive Agreement
The consent evidence for CARS.
Read more →
F&I Manager Software
Where compliance gets lived daily.
Read more →
Digital Deal Jacket
The artifact examiners open first.
Read more →