At CASA25, a standout panel dove deep into one of the most critical—and least understood—aspects of the vCon revolution: how to handle consent, compliance, and data provenance in an AI-driven world.

Moderated by Thomas Howe of Strolid, the panel brought together a mix of perspectives from across the ecosystem: Jason Goecke (Creo Solutions), Nima Golchini (Enea), Tony Nuzzo (Approved Contact), and Ben Curtis and Dean Landsman from JLINC. Together, they explored how programmable trust and verifiable consent are becoming the new foundation of intelligent communications.

From Permissions to Provenance

Tony Nuzzo of Approved Contact opened with a simple but powerful premise: trust starts with permission.

His company’s new Permissions product lets brands validate consent explicitly — not just “we think they agreed,” but clear records of whether customers allow their voice to be used in AI, or whether they want to receive texts or calls.

“You want to be a trusted brand, not just a brand,” Tony said. “And the VCon gives you a way to prove that trust.”

By capturing this consent inside verifiable conversation data, VCons effectively become an insurance policy for brands — proof that engagement is both compliant and authentic.

Security First: Cleaning the Pipeline

Nima Golchini of Enea then connected the dots between consent and cybersecurity.

Enea provides messaging and signaling firewalls that filter spam, block malicious content, and enforce regional compliance rules across operators and CPaaS providers.

He explained how AI models now detect campaign drift — where a registered campaign sends unrelated content — and help enforce national codes of conduct, like France’s restriction on promotional messages during weekends.

“It’s about keeping a clean pipeline,” Nima said. “Security, compliance, and monetization all depend on it.”

JLINC: Proof That Data Stays True

The discussion moved to data provenance, where Ben Curtis and Dean Landsman from JLINC outlined how cryptographic signatures and zero-knowledge auditing can verify the flow of data without ever exposing its contents.

Ben explained how their system ensures that data shared between systems — for example, between AI models or CPaaS platforms — is traceable, trusted, and compliant with privacy regulations.

“We can prove that the data went where it was supposed to go, and came from who it was supposed to — without ever revealing the private data itself.”

Dean added that this capability turns compliance into something verifiable and automatic:

“From the moment data begins to the moment it ends, it still belongs to its originator. That’s the essence of trust under GDPR and every new data law to come.”

Smart Contracts for Consent

When Jason Goecke of Creo Solutions joined the exchange, he described VCons as the foundation for programmable compliance.

“It’s like a smart contract for communication,” he said. “Consent travels with the data itself. That gives you ownership, transparency, and interoperability — the foundation for trusted applications.”

VCons, in this view, turn consent into code — allowing businesses to automate trust, not just declare it.

The New CRM: Conversational and Consumer-Centric

Closing the panel, Dean Landsman reflected on how VCons could transform CRM systems.

Traditional CRMs were designed to collect and exploit data, not to protect it. The next generation, he said, will be conversational and consumer-centric — powered by verifiable, user-owned data.

“CRM hasn’t really had guardrails before. VCons bring them,” he said. “They ensure customer data stays their own — and make the system finally work for the customer.”

From Compliance to Confidence

The message from this CASA25 panel was clear: VCons aren’t just about storing conversations — they’re about redefining digital trust.

They turn compliance into a design principle, enable verifiable provenance for AI, and make consent portable across every layer of the communications stack.

As Thomas Howe closed the session, he summed up the mood perfectly:

“This isn’t about regulation slowing us down — it’s about trust becoming programmable.”

Why CPaaSAA is All-In on vCons — And Why You Should Be Too

Imagine if every conversation your company ever had — by phone, email, SMS, chat, or video — could be captured, structured, and made useful. Not just for compliance or analytics, but to fuel AI, improve customer service, and scale your best people. That’s the promise of the vCon. And at CASA25, it took center stage.

When Kevin Nethercott (CPaaSAA) sat down for a fireside chat with Thomas Howe (Co-Founder of Vconic) at CASA25, it was more than a reunion between two industry veterans — it was a milestone moment. Together, they laid out a vision for how the vCon (short for “virtual conversation”) can become the next foundational standard in communications — following in the footsteps of SIP, HTTP, and other Internet-era breakthroughs.

💬 The Holy Grail: Listening at Scale

Kevin kicked things off with a simple but powerful truth:

“If I could have a 360-degree view of what my customer really thinks and wants — I’d pay a lot of money for that.”

But today, that insight is fragmented across five, ten, even twenty different communication platforms. Email, phone, CRM, live chat, WhatsApp, web forms… they don’t talk to each other. Worse, we don’t really listen — not in a way that’s structured, ethical, and scalable.

Thomas put it bluntly:

“Every time a customer spoke to us, it was like a new day. We didn’t remember the last conversation — but they did.”

So they built vCon: a new file format and open standard, now on track with the IETF (the same body that gave us SIP, DNS, and TLS). A vCon can wrap any interaction — a call, an email thread, a chatbot session — into a single, secure, portable digital record.

Think JPEG for conversations. XLS for communications.

📦 What Exactly Is a vCon?

A vCon is a structured file format that captures:

• Who participated
• When and how they communicated (voice, text, email, etc.)
• The actual content of the conversation
• Metadata about permissions, compliance, and ownership

It’s designed from the ground up to be secure, portable, and privacy-respecting — addressing growing concerns around AI, biometrics, and compliance in a post-GDPR world.

“We didn’t just want to listen to customers — we wanted to do it ethically.”

The vCon standard ensures data control remains with the originator, not locked in a vendor’s silo or swept into a black-box AI model.

🧠 AI’s Favorite Data Format?

The timing couldn’t be better. AI is hungry — but it’s being fed garbage.

Large Language Models are trained on messy, unstructured public data. Meanwhile, telcos and communication platforms sit on oceans of valuable, structured, first-party data — but it’s locked in silos.

“VCons are robot food,” said Kevin. “They’re secure, accurate, and ethical. Small language models, not large ones. That’s the future.”

And it’s already happening. VConic’s first large implementation — for Strolid, a car sales company talking to 250,000 customers a month — uses vCons to scale their coaching and agent support. The internal project was affectionately named “Papa in a Box”, after Strolid’s founder’s father who once coached every sales call — until the business grew too fast for human memory.

Now, vCon-based copilots help every agent, every time.

🔄 Standards Create Value

Both Kevin and Thomas have seen this movie before. SIP, once an obscure acronym, became the backbone of VoIP and unified communications. Now it underpins an industry worth hundreds of billions.

“In five years,” Thomas predicted, “we’ll see widespread adoption of vCons in customer-facing applications — starting with compliance and governance, then moving into AI and service creation.”

vCons break open the walls between providers, networks, and apps — enabling true interoperability of conversations. That’s when things get really interesting.

“Today, most companies analyze the conversation and the AI in the same place. That’s like AOL in the 90s — one closed system. But tomorrow? You’ll move conversations between AI agents across networks. Just like the web broke AOL, vCons break the silos.”

🚀 CPaaSAA Is All-In

As Kevin closed the session, he made it clear:

“We’re not just interested — we’re committed. CPaaSAA sees vCons as the foundation of a trillion-dollar opportunity for our industry.”

The math checks out. If SIP helped create $700–800 billion in value over two decades, vCons could easily surpass that, especially as enterprises move toward AI-native communication models.

Already, CPaaSAA members are experimenting with vCon implementations — for compliance, AI training, smart routing, customer intelligence, and more. Some report 2x to 3x revenue growth from existing customer bases just by unlocking conversation data.

🌍 What Comes Next?

Following the fireside, a panel explored specific use cases, from healthcare to finance to telco B2B — all showing how vCons create value while respecting trust, privacy, and data rights.

But perhaps the biggest takeaway was this:

VCons are not about tech. They’re about listening.

At scale. Ethically. Intelligently.

And just like the early days of SIP, the industry now has a choice:

Be an early mover. Shape the future.

Or wait — and pay to catch up.