in
Advanced Search
TreatiseTreatise

A Practical Guide to the Red Flag Rules: Identifying and Addressing Identity Theft Risks
 by Kristen J. Mathews, Christopher Wolf, Proskauer Rose LLP
 
 Copyright: 2008

 Product Details >> 

Product Details

x
  • ISBN Number: 9781402411168
  • Page Count: 100
  • Number of Volumes: 1
  •  
  • The purchase of PLI titles may include Basic Upkeep Service, whereby
    supplements, replacement pages and new editions may be shipped
    to you immediately upon publication for a 30-day examination. This
    service is cancelable at any time.

On October 31, 2007, the U.S. Department of the Treasury and the Federal Trade Commission (FTC), along with the federal banking regulators, promulgated final “Red Flag Rules” pursuant to sections 114 and 315 of the Fair and Accurate Credit Transactions Act of 2003 (FACTA). Under the Red Flag Rules, all financial institutions and issuers of credit must have “Red Flag” identity theft policies and programs in place. Covered entities must be in compliance with these rules by November 1, 2008.
 
That means that financial institutions and creditors must (a) assess their identity theft risk factors, (b) adopt and test policies and procedures that detect and address the risks, consistent with the Red Flag Rules, and (c) train their employees to ensure that those policies and procedures are properly implemented.
 
A Practical Guide to the Red Flag Rules provides affected businesses, and their advisors, with a straightforward explanation of what the Red Flag Rules entail, with practical tips for compliance. Much more than a mere recitation of what the law requires, this book provides practical advice on what it means to comply, along the way explaining the intricacies of the new regulations.

  Table of Contents
  Introduction
Chapter 1: The New Identity Theft Prevention Red Flag Rules
  • § 1:1 : Introduction2
  • § 1:2 : Statutory Responses2
    • § 1:2.1 : The Identity Theft and Assumption Deterrence Act of 19982
    • § 1:2.2 : The Gramm-Leach-Bliley Act of 19993
    • § 1:2.3 : The USA PATRIOT Act of 20013
  • § 1:3 : Fair and Accurate Credit Transactions Act of 2003:The Red Flag Rules4
    • § 1:3.1 : Enactment4
    • § 1:3.2 : Statutory Overview4
    • § 1:3.3 : A Red Flag Program5
      • [A] : Elements5
      • [B] : Program Administration7
      • [C] : Existing Security Programs7
Chapter 2: Who Must Comply with the Red Flag Rules?
  • § 2:1 : Who Is Subject to the Statute?12
  • § 2:2 : “Financial Institutions”12
  • § 2:3 : “Creditors”13
  • § 2:4 : “Covered Accounts”14
    • § 2:4.1 : Definition14
    • § 2:4.2 : Obligation to Periodically Identify Covered Accounts15
  • § 2:5 : “Service Providers”16
Chapter 3: Identifying Red Flags
  • § 3:1 : Overview21
    • § 3:1.1 : “Identity Theft”22
    • § 3:1.2 : “Red Flag”23
  • § 3:2 : Conducting an Initial Risk Assessment23
    • § 3:2.1 : Practical Considerations24
    • § 3:2.2 : Risk Factors to Consider25
    • § 3:2.3 : Other Sources to Consider26
  • § 3:3 : Categories of Red Flags27
  • § 3:4 : Requirement to Update Risks Based on New Threats31
Chapter 4: Detecting Red Flags
  • § 4:1 : Overview36
  • § 4:2 : The Opening of Covered Accounts37
    • § 4:2.1 : Obtaining Identifying Information and Verifying Identity37
  • § 4:3 : Existing Covered Accounts38
    • § 4:3.1 : Authenticating Customers38
    • § 4:3.2 : Monitoring Customers’ Transactions38
    • § 4:3.3 : Validating Customer Change of Address40
Chapter 5: Responding to Red Flags
  • § 5:1 : Overview43
  • § 5:2 : Responding to Detected Red Flags44
    • § 5:2.1 : Aggravating Factors44
    • § 5:2.2 : Response Procedures45
    • § 5:2.3 : Appropriate Responses45
  • § 5:3 : Not Responding to Detected Red Flags46
  • § 5:4 : Other Legal Requirements47
Chapter 6: Updating a Red Flag Program
  • § 6:1 : Introduction49
  • § 6:2 : When to Update a Program50
Chapter 7: Administering the Identity Theft Prevention Program
  • § 7:1 : Administrative Components of an Effective Program54
  • § 7:2 : Approval by the Board of Directors54
    • § 7:2.1 : Overview54
    • § 7:2.2 : Entities Without Boards of Directors55
    • § 7:2.3 : Approval of Initial Written Program56
    • § 7:2.4 : Approval of Related Entities’ Programs56
  • § 7:3 : Implementation and Oversight57
    • § 7:3.1 : Basics57
    • § 7:3.2 : Reporting to the Board57
  • § 7:4 : Training Staff58
  • § 7:5 : Oversight of Service Provider Arrangements60
Chapter 8: Penalties for Noncompliance
  • § 8:1 : Overview63
  • § 8:2 : Private Civil Action64
  • § 8:3 : Federal Administrative Enforcement65
  • § 8:4 : State Attorney General Enforcement66
Chapter 9: Change-of-Address Provisions for Card Issuers
  • § 9:1 : Overview69
  • § 9:2 : Validating Addresses70
  • § 9:3 : Form of Notice71
Chapter 10: Notices of Address Discrepancy
  • § 10:1 : Overview76
  • § 10:2 : Discovery of an Address Discrepancy76
    • § 10:2.1 : Definition76
    • § 10:2.2 : Consumer Reporting Agency’s Duty76
    • § 10:2.3 : User’s Duty76
  • § 10:3 : The “Reasonable Belief” Requirement77
  • § 10:4 : User’s Duty to Furnish Confirmed Addresses78
    • § 10:4.1 : When Is There a Duty?78
    • § 10:4.2 : Reasonably Confirming the Accuracy of an Address79
Appendix A1: FACTA Section 114: Establishment of Procedures for the Identification of Possible Instances of Identity Theft (Red Flag Authorizing Statute)
Appendix A2: FACTA Red Flag Rules
Appendix A3: FACTA Interagency Guidelines: Identity Theft Detection, Prevention,and Mitigation
Appendix A4: FACTA Red Flag Examples from the Agencies
Appendix A5: FACTA Section 315: Notice of Address Discrepancy Statute
Appendix A6: FACTA Regulation: Duties of Users of Consumer Reports Regarding Address Discrepancies
Appendix A7: FACTA Regulation: Duties of Card Issuers Regarding Changes of Addresses
Appendix B1: The USA PATRIOT Act’s Customer Identification Program Statute
Appendix B2: The USA PATRIOT Act’s Customer Identification Program Regulation
Appendix B3: FCRA Limitations on Users of Credit Information When a Consumer Report Contains a Fraud Alert or Active Duty Alert
Appendix B4: FCRA Duty for Users of Credit Information to Provide Accurate Information to a Consumer Reporting Agency
Appendix B5: FCRA Prohibition on the Sale, Transfer,or Placement for Collection of Debt Resulting from Identity Theft
  Table of Appendices
  Index

  Please click here to view the latest update information for this title: Last Update Information  
 

Print Share Email
News & Expert Analysis

October 2, 2013

CAFC Finds Promise Not to Infringe Insufficient in ANDA Litigation

From: Patent Law Practice Center

On September 26, 2013, the United States Court of ...

September 30, 2013

Forest Labs sues over Generic Version of SAVELLA®

From: Patent Law Practice Center

Forest Laboratories, Inc. (NYSE:FRX) and Forest La...

September 26, 2013

The Tangible, Mechanical Nature of Software

From: Patent Law Practice Center

Recently U.S. Patent No. 8,515,829 (the ’829...

Related Seminars

Fundamentals of Swaps & Other Derivatives 2013

Oct. 16, 2013

Tax Strategies for Corporate Acquisitions, Dispositions, Spin-Offs, Joint Ventures, Financings, Reorganizations & Restructurings 2013

Oct. 16 - 18, 2013

Advanced Swaps & Other Derivatives 2013

Oct. 17 - 18, 2013

  • FOLLOW PLI:
  • RSS
  • facebook
  • twitter

All Contents Copyright © 1996-2013 Practising Law Institute. Continuing Legal Education since 1933.