B. Establishing and Fulfilling Requirements of the Red Flags Rule

Latest version.

The Red Flags Rule ("Rule") defines "Identity Theft" as "fraud committed using the identifying information of another person" and a "Red Flag" ("Red Flag") as a pattern, practice, or specific activity that indicates the possible existence of Identity Theft.

Under the Rule, every financial institution and creditor is required to establish an "Identity Theft Prevention Program" tailored to its size, complexity and the nature of its operation. The Program must contain reasonable policies and procedures to:

1. Identify relevant Red Flags for new and existing covered accounts and incorporate those Red Flags into the Program;

2. Detect Red Flags that have been incorporated into the Program;

3. Respond appropriately to any Red Flags that are detected to prevent and mitigate Identity Theft; and

4. Ensure the Program is updated periodically to reflect changes in risks to customers or to the safety and soundness of the creditor from Identity Theft.

                    
                        var val = document.getElementById('citecontent').innerHTML;
                        art.dialog.defaults.title = window.location.href;
                        art.dialog.data('cite', val);
                        art.dialog.data('homeDemoPath', '/Scripts/plus/artDialog/');
                        art.dialog.open('/Scripts/plus/artDialog/citeiframe.html');