Enforcement of the Red Flags Rules designed to protect against identity theft begins August 1, 2009. Since twice delaying enforcement from the original compliance date of November 2, 2008 and the extended date of May 1, 2009, the FTC has created additional resources for organizations to help them comply with the law. The resources are available at the FTC’s Red Flags Rule microsite. Some of the resources available include:
- Frequently Asked Questions on Identity Theft Rules
- Compliance Template to Help Low-Risk Small Businesses Develop Identify Theft Programs
- Article: What Health Care Providers Need to Know About Complying with New Requirements for Fighting Identity Theft
For further detail on Red Flag Rules, see von Briesen & Roper's Health Law Bulletin: "Red Flag Rules: Are They Applicable to You?"