The Federal Trade Commission announced a third delay, from August 1, 2009, to November 1, 2009, for compliance with the identity theft prevention red flags rule. The delay is for another three months. Compliance originally was scheduled for November 1, 2008, then delayed the first time until May 1, 2009. Entities affected are creditors and financial institutions. Healthcare providers that extend delayed payment plans to patients are deemed “creditors” under the red flags rule. This delay was to give affected entities more time to develop and implement written identity theft prevention policies and procedures for compliance with the rule, which is based on enabling regulations of provisions in the Fair and Accurate Credit Transactions Act of 2003. You can visit www.ftc.gov/redflagsrule for additional information. HIPAA.com has outlined provisions of the rule in an earlier posting, and has available for download a copy of FTC’s “Fighting Fraud with the Red Flags Rule: A How-To Guide for Business.” Just click on “Red Flags Rule” to the right to access this information online.
FTC Delays “Red Flags” Rule for Third Time
You also might be interested in
In our series on the HIPAA Administrative Simplification Security Rule,[...]
OCR of HHS FINALLY Issues HIPAA/HITECH Act Privacy, Security, Enforcement, and Breach Notification Modifications Final Rule
January 18, 2013. On January 16, 2013, the Office of[...]
FTC’s “Red Flags” Rule to Prevent Identity Theft Requires Compliance by Healthcare Providers on Friday, May 1, 2009
The Federal Trade Commission’s (FTC’s) “red flags” rules for financial[...]