The FTC's Enforcement Policy Statement did not affect other federal agencies' enforcement of the original November 1, 2008 deadline for institutions subject to their oversight to be in compliance.
For those who have not been following the long timeframe to the deadline at the end of this month, the Red Flags Rule became effective on January 1, 2008, with full compliance for all covered entities originally required by November 1, 2008. The Commission issued several Enforcement Policies delaying enforcement of the Rule. Most recently, the Commission announced in October 2009 that at the request of certain members of Congress, it was delaying enforcement of the Rule until June 1, 2010, to allow Congress time to finalize legislation that would limit the scope of business covered by the Rule.
The Commission then received another request from Congress for another delay in enforcement of the Rule beyond June 1, 2010. In response, the Commission extended the stay through December 31, 2010.
The Commission continually urged Congress to pass legislation that will resolve any questions as to which entities are covered by the Rule, thereby obviating the need for further enforcement delays.
Barring Congress passing legislation limiting the scope of the Red Flags Rule with an effective date earlier than December 31, 2010, the Commission will begin enforcement as of that effective date.
Effective Date: December 31, 2010
Call to Action -
Time is Running Out!
Mortgage Loan Originators (Brokers, Lenders, "Creditors")
Implement immediately an Identity Theft Prevention Program, Red Flags Rule, and Customer Identification Program.
(1) The FTC provides information about designing and implementing some of these programs. FTC Red Flags website.
(2) There are many vendors that provide them for relatively low cost.
(3) Lenders Compliance Group provides the Identity Theft Prevention Program - Policies and Procedures - Red Flags Rule and Address Discrepancies, a low cost, comprehensive, easy to implement program that incorporates all three of the aforementioned areas.
Investors, Wholesale and Correspondent Lenders, Servicers, "Creditors"
You are not exempt from the proper due diligence to ensure that you are doing business with entities that are compliant with the Red Flags Rule! It should be part of your year-end updates and clients approval procedures to require some form of certification that your clients have actually implemented the statutory requirements.
(1) Develop a certification or attestation to be signed by the covered entities with which you conduct business.
(2) Lenders Compliance Group has developed a one-page Identity Theft Prevention Certification expressly for this purpose. We will offer this important Certification to you free as a courtesy. Please email your request to Jonathan Foxx, our Managing Director.
Visit Library for Issuances
LENDERS COMPLIANCE GROUP is the first full-service, mortgage risk management firm in the country, specializing exclusively in mortgage compliance and offering a full suite of hands-on and automated services in residential mortgage banking.