{"abstract":"The Commodity Futures Trading Commission (\"CFTC\") and the Securities and Exchange Commission (\"SEC\") (together, the \"Commissions\") are jointly issuing final rules and guidelines to require certain regulated entities to establish programs to address risks of identity theft. These rules and guidelines implement provisions of the Dodd-Frank Wall Street Reform and Consumer Protection Act, which amended the Fair Credit Reporting Act and directed the Commissions to adopt rules requiring entities that are subject to the Commissions' respective enforcement authorities to address identity theft. First, the rules require financial institutions and creditors to develop and implement a written identity theft prevention program designed to detect, prevent, and mitigate identity theft in connection with certain existing accounts or the opening of new accounts. The rules include guidelines to assist entities in the formulation and maintenance of programs that would satisfy the requirements of the rules. Second, the rules establish special requirements for any credit and debit card issuers that are subject to the Commissions' respective enforcement authorities, to assess the validity of notifications of changes of address under certain circumstances.","action":"Joint final rules and guidelines.","agencies":[{"raw_name":"COMMODITY FUTURES TRADING COMMISSION","name":"Commodity Futures Trading Commission","id":77,"url":"https://www.federalregister.gov/agencies/commodity-futures-trading-commission","json_url":"https://www.federalregister.gov/api/v1/agencies/77","parent_id":null,"slug":"commodity-futures-trading-commission"},{"raw_name":"SECURITIES AND EXCHANGE COMMISSION","name":"Securities and Exchange Commission","id":466,"url":"https://www.federalregister.gov/agencies/securities-and-exchange-commission","json_url":"https://www.federalregister.gov/api/v1/agencies/466","parent_id":null,"slug":"securities-and-exchange-commission"}],"body_html_url":"https://www.federalregister.gov/documents/full_text/html/2013/04/19/2013-08830.html","cfr_references":[{"chapter":null,"citation_url":null,"part":162,"title":17},{"chapter":null,"citation_url":null,"part":248,"title":17}],"citation":"78 FR 23638","comment_url":null,"comments_close_on":null,"correction_of":null,"corrections":[],"dates":"Effective date: May 20, 2013; Compliance date: November 20, 2013.","disposition_notes":null,"docket_ids":["Release Nos. 34-69359, IA-3582, IC-30456","File No. S7-02-12"],"dockets":[],"document_number":"2013-08830","effective_on":"2013-05-20","end_page":23666,"executive_order_notes":null,"executive_order_number":null,"explanation":null,"full_text_xml_url":"https://www.federalregister.gov/documents/full_text/xml/2013/04/19/2013-08830.xml","html_url":"https://www.federalregister.gov/documents/2013/04/19/2013-08830/identity-theft-red-flags-rules","images":{},"images_metadata":{},"json_url":"https://www.federalregister.gov/api/v1/documents/2013-08830?publication_date=2013-04-19","mods_url":"https://www.govinfo.gov/metadata/granule/FR-2013-04-19/2013-08830/mods.xml","not_received_for_publication":null,"page_length":29,"page_views":{"count":9916,"last_updated":"2026-05-12 10:15:04 -0400"},"pdf_url":"https://www.govinfo.gov/content/pkg/FR-2013-04-19/pdf/2013-08830.pdf","presidential_document_number":null,"proclamation_number":null,"public_inspection_pdf_url":"https://public-inspection.federalregister.gov/2013-08830.pdf?1366289264","publication_date":"2013-04-19","raw_text_url":"https://www.federalregister.gov/documents/full_text/text/2013/04/19/2013-08830.txt","regulation_id_number_info":{"3038-AD14":{"issue":"201110","html_url":"https://www.federalregister.gov/regulations/3038-AD14/identity-theft-red-flag-rules-for-cftc-regulated-institutions-under-fair-credit-reporting-act-","title":"Identity Theft Red Flag Rules for CFTC Regulated Institutions Under Fair Credit Reporting Act ","xml_url":"http://www.reginfo.gov/public/do/eAgendaViewRule?pubId=201110&RIN=3038-AD14&operation=OPERATION_EXPORT_XML","priority_category":"Other Significant"},"3235-AL26":{"issue":"201110","html_url":"https://www.federalregister.gov/regulations/3235-AL26/identity-theft-red-flags-rules","title":"Identity Theft Red Flags Rules","xml_url":"http://www.reginfo.gov/public/do/eAgendaViewRule?pubId=201110&RIN=3235-AL26&operation=OPERATION_EXPORT_XML","priority_category":"Substantive, Nonsignificant"}},"regulation_id_numbers":["3038-AD14","3235-AL26"],"regulations_dot_gov_info":{"supporting_documents":[],"regulatory_plan":{"html_url":"https://www.federalregister.gov/regulations/3038-AD14/identity-theft-red-flag-rules-for-cftc-regulated-institutions-under-fair-credit-reporting-act-","title":"Identity Theft Red Flag Rules for CFTC Regulated Institutions Under Fair Credit Reporting Act "},"comments_url":"https://www.regulations.gov/docketBrowser?rpp=50&so=DESC&sb=postedDate&po=0&dct=PS&D=CFTC-2013-0040","supporting_documents_count":0,"docket_id":"CFTC-2013-0040","regulation_id_number":"3038-AD14","title":"Identity Theft Red Flags Rules","checked_regulationsdotgov_at":"2013-05-09T08:06:19Z"},"regulations_dot_gov_url":null,"significant":true,"signing_date":null,"start_page":23638,"subtype":null,"title":"Identity Theft Red Flags Rules","toc_doc":"Identity Theft Red Flags Rules","toc_subject":null,"topics":["Brokers","Confidential business information","Credit","Investment companies","Privacy","Reporting and recordkeeping requirements","Securities","Security measures"],"type":"Rule","volume":78}