FTC Again Delays Enforcement of Red Flags Rule

Client Alert | 1 min read | 07.30.09

The Federal Trade Commission has announced it will again extend the date for commencement of enforcement of the Red Flags Rule to prevent identity theft, moving the date back three months until November 1, 2009.

The Commission said that al though many covered entities have developed and implemented appropriate, risk-based programs since the Commission promulgated the final rule, some covered entities, particularly small businesses and entities with a low risk of identity theft, remain uncertain about their compliance obligations. To help these small and low risk entities with compliance, the Commission staff will shortly make available additional resources and guidance at the FTC's Red Flags Rule website.

In the meantime, groups representing physicians, lawyers and others treated as "creditors" under the Red Flags Rule are continuing to seek legislation or court relief against the rule.

Insights

Client Alert | 3 min read | 05.14.26

CISA’s “CI Fortify” Initiative Signals New Expectations for Critical Infrastructure Resilience: What Operators and Vendors Need to Know

On May 5, 2026, CISA announced CI Fortify — an initiative directing critical infrastructure owners and operators to prepare for geopolitical conflict in which OT networks are actively targeted while communications infrastructure is simultaneously degraded....

Client Alert | 4 min read | 05.14.26
No-Fly Zones for Drones: FAA Proposes New Rules Over Critical Infrastructure
Client Alert | 2 min read | 05.14.26
Proposed DFARS Rule Could Require Disclosures and Mitigation Related to Foreign Ownership, Control, and Influence (FOCI) on Certain Unclassified Contracts
Client Alert | 4 min read | 05.14.26
Supply Chain Disruption – Again

View All Insights