FTC Extends Enforcement Date of Red Flags Rule

Client Alert | 1 min read | 08.03.09

The Federal Trade Commission (the "FTC") announced that it has postponed enforcement of the Red Flags Rule¹ until November 1, 2009. This is the third enforcement extension by the FTC. The Red Flags Rule became effective January 1, 2008 and the mandatory enforcement date was originally November 1, 2008. The FTC suspended enforcement of the Rule until May 1, 2009 and subsequently suspended enforcement until August 1, 2009.²

The Red Flags Rule requires financial institutions and creditors to look for "red flags" that signal possible identity theft. The FTC announced that it has provided this additional extension since small businesses and entities with a low risk of identity theft remain uncertain of their obligations. The FTC intends to provide additional guidance to assist these companies. The FTC explained in a July 29th press release that these steps are consistent with the House Appropriations Committee's request that the FTC defer enforcement in conjunction with additional efforts to minimize the burden on health care providers and small businesses with a low risk of identity theft problems.

Please let us know if you have any questions or if we can help you in crafting a compliant Program.

¹ 72 Fed. Reg. 63717, 63771-63775 (Nov. 9, 2007) (codified at 16 C.F.R. Part 681).

² The enforcement delay does not apply to the address discrepancy and credit card issuer rules. These rules are not addressed in this Health Law Alert.

Insights

Client Alert | 3 min read | 11.21.25

A Sign of What’s to Come? Court Dismisses FCA Retaliation Complaint Based on Alleged Discriminatory Use of Federal Funding

On November 7, 2025, in Thornton v. National Academy of Sciences, No. 25-cv-2155, 2025 WL 3123732 (D.D.C. Nov. 7, 2025), the District Court for the District of Columbia dismissed a False Claims Act (FCA) retaliation complaint on the basis that the plaintiff’s allegations that he was fired after blowing the whistle on purported illegally discriminatory use of federal funding was not sufficient to support his FCA claim. This case appears to be one of the first filed, and subsequently dismissed, following Deputy Attorney General Todd Blanche’s announcement of the creation of the Civil Rights Fraud Initiative on May 19, 2025, which “strongly encourages” private individuals to file lawsuits under the FCA relating to purportedly discriminatory and illegal use of federal funding for diversity, equity, and inclusion (DEI) initiatives in violation of Executive Order 14173, Ending Illegal Discrimination and Restoring Merit-Based Opportunity (Jan. 21, 2025). In this case, the court dismissed the FCA retaliation claim and rejected the argument that an organization could violate the FCA merely by “engaging in discriminatory conduct while conducting a federally funded study.” The analysis in Thornton could be a sign of how forthcoming arguments of retaliation based on reporting allegedly fraudulent DEI activity will be analyzed in the future....

Client Alert | 3 min read | 11.20.25
Design Patent Application Drawings & Prosecution History Must Be Clear (Merely Translucent Won’t Suffice!)
Client Alert | 3 min read | 11.20.25
Implications of CRISPR Dispute on Licensees
Client Alert | 6 min read | 11.19.25
Buying Peace: The Importance of Releasing FCA Liability When Resolving Criminal Allegations of Fraud Against the Government

View All Insights