- On November 15, 2007, the FDIC issued a final rule and guidelines addressing identity theft red flags, address discrepancies, and change of address requests (see FIL-100-2007, dated November 15, 2007).
- The FDIC has published the attached FAQs to assist financial institutions in conforming with the regulation and guidelines.
- The FAQs are divided into four sections and include answers to questions concerning:
- the scope of the regulation,
- the definition of "covered account," the definition of "service provider,"
- types of notices of address discrepancy that trigger the rule, and
- furnishing a confirmed address to a consumer reporting agency.
FDIC-Supervised Banks (Commercial and Savings)
Chief Compliance Officer
Chief Information Security Officer
FIL-100-2007, Identity Theft Red Flags, November 15,
Frequently Asked Questions:
Identity Theft Red Flags and Address Discrepancies
"Frequently Asked Questions: Identity Theft Red Flags and
Address Discrepancies" - PDF (PDF Help)
Jeffrey Kopchik, Senior Policy Analyst, at
firstname.lastname@example.org or (202) 898-3872; or Richard Schwartz,
Counsel, at email@example.com or (202) 898-7424
FIL-30-2009 - PDF (PDF Help)
FDIC financial institution letters (FILs) may be accessed
from the FDIC's Web site at
To receive FILs electronically, please visit
Paper copies of FDIC financial institution letters may be
obtained through the FDIC's Public Information Center,
3501 Fairfax Drive, E-1002, Arlington, VA 22226 (1-877-
275-3342 or 703-562-2200).