The World Privacy Forum published a new report today, Red Flag and Address Discrepancy Requirements: Suggestions for Health Care Providers. The report discusses the applicability of the new FTC Red Flag regulations to the health care sector along with suggestions for providers. The recently issued regulations by the FTC require financial institutions and creditors to develop and implement written identity theft prevention programs. The rules take effect Nov. 1. Health care providers — whether they are for-profit, non-profit, or governmental entities — may have obligations under the new rules. Medical identity theft is a real concern in the health care sector, and is included expressly in the Red Flag Rules Guidelines.
The Office of Inadequate Security
