Regulation S-ID, Identity Theft Red Flags Rules

OMB 3235-0692

Regulation S-ID, and the information collection it requires, is designed to better protect consumers from the risks of identity theft. The regulation requires entities that are subject to the Commission’s jurisdiction to address identity theft in two ways. First, the rules and guidelines require financial institutions and creditors to develop and implement a written identity theft prevention program designed to detect, prevent, and mitigate identity theft in connection with certain existing accounts or the opening of new accounts. Second, the rules establish special requirements for any credit and debit card issuers that are subject to the Commission's jurisdiction, to assess the validity of notifications of changes of address under certain circumstances.

The latest form for Regulation S-ID, Identity Theft Red Flags Rules expires 2022-08-31 and can be found here.

Latest Forms, Documents, and Supporting Material

Document Name
3235-0692.pdf Supplementary Document
3235-0692.pdf Supplementary Document
Reg S-ID (2022) - Supporting Statement.pdf Supporting Statement A
Regulation S-ID

All Historical Document Collections

202202-3235-014 Approved without change	Extension without change of a currently approved collection	2022-05-20
201901-3235-002 Approved without change	Extension without change of a currently approved collection	2019-05-23
201512-3235-007 Approved without change	Extension without change of a currently approved collection	2016-04-22
201304-3235-006 Approved with change	New collection (Request for a new OMB Control Number)	2013-04-26
201203-3235-008 Comment filed on proposed rule	New collection (Request for a new OMB Control Number)	2012-03-26