The Fair and Accurate Credit Transactions (FACT) Act of 2003 (FACT Act), Pub. L. No. 108-159, 117 Stat. 1952 (Dec. 4, 2003) (see 15 U.S.C. §1601 nt. for affected provisions) (full-text).
The FACT Act amended FCRA by adding requirements designed to prevent identity theft and assist identity theft victims. The FACT Act also included a provision requiring financial regulatory agencies and the FTC to promulgate a coordinated rule designed to prevent unauthorized access to consumer report information by requiring reasonable procedures for the proper disposal of such information.
Specific provisions Edit
- requires consumer reporting agencies (CRAs) to follow certain procedures concerning when to place, and what to do in response to, fraud alerts on consumers’ credit files;
- allows consumers one free copy of their consumer report each year from nationwide CRAs as long as the consumer requests it through a centralized source under rules to be established by the FTC;
- allows consumers one free copy of their consumer report each year from nationwide specialty CRAs (medical records or payments, residential or tenant history, check writing history, employment history, and insurance claims) upon request pursuant to regulations to be established by the FTC;
- requires credit card issuers to follow certain procedures if additional cards are requested within 30 days of a change of address notification for the same account;
- requires the truncation of credit card numbers on electronically printed receipts;
- requires business entities to provide records evidencing transactions alleged to be the result of identity theft to the victim and to law enforcement agencies authorized by the victim to take receipt of the records in question;
- requires CRAs to block the reporting of information in a consumer’s file that resulted from identity theft and to notify the furnisher of the information in question that it may be the result of identity theft;
- requires federal banking agencies, the FTC, and the National Credit Union Administration to jointly develop guidelines for use by financial institutions, creditors and other users of consumer reports regarding identity theft; and
- extends the statute of limitations for when identity theft cases can be brought.
- ↑ Pub. L. No. 108-159, 117 Stat. 1952.
- ↑ The Act enabled consumers to place three different types of fraud alerts intended to stop credit grantors from opening any new accounts. An individual who suspects they are, or are about to become, the victim of identity theft, can place an "initial alert" in their file. If an individual has been a victim of identity theft, and has filed report with a law enforcement agency, they can then request an “extended alert.” After an extended alert is activated, it will stay in place for seven years, and the victim may order two free credit reports within 12 months. For the next five years, credit agencies must exclude the consumer's name from lists used to make pre-screened credit or insurance offers. Finally, military officials are enabled to place an "active duty alert" when they are on active duty or assigned to service away from the usual duty station. 15 U.S.C. §1681c-1.