What Is a Covered Account? Definition and Examples
Discover what a covered account means for your finances and how it helps safeguard against identity theft. Learn its importance for consumer protection.
Understanding “covered accounts” is important for navigating personal finances. This concept serves as a foundational element in consumer protection, helping to safeguard personal financial information from potential threats. Knowing what constitutes a covered account provides clarity on how financial institutions and other entities are expected to protect customer data and transactions. This framework helps ensure the security of an individual’s financial identity and assets.
Understanding What Constitutes a Covered Account
A “covered account” is a financial or transactional relationship defined by regulations designed to combat identity theft. This term originates from the Red Flags Rule, which is part of the Fair and Accurate Credit Transactions Act (FACTA). The rule mandates that certain entities establish programs to identify, detect, and respond to patterns, practices, or specific activities known as “red flags” that could indicate identity theft.
An account generally qualifies as “covered” if it is offered or maintained by a financial institution or creditor, primarily for personal, family, or household purposes. These accounts typically involve or are designed to permit multiple payments or transactions, indicating an ongoing relationship between the customer and the entity. Additionally, any other account for which there is a reasonably foreseeable risk of identity theft to customers, or to the safety and soundness of the financial institution or creditor, is also considered a covered account.
Common Examples of Covered Accounts
Many common financial products and services are considered covered accounts due to their ongoing transactions and personal information. A checking account, for instance, is a classic example as it allows for frequent deposits, withdrawals, and payments, establishing a continuous relationship with a financial institution. Similarly, a savings account, where individuals regularly deposit and withdraw funds, also fits this definition. These types of accounts inherently carry a risk of identity theft if proper safeguards are not in place.
Credit card accounts represent another common covered account, as they involve revolving credit and numerous transactions over time. Mortgage loans and auto loans are also classified as covered accounts because they entail long-term financial commitments with regular payments and significant personal data.
Beyond traditional banking, utility accounts, such as those for electricity, gas, or water services, are often considered covered accounts. These involve ongoing billing, deferred payments, and the collection of personal identifying information, making them susceptible to identity theft. Certain types of investment accounts, where individuals engage in buying, selling, and holding various assets, also fall under this classification due to the transactional nature and the sensitive financial data involved.
Who Must Identify Covered Accounts
The responsibility for identifying and managing covered accounts falls primarily on specific types of entities, as outlined by the Red Flags Rule. This regulation mandates that both “financial institutions” and “creditors” develop and implement programs to prevent identity theft. Financial institutions include entities such as banks, credit unions, and savings and loan associations that offer deposit accounts or other financial products. These organizations maintain ongoing relationships with customers and handle sensitive financial data.
Creditors, in this context, are broadly defined as any person or entity that regularly extends, renews, or continues credit. This definition encompasses a wide range of businesses beyond traditional lenders, including mortgage lenders, auto dealerships that provide financing, and even utility companies that offer deferred payment terms for services. Any business that regularly permits customers to defer payment for goods or services, or arranges for the extension of credit, is generally considered a creditor under this rule. These entities are legally required to establish and maintain an identity theft prevention program tailored to their specific operations and the types of covered accounts they manage.
Protections for Covered Accounts
The classification of an account as “covered” directly benefits consumers by mandating enhanced security measures from the entities that maintain these accounts. Entities with covered accounts are required to establish an Identity Theft Prevention Program (ITPP). The purpose of these programs is to proactively identify “red flags,” which are suspicious patterns or practices that could indicate identity theft. This includes unusual activity on an account, suspicious documents, or alerts from consumer reporting agencies.
Upon detecting such red flags, the ITPP mandates that the entity take appropriate steps to mitigate the risk. These responses can range from monitoring the account more closely to contacting the customer to verify activity, changing passwords, or even closing the account if fraud is confirmed. Furthermore, these programs are not static; entities must periodically review and update their ITPPs to address new identity theft risks and evolving methods used by fraudsters. These measures collectively work to safeguard consumers’ personal information and financial assets, providing a layer of protection against the damaging effects of identity theft.