We are independent & ad-supported. We may earn a commission for purchases made through our links.
WiseGEEK

Advertiser Disclosure

Our website is an independent, advertising-supported platform. We provide our content free of charge to our readers, and to keep it that way, we rely on revenue generated through advertisements and affiliate partnerships. This means that when you click on certain links on our site and make a purchase, we may earn a commission. Learn more.

How We Make Money

We sustain our operations through affiliate commissions and advertising. If you click on an affiliate link and make a purchase, we may receive a commission from the merchant at no additional cost to you. We also display advertisements on our website, which help generate revenue to support our work and keep our content free for readers. Our editorial team operates independently from our advertising and affiliate partnerships to ensure that our content remains unbiased and focused on providing you with the best information and recommendations based on thorough research and honest evaluations. To remain transparent, we’ve provided a list of our current affiliate partners here.
Finance

What is the Identity Theft Protection Act?

By Dale Marshall
Updated May 17, 2024
Our promise to you
WiseGEEK is dedicated to creating trustworthy, high-quality content that always prioritizes transparency, integrity, and inclusivity above all else. Our ensure that our content creation and review process includes rigorous fact-checking, evidence-based, and continual updates to ensure accuracy and reliability.

Our Promise to you

Founded in 2002, our company has been a trusted resource for readers seeking informative and engaging content. Our dedication to quality remains unwavering—and will never change. We follow a strict editorial policy, ensuring that our content is authored by highly qualified professionals and edited by subject matter experts. This guarantees that everything we publish is objective, accurate, and trustworthy.

Over the years, we've refined our approach to cover a wide range of topics, providing readers with reliable and practical advice to enhance their knowledge and skills. That's why millions of readers turn to us each year. Join us in celebrating the joy of learning, guided by standards you can trust.

Editorial Standards

At WiseGEEK, we are committed to creating content that you can trust. Our editorial process is designed to ensure that every piece of content we publish is accurate, reliable, and informative.

Our team of experienced writers and editors follows a strict set of guidelines to ensure the highest quality content. We conduct thorough research, fact-check all information, and rely on credible sources to back up our claims. Our content is reviewed by subject matter experts to ensure accuracy and clarity.

We believe in transparency and maintain editorial independence from our advertisers. Our team does not receive direct compensation from advertisers, allowing us to create unbiased content that prioritizes your interests.

The Identity Theft Protection Act is the short title of legislation in the United States passed in most states in response to the growing incidence of computer fraud, privacy violations, and identity theft. Based on model legislation developed by the Public Interest Research Group (PIRG) and the Consumers' Union (CU), the act gives consumers the right to file a police report if they become the victims of identity theft, and to freeze their credit files at their own discretion, preventing the unauthorized issuance of new credit. The act also imposes higher standards of security for companies' use of consumers' personal data, including social security numbers, and requires companies to destroy files containing personal information when no longer needed.

When identity theft surfaced as a significant problem for American consumers, it also posed a serious problem to law enforcement. For various reasons, many law enforcement agencies declined even to issue a police report when citizens complained, claiming that they couldn't be certain that a crime had actually been committed, and if it had, that it had taken place within their jurisdiction. Credit card issuers, however, refused to take any action in the absence of a police report, and the companies that maintain credit reports likewise refused to acknowledge that a theft had occurred without a police report. Consumers, victimized by identity thieves who raided their banking and credit accounts, were unable to seek satisfaction because they couldn't get a police report, despite documented proof of the theft on their account statements. The Identity Theft Protection Act eliminated that problem.

Credit freezes are another important component of the Identity Theft Protection Act. Before extending credit, lenders review an applicant's data with one or more of the three credit reporting agencies in the US, generally extending credit if the report is favorable. Using stolen personal data, identity thieves file fraudulent credit applications and then use the credit established to steal. Creditors expected the victims of the identity theft to pay the bills incurred by the thieves. A credit freeze prohibits the credit reporting agencies from revealing anything at all about a consumer, thus providing absolute protection for potential victims. Credit freezes can be lifted temporarily when a consumer legitimately applies for credit.

Companies whose databases contained files on literally millions of consumers, meanwhile, continually experienced security breaches, losing sensitive consumer data to theft or incompetence. Security measures to safeguard such data were often minimal or non-existent; some sensitive files were lost when laptops containing the data were left in taxicabs and on restaurant tables. Some companies also treated their customers' confidential data as an asset to be exploited, making profit by selling it to third parties or sharing it with affiliates. Identity thieves posing as merchants were sometimes able to purchase customer files from large companies, often with sufficient information for them to make fraudulent credit applications.

Attempts by the US Congress to deal with identity theft were mostly ineffective, in part because of questions of jurisdiction, and in part because of opposition from banking and credit interests. Federal identity theft protection law essentially gives consumers access to free copies of their credit reports and the right to ask the credit reporting agencies to flag their credit files. These flags are supposed to alert potential creditors to require direct contact with the consumer and positive identification before extending credit, but are frequently ignored by creditors.

To address the perceived deficiencies of federal legislation, PIRG and the CU developed the Identity Theft Protection Act, formally titled the State Clean Credit and Identity Theft Protection Act. Model legislation like this is often written as a guideline for the various states when they share common objectives on issues that don't fall under federal jurisdiction, and facilitate operations of businesses operating in multiple states because they don't have to contend with a host of different and sometimes contradictory regulations.

WiseGEEK is dedicated to providing accurate and trustworthy information. We carefully select reputable sources and employ a rigorous fact-checking process to maintain the highest standards. To learn more about our commitment to accuracy, read our editorial process.
See our Editorial Process Share Feedback

Related Articles

Discussion Comments

WiseGEEK, in your inbox

Our latest articles, guides, and more, delivered daily.

WiseGEEK, in your inbox

Our latest articles, guides, and more, delivered daily.