Beginning this November contact centers including teleservices firms that handle consumer financial information are required by Federal law have formal written plans to identify, detect, and respond to patterns, practices, or specific activities that could indicate ID theft. These regulations are known as the 'Red Flags' rules, technically sections 114 and 315 of the federal Fair and Accurate Credit Transactions Act of 2003. Every consumer data touchpoint including contact centers, data processing, and HR must follow Red Flags, and for good reason. To make Red Flags work, Michele Shuster, senior partner Mac Murray, Cook, Petersen & Shuster LLP, recommends that contact centers develop and implement compliance training programs on the written policies. Teleseservices companies should consider getting a head start by developing their own Red Flags-compliant ID theft prevention program before they are asked to do so by current or prospective clients.