Non-bank creditors and financial institutions have until May 1 next year to comply with the Federal Trade Commission’s new “Red Flags Rule,” which requires companies to develop and implement written identity theft-prevention programs. The rule became effective Jan. 1, 2008, for all federally regulated lenders and compliance becomes mandatory on Nov. 1. While there has been no change in the...