Know Your Rights: Protect Your Credit Under the Consumer Reporting Act (CRA)

Free consumer education on credit report access, consent, and notice requirements

Many people are taught how to build credit, but very few are taught their legal rights before a credit report can even be accessed or updated.
This page explains when lenders must give notice, what valid consent looks like, and when consumer reports are legally restricted.

This information is free to share with individuals, community groups, and nonprofit organizations.

Why This Matters

Most financial education focuses on:

• Paying bills on time

• Managing debt

• Improving credit scores

But fewer people know that credit reports cannot be accessed or updated unless strict legal requirements are met first.

Understanding notice and consent rules can help prevent:

• Unauthorized credit checks

• Improper reporting

• Damage to credit files without legal basis

This is a critical but under-taught area of consumer protection.

Your Rights Before a Credit Report Is Accessed

Under the Consumer Reporting Act (CRA):

✔ Notice of Intent Is Required

Before a lender accesses your consumer report to extend credit, notice of intent must be provided.
(Sections 10(2) and 10(3))

✔ Notice of Disclosure Is Required

Before personal information is disclosed to a consumer reporting agency or another creditor, notice must be given.
(Section 10(5))

How Notice Must Be Given

Notices are not optional and must meet specific legal standards:

• Must be bold or underlined

• Font size must be no smaller than 10

• Must be provided at the time of credit application

• Must be delivered:

  • Personally, or

  • By ordinary mail, registered mail, or

  • Any method that provides proof of receipt

(Sections 10(6) and 20(1))

If these requirements are not met, access to the consumer report may be legally restricted.

When Consumer Reports Are Restricted

A consumer report cannot be accessed or updated if legal conditions are not satisfied.

❌ No Permissible Purpose

If there is no documented permissible purpose under
Sections 8(1)(d)(i)–(vi), the report is restricted.
(Sections 8(1) and 8(2))

❌ No Valid Notice

If proper notice under Section 10(2) was not given, the consumer report cannot be accessed.
(Section 11(3))

❌ No Prior Permissible Purpose

A consumer report cannot be updated unless a previous permissible purpose existed.

These rules apply every time a report is accessed or updated, not just during the first application.

Quick Consumer Checklist

Before a lender accesses or updates a credit report:

• ⬜ Was notice of intent provided?

• ⬜ Was the notice bold or underlined and at least size 10?

• ⬜ Was it delivered in a way that proves receipt?

• ⬜ Does a valid permissible purpose exist?

If any answer is no, the credit report may be legally restricted.

For Community Organizations and Nonprofits

This information is free to share and may be used in:

• Financial literacy programs

• Newcomer and settlement services

• Youth and student education programs

• Consumer protection workshops

Free resources available:

• Printable one-page toolkit (PDF)

• Newsletter and email-ready content

• Short workshop or webinar presentations

Organizations may distribute these materials at no cost.

Want These Resources for Your Community?

Free materials and presentations are available for:

• Community centers

• Nonprofits

• Faith-based organizations

• Student groups

• Housing and employment programs

Request free materials or a short educational session:
info@financialrightscoalition.org

Important Note

This information is provided for educational purposes and does not constitute legal advice.
Consumers may wish to seek legal guidance for individual situations.

Knowledge is protection. Understanding notice and consent rules helps consumers defend their credit before damage occurs.