Cifas

Last updated
Cifas
Company type"Not-for-profit" organisation
IndustryFraud prevention
Founded1988
Headquarters
London WC1
,
United Kingdom
Key people
  • John Browett (Chairman, 2020–present)
  • Barbara Judge CBE (Chairman, 2016–2020)
  • Ken Cherrett (Chairman, 1990–2016)
  • Vic Ware OBE (Chairman, 1988–1990)
  • Mike Haley (CEO, 2018–2023)
  • Simon Dukes (CEO, 2013–2018)
  • Peter Hurst (CEO, 1999–2013)
  • Alan Hilton (CEO, 1990–1999)
  • Anthony Sharp (CCTA, 1988–1990)
Products
  • National Fraud Database
  • Internal Fraud Database
Number of employees
90+

Cifas is a fraud prevention service in the United Kingdom. It is a not-for-profit membership association representing organisations from across the public, private and voluntary sectors. Cifas states its mission is "to detect, deter and prevent fraud in society by harnessing technology and working in partnership". [1]

Contents

Cifas operates two core fraud prevention databases that are claimed to be the largest in the UK: the National Fraud Database and the Internal Fraud Database. Its systems are also used by banks and building societies to access Home Office immigration data through a specialist portal. [2]

Data from Cifas' members reveals that instances of identity fraud in the UK are at record levels in the UK, particularly among people aged under 30. [3]

Cifas data also highlights the growing issue of "money mules" – people who allow their bank accounts to be used to launder money.

History

Cifas was established in 1988 by the Consumer Credit Trade Association (CCTA) under the acronym CIFAS: Credit Industry Fraud Avoidance System, although the company no longer operates under this acronym as the scope of its services has broadened. It was developed in association with the Office of Fair Trading, as well as the Information Commissioner's Office, who continue to this day to take an active interest in the development of Cifas.

Cifas is today run by a board of directors, which includes both independent directors who are not directly involved in the day-to-day running of the organisation, and the Chief Executive and Chief Operating Officer, who are. From 1988 to 2016 the majority of the directors were elected by participating organisations. They now participate in the governance of the organisation through an "Advisory Board".

Fraud databases

Cifas' National Fraud Database allows participating organisations to exchange details of applications for products or services which are considered to be fraudulent, inconsistent or suspicious; [4] exchange information about accounts and services which are being misused; and information about insurance and other claims that are considered to be fraudulent, inconsistent or suspicious. [5]

Organisations can also exchange information about innocent victims of fraud to protect them from further fraud.

The Internal Fraud Database allows participating organisations to exchange details of cases where an applicant or member of staff is considered to have acted fraudulently. [6]

Under the Data Protection Act, an individual has the right to make a subject access request to Cifas, who will, in accordance with the Act and its exemptions, disclose data held on the individual where the law requires it. Cifas is not a credit reference agency but is the data controller for Cifas data and responsible for its accuracy.

Complaints

All warnings used to be examined by specialist fraud staff in participating organisations, but now, automated systems may be used to refuse a product or service without any investigation of a warning. Cifas says: "The ability to make automated decisions allows members to immediately decline facilities to subjects who are deemed an immediate fraud risk. This is another massive step forward in utilising the data from Cifas, freeing up resources from reviewing referrals that have already been deemed a high fraud risk." [7]

Consumers who are disadvantaged by this change in practice may complain to the Information Commissioner and seek financial compensation from both Cifas and the responsible organisations who supplied and used the information. Consumers may also complain to one of the ombudsman services who cover the organisations represented within Cifas. This includes the Financial Ombudsman Service, the Communications Ombudsman, the Public Services Ombudsman, and the Local Government & Social Care Ombudsman.

Immigration Act 2014

In 2014, the Immigration Act became law. Cifas was named as the sole provider of Home Office Immigration Data and launched the Cifas Immigration Portal (CIP) in December 2014. [8] All current account-providing banks and building societies in the UK are required to use the CIP to access the Home Office data on disqualified persons. [9] The data was implicated in the Windrush scandal.

Other services

Victims of identity fraud or people who are at risk of identity fraud can apply for Cifas protective registration for a £30 fee. [10] Protective registration acts as a warning the organisation should (but they are not forced to) carry out additional checks to verify the identity of the applicant or customer. They may just refuse the product or service instead as they consider the fraud risk to be too high.

Cifas used to operate a Protecting the Vulnerable scheme that helped local authorities protect individuals subject to the Mental Capacity Act 2005 in their care. This was merged into another service[ specify ] in 2020.

Financial stability

Cifas has declared losses[ when? ] as follows:

YearLoss
2017£749,000
2018£578,000
2019£1,328,000
2020£1,389,000
2021£627,000
2022£442,000

Losses now[ when? ] amount to £5.1 million in total.

The Directors consider[ when? ] the organisation to be a well funded going concern with break-even achievable. Costs grew from £5.6 million to £11.5 million between 2016 and 2022. Cifas is funded largely from levies on financial services suppliers and other participating organisations funded by customers, and public sector organisations that are funded by taxpayers.

The financial benefits of Cifas, reported by its participating organisations, are reducing relative to its size, with benefits per pound of subscription income as follows:

YearBenefits
2018£234
2019£208
2020£169
2021£139
2022£112

The published value of fraud prevented by Cifas is up by approximately 30% in the last ten years, from £1 billion to £1.3 billion (broadly in line with inflation) while costs and staff numbers have more than doubled. Fraud losses are increasing by a lot more than inflation, with the National Crime Agency claiming a 17% increase in losses in 2021/22 to £2.46 billion. The amount of fraud prevented by Cifas, as a proportion of total losses, seems to be falling, suggesting it is becoming much less effective.

Reserves

Cash reserves are calculated in the 2022 accounts to be £4.2 million but calculated reserves are not the same as cash available to fund investment. The net cash position shows intangible fixed assets being capitalised to the value of £2.1 million. This represents IT work that has been paid for from cash but the cost is charged to the accounts over 5 or 10 years. Only depreciation is charged to the annual profit and loss account. It is analogous to loaning one's savings to oneself to spend on a car, and repaying the savings account in instalments over 5 to 10 years, while treating the value of the car as a savings account balance. This type of creative accounting is allowed by the law and is used by multi-national companies regularly, but it is unusual in the charity and not-for-profit sector.

Debts

Debts rose from just £76,000 in 2015 to £1.4 million in 2021, falling slightly to £1.3m in 2022. This represents a significant deterioration in control of credit, with the working capital tied up, also funded from cash reserves. Available cash is just £600,000, much lower than the claimed reserves figure of £4.2 million. The available cash covers less than 1 month of operating costs, a tiny buffer for a not-for-profit organisation in the event of an economic downturn. Best practice in this sector is to hold cash equal to 6 to 9 months of operating costs.

Remuneration

The 2022 accounts show that Cifas paid its current chief executive £275,309. The lowest paid staff are in outsourcing companies used by Cifas for telephone and clerical work who receive the national minimum wage of £10.42 per hour.[ dubious discuss ] The chief executive receives 16 times more than these lowest paid workers.

Cifas is no longer listed as being a Living Wage Foundation employer (£12.00 per hour or £13.15 in London[ timeframe? ]), suggesting that Cifas no longer meets their requirements. Cifas was one of the first organisations to become a Living Wage Foundation accredited employer.

The average salary at Cifas in 2022 was £69,956 (£38.40 per hour), compared to £68,788 in 2021 and £63,209 in 2020.

Collaborations and partnerships

Cifas works with fraud prevention, financial, public sector, academic and charitable organisations and law enforcement to raise awareness of fraud and promote best practices in fraud prevention. Collaborative partners include the City of London Police, CIPFA, the Home Office, Age UK, the Fraud Advisory Panel, and UK Finance.

See also

Related Research Articles

<span class="mw-page-title-main">Fraud</span> Intentional deception made for personal gain or to damage another individual

In law, fraud is intentional deception to secure unfair or unlawful gain, or to deprive a victim of a legal right. Fraud can violate civil law or criminal law, or it may cause no loss of money, property, or legal right but still be an element of another civil or criminal wrong. The purpose of fraud may be monetary gain or other benefits, for example by obtaining a passport, travel document, or driver's license, or mortgage fraud, where the perpetrator may attempt to qualify for a mortgage by way of false statements.

<span class="mw-page-title-main">Identity theft</span> Deliberate use of someone elses identity, usually as a method to gain a financial advantage

Identity theft, identity piracy or identity infringement occurs when someone uses another's personal identifying information, like their name, identifying number, or credit card number, without their permission, to commit fraud or other crimes. The term identity theft was coined in 1964. Since that time, the definition of identity theft has been legally defined throughout both the U.K. and the U.S. as the theft of personally identifiable information. Identity theft deliberately uses someone else's identity as a method to gain financial advantages or obtain credit and other benefits. The person whose identity has been stolen may suffer adverse consequences, especially if they are falsely held responsible for the perpetrator's actions. Personally identifiable information generally includes a person's name, date of birth, social security number, driver's license number, bank account or credit card numbers, PINs, electronic signatures, fingerprints, passwords, or any other information that can be used to access a person's financial resources.

<span class="mw-page-title-main">Serious Organised Crime Agency</span> Non-departmental public body of the UK government from 2006-13

The Serious Organised Crime Agency (SOCA) was a non-departmental public body of the Government of the United Kingdom which existed from 1 April 2006 until 7 October 2013. SOCA was a national law enforcement agency with Home Office sponsorship, established as a body corporate under Section 1 of the Serious Organised Crime and Police Act 2005. It operated within the United Kingdom and collaborated with many foreign law enforcement and intelligence agencies.

Bank fraud is the use of potentially illegal means to obtain money, assets, or other property owned or held by a financial institution, or to obtain money from depositors by fraudulently posing as a bank or other financial institution. In many instances, bank fraud is a criminal offence.

Cheque fraud, or check fraud, refers to a category of criminal acts that involve making the unlawful use of cheques in order to illegally acquire or borrow funds that do not exist within the account balance or account-holder's legal ownership. Most methods involve taking advantage of the float to draw out these funds. Specific kinds of cheque fraud include cheque kiting, where funds are deposited before the end of the float period to cover the fraud, and paper hanging, where the float offers the opportunity to write fraudulent cheques but the account is never replenished.

The Australian High Tech Crime Centre (AHTCC) are hosted by the Australian Federal Police (AFP) at their headquarters in Canberra. Under the auspices of the AFP, the AHTCC is party to the formal Joint Operating Arrangement established between the AFP, the Australian Security Intelligence Organisation and the Computer Network Vulnerability Team of the Australian Signals Directorate.

<span class="mw-page-title-main">United States Postal Inspection Service</span> Federal law enforcement agency

The United States Postal Inspection Service (USPIS), or the Postal Inspectors, is the federal law enforcement arm of the United States Postal Service. It supports and protects the U.S. Postal Service, its employees, infrastructure, and customers by enforcing the laws that defend the nation's mail system from illegal or dangerous use. Its jurisdiction covers any crimes that may adversely affect or fraudulently use the U.S. Mail, the postal system or postal employees. With roots going back to the late 18th century, the USPIS is the oldest continuously operating federal law enforcement agency.

<span class="mw-page-title-main">Audit Commission (United Kingdom)</span>

The Audit Commission was a statutory corporation in the United Kingdom. The commission's primary objective was to appoint auditors to a range of local public bodies in England, set the standards for auditors and oversee their work. The commission closed on 31 March 2015, with its functions being transferred to the voluntary, not-for-profit or private sector.

Identity fraud is the use by one person of another person's personal information, without authorization, to commit a crime or to deceive or defraud that other person or a third person. Most identity fraud is committed in the context of financial advantages, such as accessing a victim's credit card, bank accounts, or loan accounts. False or forged identity documents have been used in criminal activity or in dealings with government agencies, such as immigration. Today, the identities of real persons are often used in the preparation of these false documents. This can lead to bad consequences and trouble.

Mortgage fraud refers to an intentional misstatement, misrepresentation, or omission of information relied upon by an underwriter or lender to fund, purchase, or insure a loan secured by real property.

Internet fraud prevention is the act of stopping various types of internet fraud. Due to the many different ways of committing fraud over the Internet, such as stolen credit cards, identity theft, phishing, and chargebacks, users of the Internet, including online merchants, financial institutions and consumers who make online purchases, must make sure to avoid or minimize the risk of falling prey to such scams.

Anti-money laundering (AML) software is software used in the finance and legal industries to help companies comply with the legal requirements for financial institutions and other regulated entities to prevent or report money laundering activities. AML software can facilitate faster and more accurate compliance and investigations.

<span class="mw-page-title-main">Credit card fraud</span> Financial crime

Credit card fraud is an inclusive term for fraud committed using a payment card, such as a credit card or debit card. The purpose may be to obtain goods or services or to make payment to another account, which is controlled by a criminal. The Payment Card Industry Data Security Standard is the data security standard created to help financial institutions process card payments securely and reduce card fraud.

<span class="mw-page-title-main">UK Border Agency</span> British border control agency

The UK Border Agency (UKBA) was the border control agency of the Government of the United Kingdom and part of the Home Office that was superseded by UK Visas and Immigration, Border Force and Immigration Enforcement in April 2013. It was formed as an executive agency on 1 April 2008 by a merger of the Border and Immigration Agency (BIA), UKvisas and the detection functions of HM Revenue and Customs. The decision to create a single border control organisation was taken following a Cabinet Office report.

Ombudsmen in Australia are independent agencies who assist when a dispute arises between individuals and industry bodies or government agencies. Government ombudsman services are free to the public, like many other ombudsman and dispute resolution services, and are a means of resolving disputes outside of the court systems. Australia has an ombudsman assigned for each state; as well as an ombudsman for the Commonwealth of Australia. As laws differ between states just one process, or policy, cannot be used across the Commonwealth. All government bodies are within the jurisdiction of the ombudsman.

A card-not-present transaction is a payment card transaction made where the cardholder does not or cannot physically present the card for a merchant's visual examination at the time that an order is given and payment effected. It is most commonly used for payments made over the Internet, but can also be used with mail-order transactions by mail or fax, or over the telephone.

<span class="mw-page-title-main">Ghana Card</span> National identity card of Ghana

The Ghana Card is the national Identity card that is issued by the Ghanaian authorities to Ghanaian citizens – both resident and non-resident, legal and permanent residents of foreign nationals. It is proof of identity, citizenship and residence of the holder. The current version is in ID1 format and biometric. It is issued by the National Identification Authority of Ghana and Regarded as a property of the country as such. In July 2023, through the initiative of the Vice President, Dr. Mahamudu Bawumia, new card numbers were issued to newborn babies as part of pilot program to incorporate newborn babies unto the database.

IDEMIA is a multinational technology company headquartered in Courbevoie, France. It provides identity-related security services, and sells facial recognition and other biometric identification products and software to private companies and governments.

<span class="mw-page-title-main">Carding (fraud)</span> Crime involving the trafficking of credit card data

Carding is a term describing the trafficking and unauthorized use of credit cards. The stolen credit cards or credit card numbers are then used to buy prepaid gift cards to cover up the tracks. Activities also encompass exploitation of personal data, and money laundering techniques. Modern carding sites have been described as full-service commercial entities.

Mass-marketing fraud is a scheme that uses mass-communication media – including telephones, the Internet, mass mailings, television, radio, and personal contact – to contact, solicit, and obtain money, funds, or other items of value from multiple victims in one or more jurisdictions. The frauds where victims part with their money by promising cash, prizes, and services and high returns on investment are part of mass market fraud.

References

  1. "About Us". Cifas. 7 December 2015. Archived from the original on 16 March 2017. Retrieved 2017-03-15.
  2. "CIFAS named for bank account controls role". GOV.UK. Home Office. 26 February 2014. Retrieved 2017-03-15.
  3. "Identity fraud reached record levels in 2016". BBC News. 2017-03-15. Retrieved 2017-03-15.
  4. "Fair Processing Notices for Cifas". Cifas. Retrieved 2023-08-24.
  5. "National Fraud Database". Cifas. 25 November 2010. Retrieved 2017-03-15.
  6. "Internal Fraud Database". Cifas. 25 November 2010. Retrieved 2017-03-15.
  7. White, Nick (2018-06-13). "How the updated Principles of using Cifas' National Fraud Database help its members". Cifas. Retrieved 2023-08-24.
  8. "Immigration Act 2014". Cifas. 17 July 2014. Retrieved 2017-03-15.
  9. "Guidance on current accounts provisions - banks and building societies" (PDF). GOV.UK. Home Office.
  10. "Cifas – For Individuals". Cifas. 1 October 2010. Retrieved 2017-03-15.
This page is based on this Wikipedia article
Text is available under the CC BY-SA 4.0 license; additional terms may apply.
Images, videos and audio are available under their respective licenses.