This comes as the regulator reveals it opened 603 cases relating to fraud and a further 99 cases relating to cyber crime issues in the last year.
Launching in Charity Fraud Awareness Week, the charity regulator has published bespoke guidance on how trustees can protect their charity from cyber crime and a separate shorter guide on fraud. These guides, which replace the regulator’s previous guidance, are more concise and easier to use.
The fraud guide explains what to do if fraud or attempted fraud is discovered at a charity and provides tips on how to reduce the risk of fraud taking place. It explains the importance of having robust internal financial controls and signposts to the Commission’s more detailed guide about this.
Cyber fraud is a key area of concern for many organisations that handle money and personal data. Through its casework, the regulator identified the most common type of cyber enabled fraud experienced by charities is phishing attempts.
The Commission’s cyber crime guidance seeks to help charities protect themselves from this ongoing threat. It sets out the importance of establishing an internal culture of fraud and cyber crime awareness.
The guidance has been developed with the support of the National Cyber Security Centre and their Small Charity Guide. It links to several free online training modules designed for charities of all sizes.
Both guides highlight the importance of reporting all fraud attempts, including those that failed, to Action Fraud. Fraud is underreported, with many hesitant to report incidents. Reporting enables trustees to get the support they need and means there is a more accurate picture of how fraud is affecting the sector. Mazeda Alam, Head of Guidance & Practice at the Charity Commission, said:
“Protecting your charity from fraud and cyber crime can understandably seem daunting, but there are many small, inexpensive steps charities can take to reduce the risk of any potential internal or external fraudster being successful.
Introducing a simple measure such as having dual authorisation for all financial transactions can help avoid these issues arising – which are often opportunistic.
It is every trustee’s responsibility to ensure they’ve done all they reasonably can to protect their charity from harm – reading our guidance is the best place to start. “