The Fraud Act 2006 provides a clear legal framework to prevent, detect, and address fraudulent activities. We guide you through it by unpacking what the Act covers and how to protect your business from fraud.
When it came into force, The Fraud Act 2006 consolidated and modernised the law on fraud in England and Wales, making it easier for prosecutors to bring cases of fraud to trial, and deter people from committing fraud.
Fraud accounts for over 40% of crimes committed in England and Wales, and complaints increased by more than 50% last year. Commercial fraud could lead to serious penalties for businesses including jail time and/or expensive fines if they’re found guilty under the Fraud Act 2006.
“Corporate fraud significantly damages confidence in UK companies and ultimately costs the taxpayer. The publication of this guidance means that time is running short for corporations to get their house in order or face criminal investigation.”
- Nick Ephgrave QPM, Director of the Serious Fraud Office
New Failure to Prevent Fraud guidance also came into effect on 1 September 2025, which makes it a punishable crime if businesses don’t put in place measures to prevent it.
As a result, compliance professionals and L&D teams have a big responsibility to both recognise and prevent fraud in their workplace. We will cover the following:
The Fraud Act 2006 came into effect on 15 January 2007 to provide businesses with a clear framework that helps them to prevent, detect and address fraudulent activities. It also consolidated and modernised existing laws on fraud in England and Wales, making it easier for prosecutors to bring cases to trial and prevent people from committing it. The law covers the three main fraudulent activities: fraud by false representation, failing to disclose information and abuse of position.
The act also offers greater clarity on what fraud is – a dishonest act, intended to gain a financial advantage or to cause a loss to another person. However, victims don't need to have suffered a loss in order for a prosecution to be brought.
The three main offences in the Fraud Act 2006 include:
Fraud by false representation occurs when a person makes a false representation to another person with the intention of causing that person to act in a way that is to the person's detriment. The false representation can be made in writing, orally, or by conduct.
Examples of fraud by false representation include:
Fraud by failing to disclose information occurs when a person has a legal duty to disclose information to another person and fails to do so with the intention of causing that person to act in a way that is to the person's detriment.
Examples of fraud by failing to disclose information include:
Fraud by abuse of position occurs when a person is in a position of trust and uses that position to make a gain for themselves or another person or to cause a loss to another person.
Examples of fraud by abuse of position include:
It is also an offence to make or supply articles knowing that they will be used in the commission of fraud. This offence is designed to target those who knowingly provide the tools or resources used to perpetrate fraudulent activities.
Examples of making or supplying these articles include:
The Fraud Act 2006 makes it a criminal offence to trick others into giving you money or property. This can be done in a variety of ways, including making false statements, concealing information, or abusing a position of trust.
Examples of obtaining money or property by deception include:
As the name suggests, this offence occurs when a person obtains services by lying about their intent or ability to pay for them. The deception can be by a false representation, a failure to disclose information, or an abuse of position.
Examples of obtaining services by deception include:
This offence occurs when a person makes or omits to make an entry in a book of account that is false or misleading. For example, falsifying a company's accounts to hide a loss or making a false entry in a cash book to conceal a theft.
The maximum sentence for fraud under the Fraud Act 2006 is 10 years in prison. However, the actual sentence that a person receives will depend on the seriousness of the offence. If you are convicted of fraud, you may also be ordered to pay a fine or to make restitution to the victim of your crime.
Fines vary depending on the type of fraud. Since Autumn 2024, Companies House has issued 234 penalties to the value of £58,500 under the Failure to Prevent Guidance. For larger businesses found guilty of committing fraud, the amount may be significantly higher, depending on how serious it was and its impact.
For example, a Birmingham-based waste packaging director was fined over £470,000 this year after being found guilty of committing fraud by false representation – if he is unable to pay, he faces three years in prison.
To be found guilty under the Fraud Act 2006, prosecutors must prove the following:
Proving the “Mens Rea” of the offence:
This refers to the mental element of the crime. In other words, it is the intention of the person who commits the fraud. The prosecution must prove that the defendant acted dishonestly and that they intended to gain a financial advantage or to cause a loss to another person.
Proving the causal link between the fraud and the loss:
The prosecution must also prove that the fraud caused the loss to the victim. This can sometimes be difficult to do, especially in cases where there are multiple factors that contribute to the loss.
Identifying the victim of the fraud:
In some cases, it can be difficult to identify the victim of the fraud. This is often the case when fraud is committed against a company or other organisation.
Quantifying the loss caused by the fraud:
The prosecution must also quantify the loss caused by the fraud. This can be difficult to do in cases where the loss is not easily measurable.
Before implementing protective measures, it's crucial to identify the specific risks your company faces. For example, consider how you share personal information such as names, addresses and debit card details, which are often targeted by cybercriminals to commit fraud. Consider factors like the industry, the size of your business, and the nature of your operations too. Here are some important points when reviewing your existing fraud protection measures.
Ensure that no single individual has complete control over financial transactions, and conduct periodic reviews of financial records and procedures to identify potential vulnerabilities. Restrict access to sensitive information and systems to authorised personnel only.
Educate employees about common fraud schemes and how to recognise and report suspicious activity. Emphasise the importance of ethical behaviour and compliance with company policies.
Conduct thorough due diligence on suppliers, vendors, and business partners. Be sure to incorporate strong contractual terms to protect your company's interests.
Implement software that can identify anomalies and potential fraudulent activities in financial data. Protect sensitive information by encrypting it both at rest and in transit.
Conduct regular internal audits to assess the effectiveness of your controls and consider engaging external auditors for an independent evaluation.
Develop a comprehensive plan for responding to fraud incidents and establish clear communication protocols for reporting and investigating incidents.
The Fraud Act 2006 is legislation that clearly defines what fraud is to help businesses recognise, prevent and address it. It also makes it easier for prosecutors to bring cases to trial because it’s measured against three main offences: fraud by false representation, failing to disclose information and abuse of position.
The three main offences are fraud by false representation, failing to disclose information and abuse of position. Fraud by false representation is when a person makes a false representation such as selling a stolen item, while failing to disclose information, is where they knowingly omit details like a criminal record when applying for jobs. The final one is abuse of power, where someone in a position of trust uses it to make a gain, for example, a CEO using company money to fund personal holidays or cars.
To find a person guilty of committing fraud, prosecutors have to prove the offence and the loss it caused the victim. They can use documents like bank statements, accounting records, messages, witness statements and more to prove it.
Our Essentials Library contains e-learning content designed to help organisations meet fundamental compliance requirements. If you are looking for focused training, our Fraud Prevention Training Package offers a complete solution for your compliance programme. Courses in the libraries include:
If you would like to access leading insights and compliance tips, you can browse our free resources by topic to find guides, modules, compliance bites and more.
Explore our collection