Taking part in the National Fraud Initiative
Information for bodies working with the National Fraud Initiative, including the process, obligations around data, and contact details.
The National Fraud Initiative (NFI) matches electronic data within and between public and private sector bodies to prevent and detect fraud. These bodies include police authorities, passenger transport, fire and rescue authorities, as well as local councils and some private sector bodies.
Public sector bodies are required to submit data to the National Fraud Initiative on a regular basis. View data requirements and data specifications for the public sector. NFI also provides additional services for the public sector.
The NFI offers a number of services that are available to all types of private sector organisations. View National Fraud Initiative: private sector services to see how the NFI could help your organisation and how to get involved. You can also read case studies.
If you already have access, log in to the secure National Fraud Initiative web application to:
- watch training videos
- update contact details
- upload data
- submit confirmation of privacy notices
View National Fraud Initiative: timetables for information about important deadlines and milestones.
Read instructions for bodies in Northern Ireland, Scotland and Wales.
Privacy notices and current data protection legislation applicable in the UK
Data protection legislation (Data Protection Act 2018 and UK GDPR) requires NFI participants to tell individuals that their data will be processed for the purposes of preventing and detecting fraud. Providing this information is known as a privacy notice.
The key contact for each organisation taking part in the NFI must submit a declaration via the secure NFI web application confirming that they are following the privacy notice requirements.
Refer to the Code of Data Matching Practice and the Information Commissioner’s Office guidance for more information on privacy notices.
Contact nominations and responsibilities
Senior Responsible Officer role in the participating organisation
The director of finance, or equivalent, will act as the senior responsible officer (SRO) for the NFI. The SRO is responsible for ensuring that the organisation taking part in the NFI meets the statutory requirements. They should:
- nominate a key contact
- ensure the key contact has access to the matches, via the secure NFI web application, when they become available
- ensure that the key contact fulfils all privacy notice requirements
Key contact role
The key contact is responsible for:
- fulfilling privacy notice requirements – they should be in direct communication with their organisation’s data protection officer or equivalent
- ensuring that the data formats guidance, and data specifications are followed
- nominating appropriate users to upload data submissions, investigate the matches, and act as the point of contact for other bodies about a match (preferred dataset contact)
- coordinating and monitoring the overall exercise
- ensuring that outcomes from the investigation of matches are recorded on the web application promptly and accurately
Watch training videos within the NFI web application and attend relevant training sessions for more information.
Data submission
The user responsible for the submission of the data should ensure that:
- data meets the specifications, contains a header row, and is in the correct format
- data is submitted via the NFI secure web application data file upload facility (DFU)
- data is received by the required deadline(s)
Investigating the matches
The key contact will set up a user or several users with access to the NFI web application to review and investigate the matches. They may also be responsible for responding to questions from other matched bodies if this role is delegated to them by the key contact.
Data matching
Once the data-matching process for each exercise is completed, the NFI will make the output available to the relevant participating organisation for consideration and investigation via the secure NFI software. Participating bodies are then responsible for investigating any matches.
The NFI will provide guidance with the data matching output: it’s essential to consider this as it will help with prioritising reports and the matches within them.
Making the process more efficient
There are a number of measures that the senior responsible officer/key contact can take to make the process more efficient. These include:
- making sure participants access the relevant training videos located in the secure NFI web application
- ensuring that all contact details are up to date
- reviewing the data quality reports from the previous year to identify any improvements that can be made for the next data submission
- making sure that appropriate staff review all documentation before submitting data
- planning in advance what investigative resources are needed, based on specific expertise and knowledge – this means matches can be dealt with promptly (e.g., it may be best for a nominated person in Internal Audit or Accounts Payable to deal with trade creditor duplicate matches)
Statutory framework
Read details of the statutory framework under which the Cabinet Office carries out data matching exercises.
External auditors
External auditors (where applicable) will continue to be involved in the NFI. They will be able to use the output from the exercise to help them assess the arrangements that audited bodies have in place to prevent and detect fraud.
Contact NFI
To discuss your requirements or sign up to take part, please email nfiqueries@cabinetoffice.gov.uk or call 0345 345 8019.
Updates to this page
-
Updated some details, including contact numbers
-
Updated section on privacy notices
-
Content updated.
-
Updated guidance on taking part in the National Fraud Initiative.
-
First published.