This document provides guidance for organizations for the development, implementation and maintenance of an effective fraud control management system (FCMS). This includes fraud prevention, early detection of fraud and effective response to fraud events that have occurred or can occur in the future.

The document provides guidance for managing the risk of fraud, including:

a)       internal fraud against the organization;

b)       external fraud against the organization;

c)        internal fraud in collaboration with business associates or other third parties;

d)       external fraud in collaboration with the organization’s personnel;

e)       fraud by the organization or by persons purporting to act on behalf of and in the interests of the organization.

This document is applicable to all organizations, regardless of type, size, nature of activity and whether in the public or private, profit or not-for-profit sectors. It is not intended to assist consumers in preventing, detecting or responding to what is generally termed "consumer fraud".