Privacy information
The City of London Police is committed to protecting your personal data and being transparent about how it is used.
This page provides information about how personal data is processed in relation to the Report Fraud service, including links to relevant privacy notices and Data Protection Impact Assessments (DPIAs).
Who We Are
The City of London Police is the national lead force for fraud and is the data controller for personal data processed through the Report Fraud service.
Our Data Protection Officer (DPO) can be contacted at:
Email: [email protected] Post: Data Protection Officer, City of London Police, PO Box 36451, London, EC3A 8PF
How We Use Your Personal Data
When you submit a report via the Report Fraud service, we may collect and process personal data including:
• Your contact details • Details of the fraud or cyber crime • Information about financial loss or attempted loss • Information about suspects where known
This information is used for purposes including:
• Recording and assessing reports of fraud • Intelligence analysis and crime prevention • Investigations by law enforcement agencies • Sharing intelligence with partner organisations where lawful and necessary
Processing is carried out under lawful bases set out in UK data protection legislation, including performance of a task carried out in the public interest and law enforcement purposes.
Privacy Notices
Further details about how your data is used, retained, and shared is available in the following privacy notices:
• City of London Police Privacy Notice
This notice explains your rights, including access, rectification, restriction, and how to make a complaint.
Data Protection Impact Assessments (DPIAs)
A Data Protection Impact Assessment (DPIA) is carried out when processing is likely to result in a high risk to individuals’ rights and freedoms. DPIAs assess privacy risks and set out measures to mitigate them.
The following DPIAs are relevant to the Report Fraud service:
• Report Fraud Service Crime Management DPIA – Summary Version
• Report Fraud Service Data Migration DPIA – Summary Version
• Report Fraud Service Intelligence DPIA – Summary Version
• Report Fraud Service Prevention DPIA – Summary Version
• Report Fraud Service Victim Services DPIA – Summary Version
Where full DPIAs cannot be published for operational or security reasons, summary versions are provided to demonstrate compliance with data protection principles.
Data Sharing
Information provided through the Report Fraud service may be shared with:
• Police forces in England, Wales, and overseas where appropriate • Government departments and regulators • Financial institutions and industry partners for fraud prevention
All sharing is conducted under formal information sharing agreements and only where lawful and necessary.
Your Rights
Under UK data protection law, you have rights including:
• The right to be informed about how your data is used • The right of access to your personal data • The right to rectification of inaccurate data • The right to complain to the Information Commissioner’s Office (ICO)
For further information on your rights or to make a request, please see:
Subject Access Requests – City of London Police
Contact the Data Protection Officer
If you have any questions or concerns about how your data is used in relation to the Report Fraud service, please contact the City of London Police Data Protection Officer:
Email: [email protected] Post: Data Protection Officer, City of London Police, PO Box 36451, London, EC3A 8PF