Issuer Complaint
The bank, lender, insurer, finance provider, or account provider that filed the marker must justify the filing and answer the complaint.

A CIFAS marker dispute usually starts with the issuer that filed the marker. It may then move through CIFAS review, the Financial Ombudsman Service, ICO pressure, and court-stage documents where required.
CIFAS Civil Dispute Framework
The issuer controls the original filing. Other bodies become relevant only when the complaint reaches their stage or their powers support the document being prepared.
The bank, lender, insurer, finance provider, or account provider that filed the marker must justify the filing and answer the complaint.
CIFAS is a not-for-profit fraud prevention organisation. It maintains the National Fraud Database (NFD), where member organisations record fraud markers. CIFAS does not place markers itself. Its members do. CIFAS sets the filing standards and can investigate complaints about member conduct.
The Financial Ombudsman Service is a free, independent body that resolves complaints between consumers and financial businesses. If a regulated firm rejects your complaint, or the complaint reaches the Ombudsman stage, you may be able to refer the case to the FOS. Eligibility depends on who is complaining and the relationship the complaint arises from.
The ICO is the UK's independent authority for data protection. A CIFAS marker is personal data on the National Fraud Database. If the institution's Data Protection Officer fails to respond to your Subject Access Request within 30 days, that is a data protection issue. The ICO investigates those complaints and can add regulatory pressure.
The County Court applies UK GDPR, the Data Protection Act 2018, and common law. Unlike the FOS, which uses a fair and reasonable test, the court applies legal tests. If a CIFAS marker is inaccurate personal data, the court can order its removal and can award damages for the harm caused.
Organisation roles
The strongest route is ordered. Complain to the issuer first, then escalate only when the next body has a proper role to play.
The first complaint goes to the organisation that filed the marker, usually a bank, lender, insurer, finance provider, or account provider. It must justify the filing and respond to the complaint.
Fraud prevention organisation that maintains the National Fraud Database
CIFAS is a not-for-profit fraud prevention organisation. It maintains the National Fraud Database (NFD), where member organisations record fraud markers. CIFAS does not place markers itself. Its members do. CIFAS sets the filing standards a...
Independent body that resolves complaints between consumers and financial businesses
The Financial Ombudsman Service is a free, independent body that resolves complaints between consumers and financial businesses. If a regulated firm rejects your complaint, or the complaint reaches the Ombudsman stage, you may be able to re...
UK data protection regulator
The ICO is the UK's independent authority for data protection. A CIFAS marker is personal data on the National Fraud Database. If the institution's Data Protection Officer fails to respond to your Subject Access Request within 30 days, that...
Applies UK GDPR law and can order marker removal or award damages
The County Court applies UK GDPR, the Data Protection Act 2018, and common law. Unlike the FOS, which uses a fair and reasonable test, the court applies legal tests. If a CIFAS marker is inaccurate personal data, the court can order its rem...
Regulator of financial services firms in the UK
The FCA does not normally resolve individual CIFAS marker complaints, but conduct rules can support arguments about fairness, proportionality, and complaint handling.
Start with the issuer decision, then prepare the next document for the route that is actually open.