Identity Theft Recovery Walkthrough
Free interactive walkthrough that produces a personalised UK identity-theft recovery plan tailored to what data was exposed and what threats are active. Runs entirely in your browser; nothing you enter is uploaded. The plan is organised by urgency: critical (24 hours), important (1 week), and ongoing (12-24 months).
Last reviewed: 13 May 2026 · ScamSupport research
What identity theft actually looks like in the UK in 2026
UK identity-theft cases have escalated steadily since 2022. CIFAS’s annual Fraudscape report consistently identifies identity fraud as the largest single fraud category, with most cases concentrating on application fraud — criminals opening accounts in victims’ names using harvested data. The common attack vectors are: large-scale data breaches (where your details surface on the criminal market months or years after the breach), phishing-related credential theft, document loss (passport / driving licence / utility bills), and romance / sextortion aftermath where the criminal harvested substantial personal data over weeks.
Recovery is a structured, multi-step process, not a single intervention. The most important early action is filing a CIFAS Protective Registration so future fraud applications get flagged. Everything else builds outward from there.
Why this walkthrough is structured by urgency
The UK identity-theft recovery sequence has a natural priority order driven by how quickly criminals can act on harvested data:
- Within 24 hours: CIFAS marker filed, primary cards locked, mobile port-out PIN set, primary email password changed and app-based 2FA enabled. These four steps prevent the most damaging follow-on actions.
- Within 1 week: Pull all three CRA credit files (Experian, Equifax, TransUnion), check Companies House for unfamiliar director registrations, check Royal Mail for unauthorised redirection requests, file Subject Access Requests (SARs) with any service the criminal accessed.
- Over 12-24 months: Monthly credit-file review, ongoing CIFAS file checks, Companies House alerts, alertness to follow-on / recovery scams targeting your data which has now circulated on the black market.
What the walkthrough produces
- Personalised priority action plan reflecting exactly what data was exposed, what threats are already active, and what you have already done.
- UK-specific contacts — CIFAS, Report Fraud, the three CRAs, Royal Mail, Companies House, HMRC’s fraud hotline, mobile networks.
- Letter and script templates for the most common requests: SAR to compromised service, mobile port-out lock script, Notice of Correction to credit file.
- Sequencing intelligence — which steps to do today, which to do this week, what to monitor for 12-24 months.
Frequently asked questions
Do I need to wait until I have proof of fraud to start?
No. The CIFAS Protective Registration costs £25 for 2 years and works on the precautionary principle: if your data has been exposed, file the marker BEFORE the criminal opens an account in your name. Most successful recoveries start with the marker already in place.
How long does the full recovery process take?
The first 6 critical steps should take a single day (about 2 hours of focused work). The 1-week steps take another 2-3 hours spread across the week. Ongoing monitoring is roughly 30 minutes per month for 12-24 months. Active dispute resolution with each affected lender or service can take 3-6 months per case.
What if my passport or driving licence was lost / stolen?
Report loss to HM Passport Office and / or DVLA the same day. Both can cancel the document so it cannot be used as ID by anyone else. Apply for a replacement. The original document number will be flagged across UK government checks.
What if a UK company has been registered in my name?
This is unfortunately common. Search your name on Companies House. If you find an unfamiliar company, file a complaint via Companies House and contact HMRC’s Fraud Hotline on 0800 788 887. Companies House can strike off the company; HMRC can flag any tax fraud attached to it.
What about identity theft when there’s been no financial loss yet?
Speed is even more valuable in this case. Most identity-fraud applications take weeks to months between data exposure and account creation. If you act fast with CIFAS + credit-file checks + Companies House check, you can intercept most criminal applications before they succeed. The walkthrough output reflects this — if you tick “no active threats yet”, the plan emphasises preventive marker filing rather than dispute resolution.
Related ScamSupport tools and pages
- CIFAS Protective Registration walkthrough — deep-dive on the £25 / 2-year fraud-prevention marker
- PSR Claim Wizard — if money was sent via bank transfer
- Chargeback & Section 75 Generator — if money was sent via card
- Report Fraud Filing Assistant — report to NFIB and get the crime reference
- Identity stolen UK recovery — full long-form playbook
- Credit report after scam UK — CRA-specific dispute process
- FOS complaint guide — if a financial firm refuses to remediate
Sources
- CIFAS — UK’s fraud prevention and identity-theft database
- Report Fraud — UK national fraud reporting
- Experian, Equifax, TransUnion — the three UK Credit Reference Agencies
- Companies House
- ICO — Information Commissioner’s Office, for data-protection complaints
This walkthrough produces guidance and a personalised action plan for your own use. It is not legal advice. For substantial financial losses, identity-fraud cases with criminal proceedings against you, or complex multi-jurisdictional cases, consider engaging an SRA-regulated solicitor.