Charity Commission Serious Incident Reporting: When & How
When and how to report a serious incident to the Charity Commission. What counts, the reporting process, and what happens after you report.
Serious incident reporting is a legal duty for UK charities. Failing to report can lead to regulatory action — but many trustees aren't sure what counts or how to report. This guide clarifies both.
What is a Serious Incident?
The Charity Commission defines a serious incident as an adverse event that results in, or risks, significant harm to:
- Your charity's beneficiaries, staff, or volunteers
- Your charity's property, assets, or reputation
- Your charity's work or operations
Examples That Must Be Reported
Safeguarding
- Allegations of abuse by a trustee, staff member, or volunteer
- A known safeguarding risk not being properly managed
- A child or vulnerable adult harmed while in your charity's care
Financial
- Fraud or theft (any amount)
- Significant financial loss
- Misuse of charity funds
- Money laundering concerns
Other
- Data breaches affecting personal data
- Links to terrorism or extremism
- Criminal activity within the charity
- Significant reputational damage
- Regulatory investigations by other bodies (Ofsted, CQC, etc.)
- Trustee disqualification
When to Report
As soon as reasonably possible after the incident occurs or is discovered. Don't wait until you have all the facts — report what you know and update later.
The Charity Commission says: "You should report a serious incident even if you are managing it."
How to Report
- Log in to the Charity Commission online portal
- Go to your charity's page
- Select "Report a serious incident"
- Complete the form with:
- What happened
- When it happened
- Who was involved
- What action you've taken
- What further action is planned
- Submit and keep a copy for your records
What Happens After You Report
- The Commission will acknowledge receipt
- They may ask for more information
- In most cases, they'll note the report and monitor — no action needed if you're handling it properly
- In serious cases, they may open a regulatory case (investigation)
- Reporting does NOT mean you're in trouble — it shows good governance
Common Mistakes
- Not reporting — the worst outcome. The Commission takes a dim view of charities that knew about incidents but didn't report.
- Waiting too long — report promptly, even with incomplete information
- Only reporting to the Commission — some incidents also need reporting to the police, DBS, ICO (data breaches), or social services
- Not recording board discussion — document how trustees were informed and what decisions were made
Incident Management Systems
QuikCue builds secure incident reporting and management systems for charities — logging, escalation, audit trails, and trustee notifications.
We build autonomous systems for charities.
Pledge collection, payment processing, WhatsApp automation, analytics dashboards, and the infrastructure that lets a small team do the work of fifty. Free tools. Fractional technology leadership. No fluff.
Get the next deep dive in your inbox.
No spam. No weekly roundups. Just the occasional piece when we have something worth saying.
Related articles
Charity Trustee Recruitment: How to Build a Strong Board
How to recruit charity trustees. Skills audits, where to find candidates, interview processes, diversity, and induction. Complete board-building guide.
Impact Measurement for Charities: Frameworks & Tools
How to measure and report charity impact. Theory of Change, outcomes frameworks, data collection, and reporting tools. Practical guide for UK charities.
Charity Data Protection & GDPR: Practical Compliance Guide
GDPR compliance for UK charities. Data protection principles, lawful bases, donor data, consent, subject access requests, and ICO requirements.