- Delivering your donations as cash to people in poverty is life-changing, but it also creates risk of fraud and harm to recipients, their communities, and our staff.
- Below we outline how common those risks are for GiveDirectly and other aid organizations, plus our systems for preventing and responding when incidents occur.
- To improve our accountability and transparency, we’ll start publishing high-level annual incident reporting early next year.
We’re improving how we report to you on risks
Giving cash directly is a proven and dignified way to relieve multidimensional poverty. While your donations do a great deal of good for families in need, delivering them also creates a risk of harm and fraud, which we outline in this blog below.
You should also be able to review GiveDirectly’s org-wide incidents and outcomes, but are currently unable to, as our public reporting has been largely ad hoc and program-specific.
To help others learn from our work and raise our bar for transparency, here’s how we’re improving:
- Starting this year, we’ll release an annual summary of org-wide incidents of fraud, harm, and safety/security—look for it linked here in Q1 2025.
- In subsequent years, we plan to continuously improve the detail and specificity of this reporting, including data analysis on which programs and contexts are reporting the most risk.
Providing aid can result in physical, sexual, and psychological harm
We have a zero-tolerance policy towards anyone who harms another person. We’re continuously improving our systems and culture to prevent harm from happening, detect and respond quickly when it does.
Despite these efforts, in our 15 years of delivering cash to 1.6 million people, we’ve dealt with a range of cases, including:
- workplace harassment
- sexual exploitation and abuse
- physical violence
- financial exploitation
- outside security threats (Appendix)
Such incidents happen in all large aid organizations, and each type of program creates unique risks. For our work, these include:
- Distributing life-changing cash to people living in extreme poverty creates a power imbalance between our staff/partners and those we serve that is opportune for harm.
- Similarly, many of our staff live in countries with few employment options, creating a greater power imbalance between them and their managers.
- Giving sizable amounts of money to families or communities can, in rare instances, create or worsen existing interpersonal conflict, though research shows it more often reduces it.
Aid groups underinvest in prevention and fail to report incidents
The frequency of harm in the wider aid sector is largely unknown and approaches for addressing it are lacking. Below we quote from the UK’s 2018 Sexual exploitation and abuse in the aid sector report, but these points apply to all forms of harm:
- “Due to confirmed under-reporting, the exact scale is currently impossible to define, but practitioners suspect that those cases which have come to light are only the ‘tip of the iceberg’…
- “Improving reporting of sexual exploitation and abuse is vital to understanding the problem, responding to it, and ultimately, to preventing it…
- “Reports of sexual exploitation and abuse by aid workers and/or peacekeepers have emerged, the sector has reacted, but then the focus has faded… We heard from aid organisations that this was due to the pressure to reduce overheads.”
GiveDirectly’s safeguarding team works to prevent and respond to harms
In the past two years, GiveDirectly has increased our investment in safeguarding. Today, we have a dedicated safeguarding manager in each country we work in and global leadership from our VP of Risk, Internal Audit, Safeguarding and Compliance. We also contract with outside experts for specific system improvements or investigations.
With our compliance team, safeguarding staff prevent harm by:
- Improving program design to minimize opportunities for harm (see Appendix);
- Closely vetting data sharing agreements;
- Providing mandatory, recurring staff training on policies, code of conduct and values;
- Setting background and reference checks standards for new hires;
- Sensitizing communities of the risk of harm and ways to report it.
Today, when we receive an allegation, we initiate an investigation. If this investigation confirms harm was done, we take appropriate action. Depending on the case, this might include disciplinary action for staff, redress for survivors, and/or referral to local law enforcement for perpetrators. We also share information on staff misconduct with other aid organizations, as appropriate, through a global misconduct disclosure scheme to prevent perpetrators from finding new roles to commit harm.
Our survivor-centered approach means we don’t share all details of sexual harm cases
While we’re committed to sharing org-wide incidents of harm in our 2024 annual reporting, there are certain case details we are not able to disclose as we prioritize a survivor-centered approach, putting first the safety and well-being of survivors of sexual exploitation, abuse, or harassment (SEAH).
“The survivor’s wishes, safety, and well-being remain a priority in all matters and procedures… Investigations must uphold confidentiality at all times… Information relating to the case should be shared only on a limited, need-to-know basis… Decisions should be made in the best interests of the survivor, rather than the organization.” – Guidance on a survivor-centered approach from the Core Humanitarian Standard Alliance
Most survivors ask us to keep their experiences and testimony confidential, only sharing with staff immediately working on the investigation. We do not publish specifics that go against their wishes or could negatively impact their safety or well-being. More so than fraud or other types of harm, publication of sexual cases can bring stigma to survivors, which has been known to result in more harm.
Ultimately, our goal is to prioritize a survivor-centered approach, while still acting on our values of transparency and candor.
Fraud can occur via diverted transfers, business fraud, or outside scams
Fraud loss is common for all nonprofits but generally accounts for a fraction of their total budget: the former head of counter-fraud for Oxfam UK says, “Estimates of the scale of loss to fraud are between 2% and 5% of an organization’s income.”
GiveDirectly delivers over $150M a year, and, to date, our systems find our org-wide annual losses due to fraud have been consistently at or under 1%, but could increase as our detection improves.
GiveDirectly funds can be lost to fraud when staff or outsiders:
- Divert recipients’ cash transfers before they receive it (SIM swapping).
- Enroll ineligible people to receive a GiveDirectly cash transfer (imposters).
- Take recipients’ cash transfers or property bought with those transfers (bribes or theft).
- Commit business fraud.
Additionally, people in need can be targeted by scammers pretending to be GiveDirectly who ask for money in exchange for enrollment, which we work to prevent and address (e.g., WhatsApp scams).
Digital cash aid is more resistant to diversion fraud than other aid
Consider a program giving food aid to people in poverty: the procurement process of finding a food producer is open to corruption, and the long journey the food takes from manufacturer to recipient via warehouses, distribution centers, and sub-grantees is open to diversion at every step.
In a GiveDirectly program, we typically run our process end-to-end as money is digitally transferred from our bank account directly to a recipient’s mobile money SIM card without intermediaries. Both the recipient and GiveDirectly know and can verify the exact amount transferred. While there are comparatively fewer variables to monitor in our programs, we still carefully protect against fraud.
We stop fraud with a unique firewalled field audit team and machine-learning data flags
All of our teams work to mitigate losses from fraud, but GiveDirectly is unique for having a firewalled internal audit team dedicated to ensuring safe cash delivery. Since 2016, this fully independent team has run randomized 1:1 follow-ups to check the work of our enrollment teams, surface any inconsistencies or concerns from community members, and conduct investigations. When needed, we involve local authorities in investigations and redress, working to recover stolen funds.
This type of team is exceedingly rare in the nonprofit sector. From discussions at roundtables with other aid organizations, we’ve found many have financial audit teams looking for incongruities in spreadsheets and receipts, but almost none have on-the-ground, anonymous teams that audit their field operations.1
Beyond our internal audit team’s follow-up visits, we’re continuously enhancing our other prevention systems to quickly spot and respond to fraud attempts. Starting last year, we:
- Increased interactions between our senior staff and local community members/leaders and upgraded our whistleblower reporting platforms.
- Conduct more advanced detection analysis, automatically flagging anomalies in field operation data for investigation through machine learning.
Stopping harm and fraud comes with tough tradeoffs
While it would be heartening to hear that, “GiveDirectly is doing everything possible to prevent risks,” that would not be fully true, as this work brings tough tradeoffs with no obvious right answer:
- Speed: After a deadly earthquake, do you launch a relief program in 1 month to allow for hiring a robustly background-checked and trained team as survivors suffer or in 1 week with fewer preventive staffing processes but potentially save more lives?
- Targets: How do you set safeguarding and audit teams’ targets? “Prevent all cases” deters reporting. “Resolve X cases a quarter” incentivizes rushing through investigations.
- Transparency: Publicly sharing details of harm cases helps the aid sector improve but could put survivors at risk and go against their wishes. How much do you share and when?
- Acceptable risk: How do you define an avoidable harm vs. an unavoidable one when working in inherently high-risk areas like conflict zones?
- Costs: Fraud loss prevention and recovery can cost more than what is saved. Should our goal be 0.00% loss? If not, how do we calculate the “sweet spot” for cash leakage?
Our first value of “recipients first” guides our decision making on these trade-offs, but how we navigate them will change over time. Addressing risk is a moving target, ever-changing as our systems improve, our work grows to new contexts, and bad actors change their tactics. We aim to update you on our lessons learned and evolving approach in our annual reporting.
We aim to raise the bar on how risk is addressed and reported
We’re raising our standards in communicating on these risks and innovating in how to prevent and address them. This is vital to better serve GiveDirectly recipients and staff, our donors, and the wider aid sector.
Some aid groups under-invest in addressing harm and fraud and under-report it to the public, focusing instead on saving reputations and costs. Yet, there are also useful best practices from the sector (UN, CHS, FCDO) and commendable examples on reporting (Save, PLAN, UN).
The more nonprofits report on their incidents, failures, and innovations, the better and more accountable all aid will become. GiveDirectly will be part of that change.
Appendicies
Appendix 1: Fraud and harm reporting channels
We have multiple reporting channels for staff, recipients, and community members:
- Regular check-ins with local community leaders;
- In-person checks by an independent internal audit team;
- Post-payment follow-up with representative samples of recipients and highly vulnerable recipients;
- A free-to-use GiveDirectly hotline in every country;
- A GiveDirectly whistleblower email→
- An independent reporting platform→
If you believe you’ve observed GiveDirectly staff, volunteers, vendors, contractors, or partners engaging in misconduct (including fraud, harassment, discrimination, or any other form of unethical behavior), please file a report to [email protected] or to our third-party whistleblowing portal here→
Appendix 2: Some types of business fraud
- Recruiting Fraud (Kickbacks/Favors): Individuals manipulate hiring processes for personal gain, receiving kickbacks or future favors. Recruitment is based on personal benefit, not merit.
- Payroll Fraud: Illegal activity that violates laws, often involving deception, like ghost employees or filing false expenses.
- Asset Misappropriation: Theft or misuse of organizational equipment
- Procurement Fraud: Manipulating purchasing processes for personal gain, like overcharging, colluding with vendors, or using fake invoices to increase costs.
Appendix 3: How we design cash programs to prevent fraud and harm
To protect communities from harm and fraud, we typically:
- Review new program designs with a lens to minimize risks, and keep risk registers to manage risk tolerance levels and mitigation strategies.
- Run independent teams to check each other’s work and independently investigate issues, with separate teams for enrollment, call center, follow up, internal audit, and safeguarding.
- Ensure staff are never fully alone with recipients in private to reduce opportunity for harm & abuse.
- Vet partners helping us on the ground and train them in our prevention and reporting practices.
- Require recipients to register new mobile money SIM accounts with 3rd party agents.
- Randomize payment days to minimize the risk outsiders can predict cash-out activity to target recipients for attack / theft.
- Provide whistleblowing channels for community members and staff.
- Run automated technology-enabled checks looking for irregularities in enrollment and payments, leveraging machine learning flags.
- Have senior leaders regularly visit communities and speak directly to leaders and recipients.
Note: This list is illustrative but not comprehensive of all preventive efforts we take. We’re regularly improving and updating our processes.
Appendix 4: Staff and recipients also face general safety and security risks
There are a range of other risks that come with delivering any type of aid, including:
- Workplace safety risks, like challenging transport by foot, car, motorbike, or boat;
- Threats, harassment, or arbitrary detention by armed groups;
- Outside crime or violence, especially in conflict areas.
Our teams continuously assess their environments to make informed decisions and implement effective measures. In conflict-prone areas, our teams focus on gaining community acceptance and maintaining neutrality by engaging with all local actors. We also have dedicated security staff in these areas, monitoring daily risks and preparing for emergency response or evacuation.
Appendix 5: How we mitigate risks of cash diversion to armed groups
- Checking all recipient names for security flags against global registries and sanctions lists before payment
- Vetting vendors and partners against global registries and sanctions lists
- Regularly engaging with community leaders and other local actors to gather information on potential armed group activity in the areas in which we work
- Clearly communicating to all recipients that, although our cash is unconditional, it cannot be used for illegal activities – and we use our rigorous internal audit processes to follow up
- Cascading vetting and reporting requirements to any delivery partners or sub-contractors
- Taking a risk-based approach to adding additional controls in higher-risk environments.
Appendix 6: Our operations can also be delayed by partners
GiveDirectly operates in compliance with local and national law, registering with required agencies and following regulations. However, despite our best efforts, challenges can arise in navigating complex bureaucratic environments. Additionally, to deliver your donations through mobile money, we rely on agreements with telcos and other partners who may change service terms or suffer outages.
We have faced delays and even shutdowns which have hurt our ability to deliver your donations and lowered our efficiency as we work to resolve them. Since 2020, we’ve added staff to prevent and navigate these issues, building out a global compliance team to ensure we’re following all laws and regulations, and adding in-country external relations leads to build stronger partnerships with government agencies and partners.
Main text footnotes:
- Notable exceptions include the I.R.C. and the U.N., which run robust ethics and compliance audits and share their reports publicly. ↩︎