How to Master Insurance Fraud Reporting Obligations in Your Agency

Insurance fraud reporting obligations apply to every licensed agency in the United States. All 50 states have enacted some form of mandatory fraud reporting law, and the penalties for failing to report suspected fraud now include civil liability, license suspension, and fines exceeding $25,000 per incident in states with aggressive enforcement postures. The FBI Insurance Fraud Division 2025 estimates total annual insurance fraud losses at $80 billion, a figure that does not include the secondary costs agencies bear when fraud goes undetected and unrecorded. This guide covers what triggers a reporting obligation, who to report to, what civil immunity protections apply, and how to document fraud detection so your agency can demonstrate compliance.

Key Takeaways

• The FBI Insurance Fraud Division 2025 estimates annual insurance fraud losses at $80 billion across all lines, with premium fraud and claims fraud accounting for the largest share.
• All 50 states have enacted mandatory fraud reporting statutes, but enforcement aggressiveness and penalty structures vary significantly by state.
• NICB 2025 processed 187,000 fraud referrals from member carriers and agencies combined, a 12% increase from 2024.
• Most states provide civil immunity for good-faith fraud reports made without malice, but immunity does not apply to reports made with actual knowledge of falsity.
• Penalties for failing to report known fraud range from $2,500 per incident (low-enforcement states) to $25,000 per incident plus possible license revocation (high-enforcement states including Florida, California, and New York).
• IIABA 2025 found that 71% of member agencies lack a written fraud detection and reporting procedure, creating both compliance gaps and E&O exposure when suspected fraud is handled inconsistently.

---

What Triggers an Insurance Fraud Reporting Obligation

Insurance fraud reporting obligations activate when agency personnel have a reasonable basis to suspect fraud, not a certainty. The legal standard in most states is "reasonable belief" or "reasonable grounds to suspect," not proof.

The FBI Insurance Fraud Division 2025 identifies three primary fraud categories that trigger agency-level reporting obligations:

Premium fraud: Application misrepresentation that affects the premium calculation. This includes understating payroll for workers' compensation, misclassifying business operations to obtain a lower rate, and providing false prior loss history to avoid surcharges or carrier declination.

Claims fraud: False or inflated claims submissions. Agencies encounter this most directly when an insured contacts the agency to discuss a claim that contains information the agency knows to be false, or when the agency arranged coverage and is named in the claim documentation.

Application fraud: Misrepresentation of material facts at the point of application. This overlaps with premium fraud but is distinct: it includes non-disclosure of prior carrier cancellations, misrepresentation of prior claims, and false statements about named insureds or locations.

Any of the three categories can trigger a reporting obligation for agency personnel who become aware of the suspicious information, regardless of whether the agency wrote the policy or processed the claim.

---

Who to Report Insurance Fraud To: The Three-Channel System

Most states route fraud reports through three channels, and agencies may need to report to more than one depending on the nature of the fraud and the state's statutory requirements.

Channel 1: State Insurance Fraud Bureau

Every state has an Insurance Fraud Bureau (IFB) or equivalent unit within the Department of Insurance. The IFB is the primary mandatory reporting recipient in most states. Reports typically go to the IFB through a standardized form or online portal, and the IFB coordinates with law enforcement for criminal referrals.

NICB 2025 data shows that state IFBs received 94,000 referrals from agents and agencies combined, with Florida, California, Texas, New York, and New Jersey accounting for 61% of all agency-originated referrals.

Channel 2: National Insurance Crime Bureau (NICB)

The NICB is a non-profit organization funded by member insurers that investigates multi-carrier, multi-state, and organized fraud rings. NICB referrals are not a substitute for state IFB reporting but supplement it for complex schemes. NICB 2025 processed 187,000 total referrals across all sources.

Agencies are not always eligible to file directly with NICB, as the NICB's referral portal is primarily configured for carrier SIU units. However, agencies can route suspected organized fraud referrals through their carrier's SIU, which then files with NICB.

Channel 3: Carrier Special Investigations Unit (SIU)

Every admitted carrier operating in the United States maintains a Special Investigations Unit under state regulatory requirements. When an agency suspects fraud related to a policy it manages, the carrier's SIU is the fastest and most direct reporting channel. SIU investigators have claims-file access and can act on a referral within 24 to 48 hours.

Reporting to the carrier SIU does not satisfy a state statutory reporting obligation to the IFB in states where the IFB report is mandatory. In those states, both reports are required.

---

State-by-State Fraud Reporting Mandates: Strongest Enforcement Jurisdictions

The following states have the most specific and aggressively enforced agency fraud reporting statutes, based on NAIC 2025 market conduct exam data and FBI Insurance Fraud Division 2025 enforcement statistics.

NAIC 2025 notes that all 50 states provide some form of civil immunity for good-faith fraud reports. The immunity protects agencies and individual reporters from civil liability for defamation or tortious interference when the report is made in good faith and without knowledge of falsity.

---

Civil Immunity: What It Covers and What It Does Not

Civil immunity for fraud reporting is a near-universal protection in U.S. insurance statutes. NAIC 2025 confirms that all 50 states and the District of Columbia have enacted immunity provisions for insurance fraud reporters.

What civil immunity covers: an insured or third party cannot sue the agency for defamation, tortious interference, or invasion of privacy based on a good-faith fraud report. The agency's report is privileged.

What civil immunity does not cover: reports made with actual knowledge of falsity. If agency personnel report fraud they know to be fabricated, or report a person they know to be innocent with intent to harm, immunity does not apply. The report must be made in good faith, defined in most states as an honest belief based on reasonable grounds, even if the investigation ultimately does not confirm fraud.

Civil immunity also does not protect against disciplinary action for failing to report. The immunity runs in favor of the reporter, not against regulators enforcing the reporting mandate.

---

How to Document Fraud Detection in Agency Records

Documentation is the compliance gap most agencies ignore. Reporting fraud is not enough. Agencies must be able to demonstrate in a market conduct exam that they have a process for fraud detection, that the process was followed, and that the report was made within the time period required by state statute.

NAIC 2025 market conduct exam guidelines specify that examiners will request fraud detection and reporting records when auditing agency compliance files. IIABA 2025 data shows that 71% of member agencies have no written fraud detection procedure, which means they cannot demonstrate process consistency even if they have made good-faith reports informally.

A functional agency fraud documentation system needs six components:

1. A written fraud detection procedure that names the types of conduct that trigger a reporting obligation, the person responsible for making the determination, and the required escalation path.
2. A fraud incident log that records every instance where fraud was suspected, including the date the suspicion arose, the nature of the suspected fraud, the parties involved, and the action taken.
3. Report confirmation records that document the date, recipient (IFB, carrier SIU, NICB), and confirmation number for every fraud report filed.
4. A decision record for non-reports that documents why a suspected fraud situation did not rise to the level of a reporting obligation. This protects the agency if the situation later becomes the subject of regulatory inquiry.
5. Staff training records showing that all licensed producers and agency staff with client contact have received training on fraud indicators and reporting obligations, with training dates and content documented.
6. A file retention schedule that retains fraud records for at least 5 years, which is the standard lookback period in most state market conduct exams.

---

Penalties for Failing to Report: What the Numbers Show

The FBI Insurance Fraud Division 2025 reports that regulatory enforcement against agencies for failure to report has increased 23% in the last 3 years, driven primarily by state insurance departments using market conduct exams to surface documentation gaps.

Penalty structures vary by state but follow a general pattern:

• Low-enforcement states (32 states): $2,500 to $5,000 per incident, rarely enforced absent egregious circumstances.
• Mid-enforcement states (12 states): $5,000 to $10,000 per incident, enforced through market conduct exam findings.
• High-enforcement states (6 states: Florida, California, Texas, New York, Illinois, Georgia): $10,000 to $25,000 per incident, with license suspension or revocation for repeated failures.

The financial exposure from a single enforcement action in a high-enforcement state can equal or exceed the annual revenue of a mid-sized independent agency. More consequentially, license suspension in a state like Florida or California eliminates the agency's ability to write business in that state during the suspension period.

---

Red Flags: The Most Common Fraud Indicators Agencies Encounter

FBI Insurance Fraud Division 2025 identifies the fraud patterns most commonly reported through agency channels. Knowing these patterns is the first step to triggering the reporting obligation at the right time.

Premium fraud indicators at application:

• Prior carrier listed as "unknown" or left blank on applications with multiple prior policy periods.
• Payroll, revenue, or employee count figures that are inconsistent with the business's apparent size or industry benchmarks.
• Multiple address changes in the prior 24 months without clear business justification.
• SIC code selected does not match the business description provided.
• Prior losses not disclosed that appear in CLUE or ISO reports during the underwriting process.

Claims fraud indicators:

• A claim reported the same day as or within 48 hours of the policy effective date.
• A claim reported immediately after a non-renewal or cancellation notice is issued.
• Inconsistencies between the reported incident description and the policy coverage in force.
• Third-party claimants using the same legal representation as a prior unrelated claimant from the same insured.

Application fraud indicators post-bind:

• A named insured requests an endorsement within 30 days of binding that would have significantly changed the original premium calculation.
• An insured cancels a policy shortly after a claim payment and re-applies for the same coverage with a different carrier through the same agency.

---

Frequently Asked Questions About Insurance Fraud Reporting Obligations

What are insurance fraud reporting obligations and which agencies must comply?

Insurance fraud reporting obligations are state-statutory requirements that mandate insurance agencies and producers report suspected fraud to designated authorities when they have a reasonable basis for suspicion. All 50 states have enacted some form of these obligations. They apply to any entity holding an insurance agency or producer license in a state with mandatory reporting statutes, which as of April 2026 includes all 50 states. The obligation applies to principals, producers, and in some states, any staff member who handles policy or claims information.

What is the standard of suspicion required to trigger an insurance fraud reporting obligation?

The standard in most states is "reasonable belief" or "reasonable grounds to suspect," not certainty or proof. An agency does not need to investigate and confirm fraud before reporting. The obligation triggers when a reasonable person in the agency's position, with the information available to the agency, would believe fraud may have occurred. NAIC 2025 confirms this standard applies in 46 of 50 states. The remaining 4 states use a "knows or should know" standard, which is functionally similar.

Does reporting suspected fraud expose the agency to a lawsuit from the person being reported?

Reporting in good faith provides civil immunity against defamation, tortious interference, and similar civil claims in all 50 states, confirmed by NAIC 2025. The immunity applies when the report is made without actual knowledge of falsity and without malice. Agencies should document that reports were made based on specific observations or information, not personal animosity or business motivation, to support the good-faith basis if the immunity is ever challenged.

What happens if an agency suspects fraud but decides not to report it?

Choosing not to report suspected fraud when a reporting obligation exists exposes the agency to regulatory penalties ranging from $2,500 to $25,000 per incident depending on the state, plus potential license suspension in high-enforcement states. The FBI Insurance Fraud Division 2025 notes a 23% increase in enforcement actions for failure to report over the last 3 years. Beyond regulatory risk, failing to report also creates E&O exposure if the fraud results in losses to a third party who later claims the agency had information that could have prevented harm.

How should an agency document its insurance fraud reporting obligations compliance?

Documentation must include: a written fraud detection and reporting procedure, a fraud incident log for all suspected fraud situations (reported and not reported), report confirmation records for every IFB or carrier SIU report filed, a decision record for situations where the agency determined reporting was not warranted, staff training records, and a 5-year file retention schedule. IIABA 2025 recommends annual review of fraud reporting procedures and documentation to keep pace with state statute changes.

Which states have the most aggressive enforcement of insurance fraud reporting obligations for agencies?

Florida, California, Texas, New York, Illinois, and Georgia have the most aggressive enforcement postures based on NAIC 2025 market conduct exam data and FBI Insurance Fraud Division 2025 enforcement statistics. These six states account for the majority of agency-level penalty actions for failure to report and impose the highest per-incident fines, ranging from $10,000 to $25,000, with potential license suspension for repeated violations.

---

Building a Fraud Reporting Culture That Protects Your Agency

Individual knowledge of fraud reporting obligations is not sufficient. The obligation must be embedded in agency culture so that any producer or staff member who encounters a fraud indicator knows what to do, who to tell, and how to document it.

The practical steps to build that culture:

• Designate a fraud reporting officer for the agency, a named individual responsible for receiving internal fraud referrals and making reporting decisions.
• Build fraud detection training into agency onboarding for every new producer, and run annual refresher training for existing staff.
• Create a written escalation path that tells staff exactly who to contact when they suspect fraud and what information to collect before escalating.
• Review the fraud incident log quarterly to confirm that all reported situations were handled consistently and documented completely.
• Update fraud detection procedures annually to reflect NAIC 2025 guidance updates, state statute changes, and new fraud patterns identified by FBI Insurance Fraud Division and NICB.

Agencies that build this infrastructure do more than meet their legal obligations. They reduce the probability that fraudulent policies remain on their book undetected, lowering E&O exposure and protecting their carrier relationships.

Monitor policy status and producer compliance with a single tool: BrokerageAudit Policy Checker

---

Written by Javier Sanz, Founder of BrokerageAudit. Last updated April 2026.