The Rise of Fake CSCS Cards. A Risk Most Firms Aren’t Thinking About

This came up in a conversation recently that caught me off guard.

My 15 year old daughter mentioned that some of her friends had bought fake driving licences online and local bars couldnt tell the difference.

That led me down a slightly different path. It turns out it’s not just driving licences.

There are platforms where people are offering what look like CSCS cards for a few hundred pounds, no training, no exam, no validation.

On the surface, it might seem like a shortcut. In reality, it creates a much bigger problem.

Why this matters more than it might seem

Most organisations assume that if someone turns up with a CSCS card, they’ve gone through a recognised process. That assumption is now a risk.

If individuals can access fake cards, then the presence of a card alone is no longer enough. It needs to be verified. Because if someone is on site without the right level of training, the consequences are not just personal. They sit with the business.

The risk is not theoretical

If an incident happens on site, the investigation is fairly straightforward.

Who was involved?

What were they doing?

Were they competent to be there?

And critically:

Was their certification valid?

If it turns out that an individual gained access to site using a fake card, the focus quickly shifts.

Not just onto the individual. Onto the organisation.

What that could mean in practice

At that point, it becomes less about how the card was obtained and more about how it was allowed.

Questions will be asked around:

• Verification processes

• Training records

• Internal controls

• Oversight of site access

From there, the exposure can include:

• Financial penalties

• Legal scrutiny

• Reputational damage

• Client confidence

In some cases, it can go further than that. This is why competence is no longer just an operational issue. It is a governance issue.

Why this is becoming more relevant

There are two things happening at the same time.

First, access to fake documentation is becoming easier.

Second, expectations around demonstrable competence are increasing.

That combination creates a gap.

A card is no longer proof on its own. The process behind it matters.

What organisations should be thinking about

Most firms don’t set out to get this wrong. But in practice, managing certification across professional teams can be fragmented.

Different offices.

Different project teams.

Individuals booking their own training.

It’s not hard for things to slip through.

So the question becomes: Are you confident that everyone attending site from your organisation has:

• Completed a recognised route

• Been properly assessed

• And holds valid, verifiable certification

And just as importantly:

Can you prove it if you are asked?

Manage it internally or take it off your plate

There are two ways to approach this. You can manage it internally.

That means:

• Tracking who has certification

• Managing renewals

• Verifying validity

• Organising training and assessment

That works, but it requires structure and oversight.

Or you can take that pressure away. Accredex works with organisations to:

• Deliver professional H&S training aligned to site roles

• Manage course access and exam scheduling

• Provide clear records of certification

• Track expiry and renewal cycles

So instead of relying on individuals, you have a controlled, auditable process.

The bigger point

It’s about control and oversight.

If someone from your organisation steps onto site, you need to know they are competent and that their certification stands up if it is ever checked.

Because if something goes wrong, that’s exactly what will happen.