
Confirmation of Payee has become one of the most useful controls in accounts payable, and one of the most misunderstood. Here is what it catches, and what it does not.
Confirmation of Payee is the check that tells you whether the account you are about to pay actually belongs to the supplier you think you are paying. For UK businesses it has quietly become one of the most useful controls in accounts payable, and one of the most misunderstood. It catches a specific and common failure, money sent to the wrong or fraudulent account, but it is not a complete defence on its own.
The control works by matching the name you enter against the name registered on the destination account before the payment leaves your bank. You get one of a few responses: a full match, a close match with the actual name suggested, no match, or an account type that cannot be checked. A no-match on a supposedly familiar supplier is a clear signal to stop and verify before releasing funds.
What Confirmation of Payee actually checks
Confirmation of Payee verifies the link between an account name and an account number and sort code. It does not verify that the business is legitimate, solvent, or who you contracted with. It is an account-name check, run by Pay.UK across the participating banks and payment service providers, and its coverage has widened steadily so that most UK business accounts now fall within scope. That breadth is what makes it valuable: for the great majority of supplier payments, you can now check the destination before you pay rather than after.
Where Confirmation of Payee helps business payments most
Three moments carry the most risk in accounts payable, and Confirmation of Payee addresses all three. The first is onboarding a new supplier, when bank details are entered for the first time and there is no payment history to lean on. The second is a change of bank details on an existing supplier, which is the single most exploited vector in invoice fraud. The third is any high-value one-off payment, where a single mistake is expensive and hard to recover.
This matters more since the Payment Systems Regulator introduced mandatory reimbursement for authorised push payment fraud. Liability for many scam payments now sits with the institutions involved, which sharpens everyone's incentive to check before money moves. For a finance team, a no-match result is the cheapest fraud control you will ever run.
What Confirmation of Payee misses
The check has real limits. It confirms a name against an account, but a fraudster who has registered a company in a name close to your supplier's can still return a plausible match. It does nothing about invoices that are genuine in format but fraudulent in origin, or about a supplier whose own systems have been compromised. And it is a point-in-time check. It tells you nothing about whether the supplier's details, ownership or behaviour change three months after onboarding.
So Confirmation of Payee is necessary but not sufficient. On its own it is a single gate at the moment of payment. The fraud that costs UK businesses most tends to slip through the gaps it leaves: the small, repeated, plausible payments that never trigger a name mismatch.
Building Confirmation of Payee into a layered control
The right way to use Confirmation of Payee is as one layer in a stack. Underneath it sits supplier verification, which confirms the legal entity, beneficial ownership and banking details when a supplier joins. Above it sits continuous monitoring, which watches for changes in bank details, ownership and payment behaviour after onboarding, not just at the point of the first payment. On a connected network, a verified supplier carries that assurance across every buyer it works with, so the check is informed by far more than one company's history.
Used that way, Confirmation of Payee stops being a tick-box at the payment screen and becomes part of an ongoing trust signal. See how verification and monitoring fit together across the network.
.jpg)