HMRC customs audits are no longer triggered just by chance or isolated mistakes. They are increasingly data-led, targeted, and focused on governance.
Rather than asking just whether errors exist, HMRC asks a more fundamental question:
does the business have control over its customs obligations?
Where that control cannot be demonstrated, audits deepen quickly. Below are the 11 most common red flags HMRC looks for during customs audits, and why they matter.
1. Inadequate record keeping
HMRC expects complete, accurate, and easily accessible records for all customs transactions. Missing invoices, unclear valuation support, or fragmented documentation suggest weak internal control.
If records cannot be produced promptly, HMRC will assume they do not exist. Missing documentation can often lead to duty assessments and penalties.
2. No documented, version-controlled procedures
Customs processes should be supported by written procedures that are version-controlled and reviewed regularly. Outdated or informal documentation signals that controls are inconsistent or unmanaged.
HMRC looks for evidence of repeatable, embedded processes…not ad hoc knowledge.
3. Lack of knowledgeable personnel
Businesses are expected to have access to individuals who understand customs rules and how they apply to the organisation’s own supply chain. Â
A lack of internal expertise increases the risk of errors going undetected.
4. Overreliance on third parties
Using customs brokers or agents does not transfer legal responsibility. HMRC expects importers to retain ownership of compliance through internal checks, reconciliations, and oversight.
Sole reliance on third parties is a common audit red flag.
5. Claims of zero errors
HMRC recognises that mistakes occur. Businesses claiming perfect compliance often attract closer scrutiny, as this suggests limited checking rather than robust control.
Transparency is viewed more favourably than unrealistic certainty.
6. Inability to answer basic governance questions
If a business cannot clearly explain:
HMRC will assume governance is weak or undocumented.
7. Limited awareness of import and export volumes
Not knowing how many declarations are made, where goods are sourced from, or which routes carry the highest risk indicates that customs activity is not actively monitored.
HMRC expects businesses to understand their own trade footprint.
8. Lack of senior management oversight
When customs is treated purely as an operational task, HMRC sees this as a governance failure. Senior management involvement demonstrates accountability and control.
Its absence suggests unmanaged risk.
9. Single-person dependency
Relying on one individual to manage all customs activity creates resilience and compliance risk. HMRC prefers to see documented processes, cross-training, and continuity planning.
Customs should function beyond any one individual.
10. Poor audit trails
Being unable to trace declarations back to commercial documentation, valuation decisions, or classification logic undermines credibility during an audit.
HMRC looks for end-to-end audit trails, not post-event reconstruction.
11. Non-disclosure or cover-up of known errors
Attempting to conceal known issues immediately damages trust. HMRC treats non-disclosure far more seriously than genuine errors.
Once trust is lost, audits become broader, deeper, and more punitive.
Why these red flags matter
Modern customs audits assess control, visibility, and governance, not just accuracy.
Businesses that manage audits well are not those claiming perfection, but those that can demonstrate:
In practice, audit readiness means being able to explain, evidence, and defend your customs position at any point, not just when HMRC asks.
Customs Audit FAQs
What triggers an HMRC customs audit?
HMRC do not disclose the trigger for auditing a specific company. It is likely that data-led intelligence, industry trends and other risk factors all play a role in the audit selection process. Audits are rarely caused by a single error and are more often initiated when patterns suggest systemic compliance risk.
Does using a customs broker reduce audit risk?
No. While customs brokers submit declarations on behalf of importers, legal responsibility remains with the importing business. HMRC expects organisations to maintain internal oversight, reconciliation checks, and audit trails.
What does HMRC expect during a customs audit?
HMRC expects businesses to demonstrate control over their customs processes. This includes clear documentation, version-controlled procedures, traceable audit trails, and the ability to explain how compliance is governed internally.
What are the most common customs compliance weaknesses?
Common weaknesses include poor record keeping, lack of in-house customs expertise, overreliance on third parties, absence of senior management oversight, and limited visibility over import volumes and declaration accuracy.
How can businesses prepare for an HMRC customs audit?
Businesses can prepare by ensuring customs data is accessible and reconciled, maintaining documented and up-to-date procedures, assigning clear accountability, and conducting regular internal compliance reviews.
Start your free 14-day trial of CAT360 today and see how AI² - the fusion of automation and expert insight - can uncover savings, reduce risk, and give you full control of your customs operations. No card required, just instant intelligence.
.svg)
