FalseOS
Expose the lies. Report the abuse.
General legal information
Not legal advice
Online harassment reporting guide

Reporting online harassment in England & Wales

Step-by-step, source-backed guidance: where to file, the exact offences to name, and how to escalate until your case is assigned.

URGENTIn immediate danger? Call 999 now.

999 (call and ask for the police if you or someone else is in immediate danger or a crime is in progress). 112 also connects to the same emergency operator across the EU/UK.

Most people here are not in an active emergency. To start an official record, use the non-emergency steps below.

STEP 1

Start the paper trail

File a non-emergency report, and do the single most important thing: get your report / reference / occurrence number. That number is the key that unlocks platforms, prosecutors, employers and protective orders.

Local police force online crime report (via police.uk) - PRIMARY paper-trail channel

Use the online report form for non-emergency stalking, harassment, threats, defamatory/abusive content. For stalking/harassment many forces use a dedicated 'Report online' button that triages you to the right form. CRITICAL for a paper trail: at the end of the report ASK FOR and record the crime reference number / occurrence / log number; the report is handled by the control room the same as if you spoke to an officer. Keep screenshots and evidence.

police.uk →Official source · police.uk ↗
101 non-emergency police phone line

Call 101 to report a non-emergency crime or get advice and to generate an official log. Ask for a crime/incident reference number. Also the route for Scotland fraud reporting (Police Scotland).

101 (24/7, UK only)Official source · gov.uk ↗
Crimestoppers (anonymous, third-party)

Anonymous reporting if you do not want to give your details. NOTE: This does NOT create a victim crime report or give YOU a personal crime reference number, so it is not the channel for starting your own official paper trail; use 101 or local-force online report for that.

crimestoppers-uk.org →Official source · gov.uk ↗
Report Fraud (national fraud & cyber-crime reporting service run by City of London Police - replaces Action Fraud) - use for extortion/blackmail, identity fraud, online scams

Use for fraud, online extortion/sextortion demanding money, identity fraud/identity theft, and cyber-dependent crime. Generates a reference number for your paper trail. Covers England, Wales and Northern Ireland; Scotland callers report to Police Scotland on 101. Report Fraud went live 4 December 2025 with Action Fraud traffic redirecting and a full public launch in January 2026.

reportfraud.police.uk →Official source · gov.uk ↗
STEP 2

File with the national cybercrime body

File here in addition to, not instead of, your local police report.

Report Fraud (operated by City of London Police; the national lead force for fraud)

INTAKE + TRIAGE + INTELLIGENCE, generally NOT a direct investigator of individual reports. National reporting front door for fraud and cyber-crime (replaced Action Fraud; full public launch January 2026, redirects began 4 Dec 2025). Reports are assessed by the Report Fraud National Crime Analysis Service (N-CAS) and disseminated to local forces or specialist units; serious/complex cases are flagged for investigation. A victim support service is provided. Phone unchanged from Action Fraud (0300 123 2040).

reportfraud.police.uk →0300 123 2040
National Crime Agency (NCA)

Investigates the most serious and organised cyber-crime; leads, supports and coordinates the UK response to serious/organised crime including cybercrime and economic crime that crosses borders. The public does NOT report routine cybercrime directly to the NCA - the NCA directs victims to local police (101/999) or Report Fraud; it acts on intelligence and serious-organised-crime cases, not individual intake.

nationalcrimeagency.gov.uk →Via https://www.nationalcrimeagency.gov.uk/contact-us (no public victim-intake hotline; use 101/999/Report Fraud to report)
National Cyber Security Centre (NCSC) - Suspicious Email Reporting Service (SERS) / phishing reporting

INTAKE + TECHNICAL TAKEDOWN, not a criminal investigator of harassment. Receives reports of scam/phishing emails, texts and websites; can investigate and remove malicious sites and shares intelligence with the NCA and City of London Police. Not the channel for harassment/threats/doxxing - it is for scam/phishing infrastructure.

ncsc.gov.uk →Report scam emails to report@phishing.gov.uk; scam texts to 7726; scam websites via https://www.ncsc.gov.uk/section/about-this-website/report-scam-website
Ofcom (Online Safety Act 2023 regulator)

PLATFORM REGULATOR, NOT an individual-complaint body and does NOT investigate your specific case or give you a personal remedy. Regulates social-media and search platforms' duties to remove illegal content (including harassment, threats, intimate-image abuse). Can fine platforms up to 10% of qualifying worldwide revenue (or 18 million pounds, whichever is greater) and, in extreme cases, seek court orders to block a service. Victims still report the crime to police; Ofcom handles systemic platform compliance. Illegal-content duties live since 17 March 2025.

gov.uk →https://www.ofcom.org.uk/online-safety (platform-level complaints/compliance, not individual victim intake)
What to report it as

The offences in England & Wales

Use the right words. Lead with threats, stalking and doxxing, not “someone is being mean.” Tap any offence for the full elements and the official source.

Criminal harassmentProtection from Harassment Act 1997Max penalty: Summary only: imprisonment up to 6 months, or a fine up to level 5 on the standard scale (unlimited), or both.

What it covers. Pursuing a course of conduct that amounts to harassment of another which the defendant knows or ought to know amounts to harassment.

Section. s.2 (offence of harassment), breaching the s.1 prohibition · Criminal (summary)

Key elements. Requires a 'course of conduct' (conduct on at least two occasions, or against two persons once each under s.1(1A)); the conduct must amount to harassment; mens rea is objective - defendant knows OR ought to know (reasonable-person test) it amounts to harassment. Statutory defences in s.1(3) (e.g. preventing/detecting crime, lawful authority, reasonableness).

Official source · legislation.gov.uk ↗
StalkingProtection from Harassment Act 1997Max penalty: Summary only: imprisonment up to 51 weeks (in practice 6 months until the relevant magistrates'-powers provisions are commenced), or a fine up to level 5 (unlimited), or both.

What it covers. A course of conduct that amounts to harassment AND amounts to stalking (i.e. involves acts associated with stalking).

Section. s.2A (offence of stalking) · Criminal (summary)

Key elements. Course of conduct amounting to harassment; the acts are 'associated with stalking' per the s.2A(3) non-exhaustive list: following; contacting/attempting contact by any means; publishing material relating to or purporting to come from the person; monitoring use of internet/email/electronic communication; loitering; interfering with property; watching or spying. Objective mens rea (knows or ought to know).

Official source · legislation.gov.uk ↗
Stalking / harassment causing fear of violence (aggravated)Protection from Harassment Act 1997Max penalty: Either-way. On indictment: imprisonment up to 10 years, or a fine, or both. On summary conviction: up to the general magistrates' court limit (6 months for older offences), or a fine up to the statutory maximum, or both.

What it covers. s.4: course of conduct causing another to fear, on at least two occasions, that violence will be used against them. s.4A: stalking that either causes fear of violence (on at least two occasions) OR causes serious alarm or distress with a substantial adverse effect on the victim's usual day-to-day activities.

Section. s.4 (putting people in fear of violence) and s.4A (stalking involving fear of violence or serious alarm/distress) · Criminal (either-way)

Key elements. Course of conduct (s.4) / stalking (s.4A); causes the victim either to fear violence on at least two occasions, or (s.4A) serious alarm or distress substantially affecting daily activities; objective mens rea (defendant knows or ought to know). Statutory defences (crime prevention/detection, legal authority, reasonable protection of self/others/property).

Official source · legislation.gov.uk ↗
Criminal threats / death threats / threatening communicationsOnline Safety Act 2023Max penalty: On indictment: imprisonment up to 5 years, or a fine, or both. On summary conviction (England & Wales): up to the general magistrates' court limit, or a fine, or both.

What it covers. Sending a message that conveys a threat of death or serious harm, intending or being reckless as to whether the recipient (or another seeing it) would fear the threat would be carried out. In force 31 January 2024.

Section. s.181 (threatening communications offence) · Criminal (either-way)

Key elements. (1) sends a message (broadly defined, s.182); (2) the message conveys a threat of death or 'serious harm' (GBH, rape, assault by penetration, or serious financial loss); (3) mens rea - intends an individual to fear the threat would be carried out, OR is reckless as to whether they would fear it. Defence where the threat is used to reinforce a reasonable demand and the defendant reasonably believed it a proper means.

Official source · legislation.gov.uk ↗
Criminal threats / threatening or grossly offensive electronic messages (alternative charge)Malicious Communications Act 1988Max penalty: On indictment: imprisonment up to 2 years, or a fine, or both. On summary conviction: imprisonment up to 12 months (12-month limit applies to offences on/after 2 May 2022; 6 months for earlier offences), or a fine, or both.

What it covers. Sending to another a letter, electronic communication or article that is indecent, grossly offensive, threatening, or contains information known/believed to be false, with purpose of causing distress or anxiety.

Section. s.1 (offence of sending letters etc with intent to cause distress or anxiety) · Criminal (either-way)

Key elements. Sends a message/article (including electronic communication); content is indecent or grossly offensive, OR a threat, OR known/believed-false information; mens rea is purpose (one of the purposes) of causing distress or anxiety to the recipient or intended recipient. A single message suffices (no course of conduct required, unlike PHA).

Official source · legislation.gov.uk ↗
Criminal threats / improper use of communications network (alternative charge)Communications Act 2003Max penalty: Summary only: imprisonment up to 6 months, or a fine up to level 5 (unlimited), or both.

What it covers. s.127(1): sending by a public electronic communications network a message that is grossly offensive or of an indecent, obscene or menacing character. s.127(2): sending a known-false message, or persistently using the network, to cause annoyance, inconvenience or needless anxiety.

Section. s.127 (improper use of public electronic communications network) · Criminal (summary)

Key elements. Message sent over a public electronic communications network; s.127(1) content is grossly offensive/indecent/obscene/menacing; s.127(2) requires purpose of causing annoyance/inconvenience/needless anxiety. NOTE: s.127(2)(a)-(b) (false-message limb) were repealed (E.W.N.I.) on 31 January 2024 by the Online Safety Act 2023, with the new OSA false/threatening communications offences taking precedence. s.127(1) (grossly offensive/menacing) remains in force.

Official source · legislation.gov.uk ↗
Criminal defamation / defamatory libelCoroners and Justice Act 2009 (abolishing the common-law offence); civil remedy under the Defamation Act 2013Max penalty: None (no criminal offence). Civil remedy only: damages and/or injunction; no imprisonment.

What it covers. DEFAMATION IS CIVIL-ONLY IN ENGLAND & WALES. The common-law criminal offences of defamatory libel (and sedition/seditious libel and obscene libel) were ABOLISHED by s.73 of the Coroners and Justice Act 2009, in force 12 January 2010. There is no criminal libel charge; the remedy is a civil claim (sue for damages/injunction) under the Defamation Act 2013, which requires proof of serious harm (s.1).

Section. s.73 Coroners and Justice Act 2009 (abolition) · Civil only (criminal libel abolished)

Key elements. No criminal elements (offence abolished). Civil claim under Defamation Act 2013 requires: a defamatory statement published to a third party that has caused or is likely to cause 'serious harm' to reputation (s.1); defences include truth (s.2), honest opinion (s.3), publication on a matter of public interest (s.4). Note: threatening/abusive ONLINE content can still be criminal under PHA 1997, MCA 1988, Communications Act 2003 or OSA 2023 - just not as 'libel'.

Official source · legislation.gov.uk ↗
Extortion / blackmailTheft Act 1968Max penalty: Indictable only: imprisonment up to 14 years.

What it covers. Making an unwarranted demand with menaces, with a view to gain for oneself or another, or with intent to cause loss to another.

Section. s.21 (blackmail) · Criminal (indictable only)

Key elements. (1) a demand; (2) the demand is 'unwarranted' - it is unwarranted UNLESS the defendant believed both that they had reasonable grounds for making it AND that the use of the menaces was a proper means of reinforcing the demand; (3) 'with menaces' (threats); (4) with a view to gain or intent to cause loss (economic). Nature of the act demanded, and who is to carry out the menaces, is immaterial. Covers sextortion / 'pay or I publish' demands.

Official source · legislation.gov.uk ↗
Identity theft / identity fraud / online impersonationFraud Act 2006Max penalty: Either-way. On indictment: imprisonment up to 10 years, or a fine, or both. On summary conviction: up to the general magistrates' court limit, or a fine up to the statutory maximum, or both.

What it covers. There is no standalone offence called 'identity theft'; identity fraud and online impersonation are prosecuted as fraud by false representation: dishonestly making a false representation (e.g. pretending to be someone else, using their identity/credentials) intending to make a gain or cause loss.

Section. s.1 (fraud) via s.2 (fraud by false representation) · Criminal (either-way)

Key elements. (1) a representation that is false (untrue or misleading) - includes pretending to be another person or representing facts about identity, express or implied, and representations made to a machine/system; (2) the defendant knows it is or might be untrue/misleading; (3) dishonesty; (4) intent to make a gain for self/another OR to cause loss or risk of loss to another. (Impersonation for non-financial harassment may instead be charged under PHA 1997 / s.2A stalking 'publishing material purporting to originate from a person'.)

Official source · legislation.gov.uk ↗
Doxxing (publishing private/personal information)Data Protection Act 2018 (data offence) PLUS Protection from Harassment Act 1997 (when part of a campaign); also consider Computer Misuse Act 1990 s.1 where data was obtained by unauthorised accessMax penalty: DPA 2018 s.170: FINE ONLY (unlimited fine on indictment / statutory maximum summarily) - NO imprisonment and NO power of arrest for this offence (penalty per DPA 2018 s.196). The harassment/stalking route (PHA s.2A up to 51 weeks; s.4A up to 10 years on indictment) carries the custodial penalties where doxxing is part of a harassment campaign.

What it covers. THERE IS NO STANDALONE 'DOXXING' OFFENCE in England & Wales. Doxxing is prosecuted via existing law: (a) DPA 2018 s.170 where personal data is knowingly/recklessly obtained, disclosed, procured or retained without the data controller's consent; and (b) PHA 1997 harassment/stalking (s.2/2A) or s.4A where the doxxing is part of a course of conduct causing alarm/distress or fear of violence. The OSA 2023 communications offences and CMA 1990 s.1 may also apply.

Section. DPA 2018 s.170 (unlawful obtaining etc of personal data); also PHA 1997 s.2/2A/4A · Criminal (DPA s.170 fine-only; PHA route can be custodial)

Key elements. DPA 2018 s.170: knowingly or recklessly, without the controller's consent, obtaining/disclosing/procuring disclosure of/retaining personal data; defences include crime prevention/detection, legal authority and public interest. PHA route: course of conduct amounting to harassment/stalking, objective mens rea. CMA 1990 s.1: unauthorised access to obtain the data.

Official source · legislation.gov.uk ↗
Doxxing status in England & Wales

No standalone 'doxxing' offence exists in England & Wales. It is prosecuted through existing law depending on facts: (1) Data Protection Act 2018 s.170 (knowingly/recklessly obtaining or disclosing personal data without the controller's consent) - but this is FINE-ONLY with no power of arrest (penalty per DPA 2018 s.196); (2) Protection from Harassment Act 1997 s.2/s.2A (harassment/stalking) or s.4A where doxxing is part of a course of conduct causing alarm/distress or fear of violence - this carries custodial penalties (s.2A up to 51 weeks; s.4A up to 10 years on indictment) and is the stronger route when doxxing is part of a harassment campaign; (3) Computer Misuse Act 1990 s.1 if the data was obtained by unauthorised access; (4) Online Safety Act 2023 communications offences (s.181 threatening communications) for the publishing/threat element. Privacy civil remedies (misuse of private information, UK GDPR) also exist alongside the criminal route. Practical advice: report doxxing to the police as harassment/stalking (with a crime reference number) rather than expecting a 'doxxing charge', and to the platform under its OSA illegal-content duties.

Recording your calls

One-party consent (for personal use). A participant who records their own telephone call or conversation for personal use commits NO interception offence.

Source ↗
If the person is in another country

Report at home, and trigger action where they are

If the person is in the United States

Keep doing everything above in England & Wales. At the same time, the fastest leverage often sits in the United States, where the person actually is.

Fastest lever in the United States

The fastest practical levers against a U.S.-located perpetrator are: (a) platform reporting and content removal directly to the host service (the U.S. has no general government takedown order against a private individual's speech, and platforms have Section 230 immunity for user posts, so the platform's own abuse/terms process is the front-line removal tool); and (b) a state civil or criminal protective / restraining order (a stalking or harassment protection order, process varies by state), which once issued is enforceable against the U.S.-located respondent and makes any further contact a new, more readily charged offense. Where the conduct is interstate threats or cyberstalking, a U.S. federal case (18 U.S.C. § 875(c), § 2261A) opened via the FBI is the route to criminal action and to compelling evidence from U.S. providers.

How the case reaches them

A foreign victim whose harasser is located in the United States does not file with U.S. federal agencies from abroad and wait. The reliable inbound path is police-to-police: report the matter to your own national police / cybercrime unit in your home country and ask them to channel it to U.S. authorities. Two official conduits carry it: (1) INTERPOL, where your country's National Central Bureau transmits the request to INTERPOL Washington (the U.S. NCB inside the DOJ, the U.S. contact point for the 196-member INTERPOL network), and (2) a Mutual Legal Assistance Treaty (MLAT) or letter rogatory, the formal government-to-government request handled on the U.S. side by DOJ's Office of International Affairs, used to compel evidence such as subscriber records and content from U.S. platforms. U.S. platforms (where most of the abusive content sits) are themselves in the U.S., so a U.S.-based investigation or valid U.S. legal process is the lever that reaches them. In parallel, a victim can and should file directly with the FBI Internet Crime Complaint Center (https://www.ic3.gov) and the FBI tip line (https://tips.fbi.gov); IC3 accepts international complaints and may refer them to the appropriate U.S. or partner agency.

There is no single U.S. government body that will unmask an anonymous account or order a takedown on a foreign victim's request without a U.S. investigation or U.S. legal process. The most effective sequence is: preserve evidence (dated screenshots, URLs, usernames, headers), report to your home-country police so they can engage INTERPOL Washington / the MLAT process, file directly with the FBI/IC3, and pursue platform removal plus a state protective order against the named or identified U.S. perpetrator.

The honest truth: you cannot contact Interpol yourself, only police can. Ask your own investigating officer to pursue international coordination, and keep them supplied with your evidence.
If the person is in Canada

Keep doing everything above in England & Wales. At the same time, the fastest leverage often sits in Canada, where the person actually is.

Fastest lever in Canada

The fastest practical relief against content or conduct from a Canada-based perpetrator runs through (a) the Canadian police service of jurisdiction, which can investigate and charge under the Criminal Code (criminal harassment s.264, uttering threats s.264.1, extortion s.346, identity theft/fraud s.402.2/403, and for intimate-image exposure s.162.1), and (b) platform-level takedown plus provincial civil remedies. Canada has no single national takedown regulator equivalent to Australia’s eSafety or the UK’s Ofcom. For intimate images there is a Criminal Code removal/forfeiture pathway tied to s.162.1, and victims can seek provincial civil and protective remedies (peace bonds, restraining orders, provincial intimate-image laws) while a criminal investigation proceeds.

How the case reaches them

When the perpetrator is located in Canada and the victim is abroad, the foreign victim does not contact Canadian police directly. The victim reports to their OWN national police, who route a police-to-police request to Canada through INTERPOL. Canada's international channel is the INTERPOL National Central Bureau (NCB) Ottawa, run by the RCMP at National Headquarters and operating 24/7; it receives, evaluates and processes assistance requests to and from the 195 INTERPOL member countries and administers the Foreign Criminal Investigators in Canada Protocol. For obtaining EVIDENCE in Canada or extradition FROM Canada, the foreign state's central authority works through a Mutual Legal Assistance Treaty (MLAT), coordinated on the Canadian side by the federal Department of Justice International Assistance Group. For US requests, the counterpart is INTERPOL Washington (USNCB) plus FBI Legal Attache channels; NCB Ottawa and INTERPOL Washington have a standing memorandum of cooperation. The local Canadian police service of jurisdiction is the one that actually investigates a perpetrator on Canadian soil.

A victim cannot invoke INTERPOL or MLAT channels personally; the investigating police service and the Crown initiate INTERPOL notices and MLAT requests. The realistic victim action is to file with their own national police and provide the Canadian police service or the foreign police with the file/occurrence numbers and preserved evidence.

The honest truth: you cannot contact Interpol yourself, only police can. Ask your own investigating officer to pursue international coordination, and keep them supplied with your evidence.
If the person is in Australia

Keep doing everything above in England & Wales. At the same time, the fastest leverage often sits in Australia, where the person actually is.

Fastest lever in Australia

The fastest protection lever against a perpetrator located in Australia is the eSafety Commissioner's civil removal scheme under the Online Safety Act 2021. eSafety can issue REMOVAL NOTICES to platforms and end-users under the Adult Cyber Abuse Scheme (18+), the Image-Based Abuse Scheme, the Cyberbullying Scheme (under-18) and the Online Content Scheme; non-compliant services can face civil penalties of up to 500 penalty units. For most schemes the victim must first report to the platform or service, then lodge at https://www.esafety.gov.au/report. This is a civil takedown route that runs alongside, and does not replace, a criminal police report. Note the deliberately high 'serious harm' threshold for the Adult Cyber Abuse Scheme. In parallel, where the victim fears ongoing harm, an Apprehended Violence Order (AVO) / personal safety intervention order can be sought against a locally-located perpetrator via the local court or police.

How the case reaches them

When the perpetrator is located in Australia and the victim is overseas, the foreign victim's own police refer the matter to Australian law enforcement through police-to-police channels: the foreign country's INTERPOL National Central Bureau contacts the AFP-hosted INTERPOL National Central Bureau (NCB) Canberra (within AFP International Operations, operating 24/7), which channels notices, information-sharing and assistance requests. The matter is then assessed and, for an individual harassment case, typically referred to the relevant Australian state or territory police where the perpetrator is located. For evidence-gathering or prosecution that needs formal cooperation, a Mutual Legal Assistance (MLAT) request is coordinated by the Commonwealth Attorney-General's Department under the Mutual Assistance in Criminal Matters Act 1987. A victim cannot trigger these channels directly; they ask the investigating police to route the matter through INTERPOL Canberra or MLAT.

eSafety is a civil regulator and does not prosecute, award damages, or replace police. The criminal route remains state/territory police (or the AFP for serious/transnational matters), reachable from abroad only via the police-to-police INTERPOL Canberra channel described above.

The honest truth: you cannot contact Interpol yourself, only police can. Ask your own investigating officer to pursue international coordination, and keep them supplied with your evidence.
If the person is in New Zealand

Keep doing everything above in England & Wales. At the same time, the fastest leverage often sits in New Zealand, where the person actually is.

Fastest lever in New Zealand

The fastest practical lever against a perpetrator located in New Zealand is the Harmful Digital Communications Act 2015 civil route: complain to Netsafe (the Approved Agency, https://netsafe.org.nz/report, 0508 638 723), and if it cannot resolve the matter, use Netsafe's written summary to apply to the District Court for an HDCA order (takedown, cease publication, correction, right of reply, or identity disclosure). For serious threats or criminal conduct, NZ Police can act under the Crimes Act / HDCA s 22 directly because the offender is locally located and within jurisdiction. NOTE: where the poster is offshore the HDCA's real limit is service-of-process (no statutory provision for serving an overseas defendant; leave of the District Court under District Court Rules Part 6 is required); that limit does not bite when the perpetrator is in New Zealand.

How the case reaches them

When the perpetrator is in New Zealand and the victim is overseas, the foreign victim should report through their OWN local/national police, who relay the matter police-to-police to INTERPOL Wellington (the NZ National Central Bureau hosted at Police National Headquarters). Neither the public nor a foreign victim can contact INTERPOL or the NCB directly: 'INTERPOL NCBs do not respond to requests from the general public... contact their local or national police, who will in turn contact the NCB.' NZ Police can also be reported to directly via 105 (https://105.police.govt.nz) for the criminal record. For evidence held in or action needed in New Zealand, the foreign authority uses a Mutual Legal Assistance (MLAT) request handled under New Zealand's Mutual Assistance in Criminal Matters Act 1992 via the Crown central authority. New Zealand is also a Party to the Budapest Convention on Cybercrime (in force for NZ 1 December 2025), which provides additional cross-border cooperation channels for electronic evidence. An FBI Legal Attache now operates a standalone office in Wellington (opened 31 July 2025) for liaison with US authorities.

Because the perpetrator is locally located, NZ Police and the District Court can act without the cross-border MLAT or INTERPOL delays that slow cases where the offender is abroad. If Netsafe’s role changes, NZ Police on 105 is the fallback intake.

The honest truth: you cannot contact Interpol yourself, only police can. Ask your own investigating officer to pursue international coordination, and keep them supplied with your evidence.
If the person is in South Africa

Keep doing everything above in England & Wales. At the same time, the fastest leverage often sits in South Africa, where the person actually is.

Fastest lever in South Africa

The fastest live protection/unmasking lever against a locally-located perpetrator is the Protection from Harassment Act. A South African magistrate's court can, under s.4, direct a South African electronic communications service provider to FURNISH the unknown harasser's name, identity number and address - identifying an SA-based harasser without any extradition - and then issue an interim and final protection order (s.10), breach of which is a crime (up to 5 years, s.18(1)(a)). This means a victim does NOT need extradition to get relief: the SA courts act directly against SA-based persons and SA-licensed service providers. IMPORTANT CORRECTION: the Cybercrimes Act s.20 takedown order and s.21 unmasking direction are NOT yet in operation (Part VI of Chapter 2 has not been commenced as of 2026), so there is currently no operative Cybercrimes Act statutory takedown order; content removal goes through the protection-order conditions plus direct reporting to the platform/host. A foreign victim typically needs a local contact (e.g. SA-based counsel, or coordination via SAPS once a docket exists) to drive the magistrate's-court application, since these orders are made by SA courts against SA-licensed providers.

How the case reaches them

When the perpetrator is located in South Africa and the victim is abroad, the inbound police-to-police route runs through INTERPOL NCB Pretoria. A foreign victim reports to their OWN national police, who route a request through their INTERPOL National Central Bureau to NCB Pretoria (which sits inside SAPS Crime Intelligence). NCB Pretoria is the channel for international investigations requiring SAPS cooperation and triggers SAPS action against a South Africa-based suspect. For formal evidence-gathering and execution, requests run as Mutual Legal Assistance under the International Cooperation in Criminal Matters Act 75 of 1996, with the South African Department of Justice & Constitutional Development as the Central Authority; dual criminality is not a strict requirement for incoming requests. NOTE: the Cybercrimes Act's 's.52 designated point of contact' and the Chapter 5 mutual-assistance provisions (ss.46-52) are enacted but NOT yet in force as of 2026, so they cannot currently be relied on - use INTERPOL NCB Pretoria and the 1996 MLA Act.

For US-nexus matters the FBI maintains a Legal Attache (Legat) office at the U.S. Embassy in Pretoria; confirm current contact details with the U.S. Embassy Pretoria.

The honest truth: you cannot contact Interpol yourself, only police can. Ask your own investigating officer to pursue international coordination, and keep them supplied with your evidence.
Dedicated cross-border guides
If the person is in the United States →If the person is in Canada →If the person is in Australia →If the person is in New Zealand →If the person is in South Africa →
Keep climbing

If you are brushed off, do this next

You are entitled to be heard. Work up this ladder until your case is assigned.

  1. 1FRONT-LINE: Report to your local police force online (https://www.police.uk/pu/contact-the-police/report-a-crime-incident/) or call 101 (999 if in immediate danger). ALWAYS obtain and record the crime reference / occurrence number - this is the spine of your paper trail. For fraud/extortion/identity fraud, report to Report Fraud (https://www.reportfraud.police.uk/, 0300 123 2040) and keep the reference.
  2. 2SPECIALIST UNIT: Ask the call handler / officer to refer the case to the force's dedicated Stalking & Harassment unit, Cyber Crime Unit, or a domestic-abuse/VAWG team. Many forces have Stalking Protection Order powers (Stalking Protection Act 2019). Ask whether a Stalking Protection Order or restraining order is being considered and request a named officer in the case (OIC).
  3. 3SUPERVISOR / PROFESSIONAL STANDARDS: If the report stalls or is closed without action, ask to speak to the investigating officer's supervisor (sergeant/inspector). If still unresolved, make a formal complaint to the force's Professional Standards Department, and escalate to the Independent Office for Police Conduct (IOPC, https://www.policeconduct.gov.uk) for how the force handled it. You can also raise it with your local Police and Crime Commissioner (PCC), who holds the Chief Constable to account (PCCs cannot direct an individual investigation but can apply scrutiny).
  4. 4NATIONAL AGENCY: For serious, organised or cross-border cyber-crime, the case can be escalated to the National Crime Agency (https://www.nationalcrimeagency.gov.uk). The NCA acts on serious/organised cases referred by forces or intelligence; it is not a routine victim-intake line. The National Stalking Helpline (Suzy Lamplugh Trust, 0808 802 0300, https://www.suzylamplugh.org/the-national-stalking-helpline) and Victim Support (08 08 16 89 111) can advocate and help push the case.
  5. 5ELECTED REPRESENTATIVE (pressure valve): Contact your Member of Parliament with your crime reference numbers and a timeline. An MP can take up your case with the Chief Constable, the Home Office, or the IOPC as casework and apply political pressure. IMPORTANT: an MP, PCC or minister CANNOT direct or interfere with an operational police investigation - they apply scrutiny and ask questions, they do not order arrests or charging decisions (which rest with police and the Crown Prosecution Service).
  6. 6CPS / PROSECUTION: If police investigate but decline to charge, you can request a Victim's Right to Review (VRR) of a CPS decision not to prosecute (https://www.cps.gov.uk/legal-guidance/victims-right-review-scheme). The CPS (not the police, and not your MP) makes the charging decision in most serious cases.
  7. 7INTERNATIONAL LIAISON: Where the offender is overseas, the case is routed through the NCA acting as the UK's INTERPOL National Central Bureau (see cross-border mechanism) and via mutual legal assistance - this is force-to-NCA, not something the victim initiates directly.
Cross-cutting essentials

The same for everyone: evidence, safety, platforms

Documenting and preserving your evidence

Good documentation is the backbone of every other step. It builds the pattern that proves intent, it gives police and courts something to act on, and it survives even if the perpetrator deletes accounts. The guidance below comes from official safety and policing bodies across several countries. ## Capture context, not just the bad comment Australia's eSafety Commissioner advises capturing "the full conversation (rather than the abusive comment on its own), as well as account details, dates and times," and noting the web page address (URL) and the other person's user profile. Both screenshots and screen recordings are endorsed (screen recording is useful for content that scrolls). The practical takeaway: a good capture shows the username, the URL, and the date and time together, not a bare cropped screenshot. PEN America's Online Harassment Field Manual makes the same point about why this matters over time: documenting harassment creates a record that "alerts you and others to abuse patterns and escalations." Capturing the perpetrator's own words and behavior across time is how you surface intent and escalation. ## Keep the original file, because metadata is provenance Tech Safety Canada advises that you "should always safely store the digital original" rather than forwarding or re-copying it, capture the person's profile URL and a visible date and time, and print or save "directly after you have captured it," because "opposing counsel could claim there was manipulation of evidence... if there was a delay." Saving the original file (rather than forwarding or screenshotting a copy) is the practical mechanism by which authenticating metadata survives. Canadian law-enforcement cyberbullying guidance (RCMP) reinforces recording dates and times, capturing full conversation context with visible timestamps, usernames, and platform, and saving originals. ## Back up in more than one place Accounts and content can be deleted, so keep redundant copies. Tech Safety Canada suggests you "email or text the document to a device that you will continue to have secure access to so you have an extra copy." Canadian guidance recommends backups in multiple locations (for example cloud plus physical plus a printed hard copy kept in chronological order). ## Keep a contemporaneous log UK College of Policing stalking and harassment guidance treats the victim's own diary or log of incidents, and retained correspondence from the suspect, as key evidence; officers are advised to ask victims to keep a diary and explain how to complete it, and some forces issue formal stalking and harassment diary sheets. A dated, ongoing log of incidents is recognized, valuable evidence. ## Email evidence: preserve the headers Emailing a copy of evidence to yourself or a trusted contact can give you an independent third-party (mail-server) timestamp and a redundant copy. But there is an important caveat: forwarding or screenshotting an email strips or overwrites the original metadata. As the Safety Net email-evidence guidance explains, "in a forward, the original email header is replaced with a header that contains the forwarder's information," and "it is also not possible to uncover the header with just a screenshot or photo of the email body." To preserve provenance, keep the original message and its full headers (access the original electronic version via your webmail account, device, or email server). A self-generated email timestamp is corroborating, not conclusive. ## Why a postmark (or self-mailed copy) is weak proof Mailing yourself a copy, or relying on a postmark, proves only that an item existed and was in your possession on a date. It does not prove who wrote it, that any official action was taken, or that the content is unaltered, and it is tamperable. This is the well-documented "poor man's copyright" fallacy: the US Copyright Office states "there is no provision in the copyright law regarding any such type of protection, and it is not a substitute for registration." The same logic applies to reporting: a postmark or self-mailed copy does not prove a crime was reported. The durable proof that a report exists is the official police report or file reference number issued by police, which you should keep for follow-up. (This police-report analogy is a reasoned synthesis of the poor-man's-copyright point plus the role of official report numbers, not a single direct citation.) ## New Zealand caution: preserve before you block, and do not store "objectionable" content New Zealand's Netsafe advises screenshotting harmful content; for emails, saving both the message contents (with the date and time received) and the email headers; and recording the full URL of each page. Critically, it advises: "Contact Netsafe, or the Police first before deleting any content or blocking the abuser's number or profile (as this can be important evidence)." Netsafe also warns: "Do not screenshot or store content you believe is objectionable. It's illegal in NZ to store, send or share objectionable content. Instead contact Netsafe or the Department of Internal Affairs immediately." This jurisdiction-specific caution matters for any cross-border situation, because blanket "screenshot everything" advice can backfire. General legal information, not legal advice.

Official sources
esafety.gov.au ↗onlineharassmentfieldmanual.pen.org ↗techsafety.ca ↗rcmp.ca ↗library.college.police.uk ↗techsafety.org ↗copyright.gov ↗netsafe.org.nz ↗
Swatting: protecting yourself from a fake emergency call to your home

Swatting is when someone makes a false emergency report (such as a hostage situation or active shooter) to send armed police to your address. If you have been doxxed or threatened, this is a real risk, and there are concrete, sourced precautions. ## What the FBI advises The FBI/IC3 swatting public service announcement (29 April 2025) advises victims to "retain all information regarding the incident, such as usernames, email addresses, websites, or names of platforms used for communication, photos, or videos," to immediately report it to local law enforcement and to IC3/FBI, and to "discuss swatting with your family members or colleagues and have a plan in place in the event of law enforcement contact" at the residence. Important: this FBI PSA does not tell victims to pre-emptively register or notify police that they are a swatting target before an incident. Its preventive advice is limited to retaining incident information and having a family or colleague plan. The proactive pre-notification step below is supported by other authoritative sources, but should not be attributed to the FBI. ## The proactive notification precaution The core proactive precaution is to give your local police context in advance, so that a later fake emergency call to your address is met with caution rather than a maximal armed response. The ACLU advises: "If you are concerned about this kind of attack and you trust your local police to be reasonable, consider calling your local police's nonemergency number to alert them to the likelihood of false reports about your address," and it links a verbal script to request that extra precautions be taken by first responders if a report is received about your address. The "if you trust your local police to be reasonable" caveat is worth keeping in mind. Mainstream security guides give the same advice in operational terms: "Contact your local police department. Tell them what you do for a living and that you might be a target for swatting attacks. Tell the police that if they get a call about an active threat at your home address, they should first contact you to confirm that it's true." The goal is to turn an unverified hostage or shooting report into one the dispatcher already knows to treat with suspicion. ## Formal registries exist in some places, but are not universal Some jurisdictions offer a formal opt-in flag. The Seattle Police Department runs an opt-in anti-swatting program (launched 2018): residents who fear being targeted register their address through the Smart911 / Rave Facility system, and "when the 911 call center receives a report of a critical incident, they can dispatch responders and simultaneously check to see if residents at the address registered a concern for swatting on Rave Facility," passing that context to responding officers. Most jurisdictions, however, have no formal swatting registry. Where none exists, the realistic fallback is the ACLU's advice: call the local police non-emergency line and give them context. Do not assume a national or standard registry exists. General legal information, not legal advice.

Official sources
ic3.gov ↗aclu.org ↗security.org ↗king5.com ↗
When one person targets many: treat it as one linked case

If a single perpetrator is harassing several people, the strongest approach is to treat it as one connected pattern rather than a scatter of unrelated, isolated complaints. A documented multi-victim pattern is powerful evidence of intent and fixation, and the law recognizes it. ## Coordinated harassment of multiple people can be one legal pattern UK Crown Prosecution Service guidance establishes that coordinated harassment of multiple victims can legally constitute a single "course of conduct." The CPS states: "Harassment may be committed against two or more persons," and "this covers collective harassment, whether directed towards members of the same family, neighbourhood, protected characteristics, trade or profession, organisation, or institution." Prosecutors are told that gathering evidence "should focus on the wider pattern of behaviour and on the cumulative impact on a victim." A campaign connected by a common motive or behavior links together as one pattern. That is precisely why a documented multi-victim pattern is strong evidence of intent and fixation. ## Why a cross-victim pattern matters Criminal harassment and stalking charges typically require demonstrating a sustained course of conduct, and often a specific intent, rather than a single offensive comment. A single instance of bad language or an opinion is generally not enough on its own. A pattern across multiple complainants helps establish the sustained conduct and the intent that a single instance cannot. (The broad legal logic here is authoritative via the CPS course-of-conduct framework; specific intake-categorization wording from non-official sources should be treated as illustrative.) ## Cross-referencing official report numbers When victims of the same perpetrator coordinate, the durable link between their cases is the official police report or file reference number, not the mere fact that they know each other. When you file a report, police give you a file or report number that you should keep for follow-up, and reports help police "identify patterns... repeat suspects." Co-victims cross-referencing each other's official reference numbers lets the forces link, retrieve, and corroborate related reports, and lets a Legat or NCB match parallel cases across borders. This cross-referencing of reference numbers is presented as best-practice reasoning grounded in two verified pillars (official report numbers exist and are kept for follow-up, and the CPS treats a one-offender, multiple-victim campaign as a single course of conduct). It is a sound operational extrapolation, not a directly quoted official instruction. General legal information, not legal advice.

Official sources
cps.gov.uk ↗rcmp.ca ↗
Reporting to the platform: what actually forces removal

When someone is harassing you, impersonating you, or spreading content about you on a social platform, it helps to understand what genuinely makes a platform take content down, and what is a waste of time. ## The three levers that actually force removal In practice there are only three things that force a platform to remove content or an account: 1. A court order or injunction. A judge orders the content removed. This requires a lawsuit and a court.

  1. A law-enforcement request submitted through the platform's official legal portal. A sworn officer working your case submits a request through the platform's dedicated law-enforcement webform. This is why a police report and reference number matter: it is an officer with an open case, using the official portal, who can move this lever, not you directly.
  2. The platform's own Community Guidelines enforcement after a report. The platform reviews the reported content against its rules and removes it if it violates them. Of these three, Community Guidelines enforcement is the only free, immediate lever a victim can pull directly. The first two require either a lawsuit and a court, or a sworn officer with an open case. You cannot invoke the court-order or law-enforcement levers yourself. ## Informal emails are ignored Do not waste time emailing a platform's general or legal@-style inbox, or messaging from a personal email address, to demand a takedown. Platforms route real legal and law-enforcement requests only through their official portals. TikTok's own Law Enforcement Guidelines state plainly that it "will not respond to requests for user data sent by non-law enforcement officials or when they are sent through informal channels (such as personal email addresses)." Emergency law-enforcement requests must come from a sworn law-enforcement official and from an official law-enforcement email domain. The same pattern holds across platforms: Meta requires a government-issued email at facebook.com/records; X requires a government agency to use legalrequests.x.com; Twitch requires legal process served through the Amazon Law Enforcement Request Tracker and "does not accept requests... or service of process, via e-mail or fax." The informal-email path simply is not the path that gets actioned. The officer working your case is the one who uses the portal. ## Report each item, per video and per comment On TikTok you can report any post (video), comment, account, or direct message for violating Community Guidelines, from the app or a web browser. Reporting is confidential: TikTok states it "will not disclose your identity to the person whose content or account you're reporting." To report a video: In the app, open the post, tap the Share button (or press and hold the post), tap Report, select a reason (and a subtopic if prompted), then tap Submit. On the web, hover over the More options (...) button on the video, click Report, select a reason and subtopic, then click Submit. To report a comment: TikTok has a separate, dedicated comment-report flow (press and hold the comment, then tap Report). Report harassing comments individually, per comment, rather than only reporting the video. ## Impersonation has its own separate report flow If someone is pretending to be you, that is not the same as reporting a single offensive video, and it uses a different path. TikTok provides a separate impersonation report flow: go to the impersonating profile, tap the three dots (top right), tap Report, then Report account, then select the impersonation reason ("Pretending to be someone"). There is also a web impersonation form that can require a real ID and lets you list multiple fake accounts in one report. TikTok's policy bans impersonation: it "does not allow accounts that impersonate individuals or organizations in a misleading or malicious way," while permitting clearly labeled fan or parody accounts that do not confuse users. Other platforms have their own impersonation report forms too (for example, X's impersonation reporting is filed by the impersonated person or an authorized representative). ## Do not use mass-reporting tools or organize a brigade It is tempting to rally friends or use a third-party "mass report" tool or bot to pile reports onto an impersonator. It does not work, and it can backfire. TikTok's own position is explicit: "Mass reporting content or accounts does not lead to an automatic removal or to a greater likelihood of removal" by its Safety team. Removal turns on whether the content actually violates the Community Guidelines, reviewed by human moderators, not on how many reports it receives. Mass-reporting tools violate platform policy and are the wrong move. Use the legitimate per-item report, the separate impersonation report, or the law-enforcement and court routes instead. General legal information, not legal advice.
Official sources
tiktok.com ↗tiktok.com ↗tiktok.com ↗support.tiktok.com ↗support.tiktok.com ↗support.tiktok.com ↗tiktok.com ↗newsroom.tiktok.com ↗meta.com ↗help.x.com ↗help.x.com ↗safety.twitch.tv ↗help.snapchat.com ↗
When the harasser is in another country: how cross-border police work moves

If the person harassing you lives in a different country, the case has to move between police forces. Understanding how that works tells you what to ask for and why your role is to keep your officer supplied with what they need. ## You cannot self-start INTERPOL or an MLAT, only police can INTERPOL is the world's largest police organization, with 196 member countries. But it works through each country's National Central Bureau (NCB), and the public cannot report to it directly. INTERPOL's own NCB page states: "INTERPOL NCBs do not respond to requests from the general public. Anyone wishing to report a crime or provide information on an international investigation should contact their local or national police, who will in turn contact the NCB." The US side says the same: private citizens report crimes through their local police or law-enforcement agency, which may then contact INTERPOL Washington if international assistance is required. The same is true of formal evidence requests between countries. A Mutual Legal Assistance Treaty (MLAT) request can only be made by government authorities (prosecutors, investigating judges, criminal investigators) and must be transmitted through a country's legally designated Central Authority. "All requests made pursuant to MLATs must be submitted through the Central Authority," and MLATs "are not available for use by private parties." A victim cannot file an MLAT request, only the investigating officer or prosecutor can. So your leverage is the explicit ask. You cannot trigger INTERPOL or an MLAT yourself; you trigger them by getting your investigating officer to make the request. ## The FBI's overseas offices (Legats) coordinate, they do not police The FBI runs legal attache (Legat) offices in "dozens of locations" around the globe, "providing coverage for more than 180 countries, territories, and islands," with about 250 special agents and support personnel stationed abroad. Legats sit in US embassies and cover the countries most relevant here, including London (covering the UK, Ireland, and the Channel Islands), Ottawa (Canada), Mexico City, Canberra (Australia), and Wellington (New Zealand). The FBI opened a standalone Legat office in Wellington on 31 July 2025; it had been a suboffice of the Canberra Legat since 2017. Crucially, Legats have no law-enforcement powers overseas. "Since FBI agents do not have traditional law enforcement powers overseas, they must rely on strong, mutually beneficial relationships with their foreign counterparts." The FBI "conducts investigations abroad only when invited by the host country. In most cases, our international partners gather evidence and make arrests on behalf of, or in close cooperation with, the Bureau." Legat duties include coordinating requests for assistance and coordinating victim assistance. They are a coordination channel, not a force that swoops in. ## The US entry points: a local field office and IC3 For a US-connected victim, the practical entry points are your local FBI field office and the FBI's Internet Crime Complaint Center (IC3) at ic3.gov. IC3 itself does not investigate; "trained analysts at the IC3 review and research the complaints, disseminating information to law enforcement and partner agencies, as appropriate," and "investigation and prosecution are at the discretion of the receiving agencies." IC3 explicitly accepts cross-border reports, including from "citizens of another country or who may be reporting a subject in another country." For an ongoing crime or a threat to life, contact your local field office or call 911. ## Formal evidence channels differ by country Bilateral MLATs with the United States are in force for the UK (entry into force 2 December 1996), Canada (24 January 1990), Mexico (3 May 1991), and Australia (30 September 1999), but not for New Zealand. US to New Zealand formal assistance runs instead through multilateral conventions and non-treaty letters rogatory and comity. For multilateral cooperation, the Council of Europe Budapest Convention on Cybercrime provides a standing framework for cross-border preservation and exchange of electronic evidence, including a 24/7 contact-point network. Among the countries here, the US, UK, Canada, Australia, and New Zealand are parties. New Zealand became the 81st party (acceded 28 August 2025; in force for New Zealand 1 December 2025), so the multilateral channel is available US to New Zealand even though no bilateral US to New Zealand MLAT exists. Mexico is not a party to the Budapest Convention; for a Mexico-based perpetrator the correct formal evidence channel is the US to Mexico bilateral MLAT, not the Budapest Convention. ## The realistic playbook Putting the verified mechanics together: - Report at home and in the perpetrator's country. Each country's police are the ones who can open the NCB or MLAT channel on their end, and IC3 explicitly accepts reports about a subject in another country.

  • Keep and cross-reference every reference and complaint number. Cross-referencing lets each force link to the parallel case so a Legat or NCB can match them.
  • Explicitly ask each investigating officer to pursue international coordination, through the NCB/INTERPOL channel, an MLAT via the Central Authority, and/or the in-country FBI Legat. You cannot self-initiate these; only the officers can. This consolidated playbook is a reasoned synthesis; each underlying mechanism is individually verified from FBI, DOJ, INTERPOL, and IC3 sources, though no single official page states the four-part script verbatim. General legal information, not legal advice.
Official sources
interpol.int ↗interpol.int ↗justice.gov ↗justice.gov ↗fbi.gov ↗fbi.gov ↗fbi.gov ↗ic3.gov ↗justice.gov ↗coe.int ↗