How to prevent employee theft in New Zealand
Help your clients protect their business with practical steps to prevent employee theft.

Written by Lena Hanna—Trusted CPA Guidance on Accounting and Tax. Read Lena's full bio
Published Wednesday 17 June 2026
Table of contents
Key takeaways
- Fraud is New Zealand's most prevalent and fastest growing crime type, and 25% of NZ employers have had employees steal from them. Your clients need proactive controls, not reactive fixes.
- The fraud triangle (pressure, opportunity, and rationalisation) gives you a practical framework for advising clients on where their business is most vulnerable.
- Cloud accounting tools like automated bank feeds, audit trails, and real-time reporting make it significantly harder for theft to go undetected.
- When theft does occur, your clients must follow NZ employment law carefully, including the Employment Relations Act 2000, to avoid costly personal grievance claims.
Why employee theft should be on your advisory radar
Employee theft is one of the most common financial risks your clients face, and it's growing. The NZ Serious Fraud Office reported in November 2024 that fraud is New Zealand's most prevalent and fastest growing crime type. Research from National Crime Check NZ found that 25% of NZ employers have experienced employee theft.
Globally, the ACFE 2024 Report to the Nations puts the median fraud loss at US$145,000 per case. For small and medium businesses, that's often enough to threaten viability.
This is where your advisory role matters most. Many clients don't think about theft until it happens. By raising the topic proactively, you position yourself as a trusted advisor who helps protect their business, not just report on it.
The fraud triangle: a practical advisory framework
The fraud triangle identifies three conditions that make theft more likely: pressure, opportunity, and rationalisation. When all three are present, the risk of employee theft increases significantly.
- Pressure: financial stress, personal debt, or lifestyle expectations that outpace income
- Opportunity: weak internal controls, lack of oversight, or gaps in systems that make theft easy to conceal
- Rationalisation: the employee justifies their actions ("I deserve more," "they won't notice," "I'll pay it back").
You can use this framework to help clients assess their vulnerabilities. If their business has weak controls and they're aware of staff under financial pressure, the risk profile is higher.
The 10-80-10 rule
The widely cited 10-80-10 rule offers a useful perspective for client conversations. It suggests that roughly 10% of people will never steal, 10% will steal regardless of controls, and the remaining 80% could go either way depending on opportunity and circumstances. The practical takeaway for your clients is clear: strong controls and a healthy workplace culture influence the behaviour of that middle 80%.
Common types of employee theft your clients face
Employee theft takes many forms, and some are harder to spot than others. Here are the most common types you should help your clients watch for.
- Cash theft: skimming from the register, pocketing customer payments, or manipulating cash handling processes. This is most common in retail and hospitality businesses.
- Inventory theft: taking stock, supplies, or equipment for personal use or resale. It's often written off as shrinkage or waste.
- Payroll fraud: ghost employees on the payroll, inflated hours, or unauthorised pay rate changes. This can go unnoticed for months without proper oversight.
- Expense fraud: submitting false or inflated expense claims, duplicate receipts, or personal purchases disguised as business costs.
- Time theft: clocking in early, leaving late on paper, or consistently not working during paid hours. While less dramatic, it adds up quickly across a team.
- Digital and data theft: stealing intellectual property, customer lists, or financial data. This risk grows as businesses become more digitised.
Each type requires different controls. When advising clients, it helps to assess which types their business model is most exposed to and prioritise controls accordingly.
10 steps to help your clients prevent employee theft
Preventing employee theft requires a combination of strong systems, clear policies, and a positive workplace culture. Here are 10 practical steps you can guide your clients through.
1. Separate financial duties
Advise your clients to split key financial responsibilities across different staff members. The person who processes payments shouldn't also reconcile bank accounts or approve expenses. Separation of duties is one of the most effective fraud deterrents because it means no single employee controls an entire financial process from start to finish.
2. Set up automated bank feeds
Recommend that clients connect their bank accounts directly to their accounting software. Automated bank feeds in Xero pull transactions in daily, making it much harder to hide discrepancies. When bank data flows in automatically, manual manipulation becomes far more difficult to conceal.
3. Implement user access controls
Help clients configure role-based access so employees can only see and edit what's relevant to their role. Not everyone needs access to payroll, supplier payments, or financial reports. Restricting access reduces the opportunity for unauthorised transactions.
4. Conduct regular reconciliations
Encourage clients to reconcile bank accounts, petty cash, inventory, and payroll regularly rather than leaving it to year-end. Frequent reconciliation catches discrepancies early, before small issues become large losses. Cloud accounting makes this much easier with real-time data that's always up to date.
5. Review financial reports monthly
Guide clients to review their profit and loss, cash flow, and balance sheet reports every month. Looking for unexplained variances, unusual transactions, or trends that don't match business activity helps detect theft early. Xero's reporting tools make it straightforward to track these patterns over time.
6. Establish clear policies and communicate them
Your clients should have written policies covering expense claims, use of company property, purchasing authority, and cash handling. These policies need to be communicated clearly to all staff, not just filed away. When employees know the rules and understand the consequences, the rationalisation leg of the fraud triangle becomes harder to lean on.
7. Create a culture of accountability
Advise clients to build a workplace where transparency and accountability are the norm. This means leading by example, treating staff fairly, and fostering open communication. Employees who feel valued and respected are far less likely to rationalise theft. The goal isn't surveillance; it's creating an environment where honesty is expected and reinforced.
8. Rotate responsibilities and require leave
Suggest that clients periodically rotate financial tasks between team members and ensure everyone takes their annual leave. Fraud schemes that rely on continuous access often unravel when someone else steps into the role temporarily. Mandatory leave policies also serve as a natural audit mechanism.
9. Conduct surprise audits
Recommend occasional unannounced checks of cash, inventory, expense claims, and payroll records. Surprise audits act as a strong deterrent because employees know that systems are being reviewed, but they don't know when. These don't need to be formal or heavy-handed; a periodic spot check by a manager or an external reviewer is often enough.
10. Use whistleblower channels
Encourage clients to set up a confidential way for staff to report concerns without fear of retaliation. Tips from colleagues are one of the most common ways fraud is detected. This could be as simple as a dedicated email address managed by a trusted external party, or a more formal anonymous reporting system.
What to do when theft is discovered
When a client discovers or suspects employee theft, their first instinct may be to confront the employee immediately or dismiss them on the spot. Advise them to slow down and follow a process. Getting this wrong can result in a costly personal grievance claim, even if the theft is proven.
Follow NZ employment law
Under the Employment Relations Act 2000, employers must follow a fair and reasonable process before taking disciplinary action or dismissing an employee. This includes investigating the allegation thoroughly, putting the concerns to the employee in writing, giving the employee a genuine opportunity to respond (ideally with a support person present), and considering the employee's explanation before making a decision.
Even in cases of serious misconduct, summary dismissal without following a fair process can be challenged. Advise your clients to document every step carefully.
Preserve the evidence
Before taking any action, clients should secure and preserve all relevant evidence. This includes financial records, CCTV footage, system logs, emails, and any physical evidence. If the matter may be referred to the NZ Police or the Serious Fraud Office, preserving the chain of evidence is critical.
Consider privacy obligations
If workplace monitoring was used to detect the theft, the NZ Privacy Act 2020 requires that monitoring is proportionate and that employees have been informed about it. Advise clients to check that their monitoring practices comply with privacy requirements, as improperly obtained evidence can complicate proceedings.
Get legal advice early
For anything beyond minor incidents, recommend that clients seek legal advice before starting a formal process. Employment law in New Zealand has specific procedural requirements, and the cost of getting advice upfront is far less than the cost of defending an unfair dismissal claim.
How cloud accounting helps detect and prevent theft
Cloud accounting makes theft significantly harder to conceal because it creates a transparent, real-time financial environment that's difficult to manipulate.
Automated bank feeds and reconciliation
When transactions flow directly from the bank into the accounting system, there's no opportunity to alter or omit entries manually. Automated bank feeds create a reliable, independent record that makes discrepancies visible quickly. Daily reconciliation becomes a five-minute task rather than a monthly headache.
Audit trails and user permissions
Every action in a cloud accounting system is logged, including who made changes, when, and what was modified. This audit trail acts as both a deterrent and a detection tool. Combined with role-based user permissions, you can help clients ensure that only authorised people access sensitive financial data.
Real-time reporting and anomaly detection
Real-time dashboards and reports let you and your clients spot unusual patterns as they happen, not weeks or months later. Sudden spikes in expenses, unexplained cash flow drops, or irregular payroll entries can all be flagged and investigated promptly. Xero's cloud accounting platform brings these capabilities together in a way that supports your advisory role.
Integration with payroll and inventory
When payroll and inventory management are connected to the accounting system, it's much harder for ghost employees, inflated hours, or missing stock to go unnoticed. Integrated systems cross-reference data automatically, highlighting inconsistencies that standalone systems might miss.
Strengthen your advisory with Xero
Helping your clients prevent employee theft is exactly the kind of high-value advisory work that builds trust and long-term relationships. With the right tools and a proactive approach, you can guide clients toward stronger financial controls and greater peace of mind.
The Xero partner program gives you access to the tools, training, and support you need to deliver this level of advisory service. Join the partner program and help your clients protect what they've built.
FAQs on preventing employee theft
Here are some frequently asked questions about preventing employee theft in New Zealand.
How do you advise a client who suspects an employee is stealing but has no proof?
Start by helping them strengthen their internal controls and monitoring without singling anyone out. Tighten reconciliation schedules, review user access, and implement surprise audits. These steps often either deter the behaviour or surface the evidence needed to act. If concerns persist, recommend they seek legal advice before taking any formal steps.
Can small businesses with limited staff still separate financial duties effectively?
Yes, even with a small team, you can advise clients to introduce compensating controls. For example, the business owner can review and approve all payments, while a staff member handles data entry. Automated bank feeds remove the need for manual transaction recording, and regular owner reviews of financial reports add another layer of oversight.
What's the first thing a client should do if they catch an employee stealing?
Advise them not to act impulsively. The first step is to secure and preserve the evidence, then seek legal advice. Under the Employment Relations Act 2000, they must follow a fair process before taking disciplinary action. Dismissing someone without proper procedure, even with clear evidence of theft, can lead to a successful personal grievance claim.
How often should clients audit their financial records for signs of theft?
Recommend that clients reconcile bank accounts and review key financial reports at least monthly. High-risk areas like cash handling, petty cash, and expense claims should be spot-checked more frequently. With cloud accounting, real-time data makes ongoing monitoring practical without adding administrative burden.
Disclaimer
Xero does not provide accounting, tax, business or legal advice. This guide has been provided for information purposes only. You should consult your own professional advisors for advice directly relating to your business or before taking action in relation to any of the content provided.
Become a Xero partner
Join the Xero community of accountants and bookkeepers. Collaborate with your peers, support your clients and boost your practice.