Product Counterfeiting Costs UK Manufacturers GBP 9B a Year
Key Takeaways
- According to OECD and EUIPO research, counterfeiting costs UK manufacturers approximately GBP 9 billion per year in lost revenue, damaged reputation, and enforcement costs
- Physical authentication methods (holograms, batch codes) secure the label, not the item — making them straightforward to replicate at commodity cost
- Serialised QR codes built on GS1 Digital Link assign each unit a globally unique identifier, making bulk counterfeiting economically unviable
- DPP compliance infrastructure and anti-counterfeiting serialisation share the same technical foundation — one QR code satisfies both requirements
The hard hat on the construction site looks identical to the certified original. Same moulding, same colour, same label. But the polycarbonate shell was never impact-tested, the suspension webbing is already brittle, and there is no EN 397 compliance behind that badge. The worker wearing it does not know. Their employer does not know. The site manager does not know.
This is not an isolated edge case. According to OECD and EUIPO research, counterfeit and pirated goods cost UK manufacturers approximately GBP 9 billion every year in lost revenue, damaged reputation, and enforcement costs. And unlike counterfeit handbags — where the harm is financial — fake PPE, automotive components, and medical devices carry a second cost that does not appear on any balance sheet: they hurt people.
The question is not whether counterfeiting is a problem. The question is why the standard playbook — holograms, batch codes, and brand enforcement teams — has failed to contain it, and what a serialised digital identity layer actually changes.
The Scale of the Problem in the UK
The OECD/EUIPO joint report on illicit trade — "Trade in Counterfeit and Pirated Goods: Mapping the Economic Impact" — consistently places the UK among Europe's most targeted markets for infringing goods, a function of its large retail economy, major port infrastructure, and high-volume e-commerce channels. GBP 9 billion annually works out to roughly GBP 25 million a day in lost manufacturer revenue before you account for knock-on costs.
But the sectoral breakdown is where the numbers get alarming.
PPE and safety equipment is one of the most counterfeited product categories in the UK market. The HSE has issued repeated warnings about non-compliant hard hats, high-visibility vests, and respiratory masks entering supply chains through online marketplaces. Counterfeit FFP2 and FFP3 respirators — a category that saw explosive demand during the pandemic — continue to circulate years later, some bearing forged CE/UKCA marks.
Automotive parts represent another high-risk category. Fake brake pads, counterfeit airbag components, and substandard wheel bearings reach UK workshops both through legitimate-appearing distributors and direct-to-consumer channels. The DVLA and Trading Standards have run joint operations targeting these supply chains, but seizures represent a fraction of what circulates.
Consumer electronics — chargers, batteries, cables — flood online platforms at price points that make genuine products look overpriced. The safety risk from counterfeit lithium-ion batteries is well-documented by the UK's Office for Product Safety and Standards (OPSS): thermal runaway, house fires, and personal injury claims trace back to cells that were never tested to IEC standards.
Medical devices complete the picture. Counterfeit blood glucose test strips, surgical instruments, and diagnostic equipment have been seized at UK borders. Here the harm is not speculative — a misreading strip or a structurally compromised instrument in a clinical setting can be fatal.
Why Revenue Losses Are Only Half the Story
Most manufacturer conversations about counterfeiting frame the problem as a revenue issue. A percentage of sales that should have been yours went to a criminal operation instead. Fix the leakage, recover the revenue.
That framing misses the liability dimension entirely.
When a construction worker is injured wearing a helmet that bears your brand name but was manufactured by a counterfeiter, your legal team is still on the call. When a patient is harmed by a device that appears to carry your CE mark, your regulatory team is still filing with the MHRA. The counterfeit event does not insulate you from brand association. It compounds the harm: you absorb reputational damage from a product you never made, tested, or shipped.
For PPE manufacturers in particular — companies like JSP Safety and Globus Group, which supply critical safety equipment to UK industrial markets — the counterfeiting problem is existential in a way it simply is not for a luxury goods brand. A fake luxury watch is a fraud. A fake hard hat is a potential inquest.
Why Holograms and Batch Codes Have Failed
The industry's response to counterfeiting over the past two decades has cycled through a predictable set of physical authentication mechanisms. Each has been compromised.
Holograms were once considered unforgeable. They are now mass-produced at commodity prices by the same criminal supply chains that produce the fake products themselves. A convincing hologram on a counterfeit item costs pennies. The hologram no longer tells you anything about the product underneath it.
Batch codes and lot numbers were never designed as anti-counterfeiting tools — they exist for traceability and recall management. Counterfeiters simply copy valid batch codes from legitimate products. A fake automotive part bearing a genuine OEM batch number passes visual inspection at a workshop.
Proprietary inks and covert marks require forensic equipment to verify, which means they are only useful to brand protection investigators after the fact. The end customer — the contractor buying PPE, the mechanic sourcing brake parts — cannot use them at the point of purchase.
The fundamental problem with all physical authentication methods is the same: they secure the label, not the item. And once you have secured the label, you have given counterfeiters a target to copy rather than a barrier they cannot cross.
Authentication Methods Compared
| Method | Security Level | Cost to Counterfeit | Scalability | Consumer Verification |
|---|---|---|---|---|
| Hologram | Low (was high) | Very low — commodity | High | Not possible without training |
| Batch / lot code | None | Zero — copy-paste | High | Not possible |
| NFC chip | Medium | Moderate | Low-medium | Possible but requires NFC phone support |
| Serialised QR (GS1 Digital Link) | High | Very high — each unique | Very high | Instant — any smartphone camera |
The serialised QR column is where the conversation shifts. Not because QR codes are inherently secure (they are not), but because serialisation at the unit level — combined with a cloud-verified identity record — changes the attack surface entirely.
How Serialised QR Verification Works
A generic QR code on a product encodes a URL. If a counterfeiter copies it, they get the same URL. Every fake product resolves to the same destination as the genuine one. There is no way to distinguish original from copy.
A serialised QR code built on GS1 Digital Link is different. Each unit carries a globally unique identifier: GTIN plus serial number (SGTIN). The QR code does not just point to a product page — it points to a specific, registered instance of that product. When that code is scanned, the request hits a cloud system that checks whether this exact serial number exists, was manufactured, was shipped, and has not already been flagged.
The workflow looks like this:
- Manufacturer enrols the serial number during production. Each unit gets a unique identity record before it leaves the line.
- Distributor or end customer scans the QR code at receipt, installation, or point of use.
- The verification engine checks the serial number against the manufacturer's identity registry.
- The response is unambiguous: "Verified genuine — manufactured [date], authorised for UK market" or a warning that the serial number is unknown, duplicated, or flagged.
There is no training required, no special equipment, no forensic analysis. Any smartphone with a camera completes the verification in under three seconds.
What the Customer Sees
The scan-to-verify experience bifurcates cleanly based on outcome.
A genuine product scan surfaces a branded experience: product name, manufacture date, compliance certifications, regional authorisation, warranty registration prompt, and the visual confirmation that this item is legitimate. For a PPE buyer on a construction site, this is the equivalent of a live certificate of conformity in the worker's hand.
A suspicious scan — unknown serial, duplicated serial, or serial from a batch never distributed to the UK — triggers an immediate warning. The buyer knows before installation. The site manager knows before sign-off. The employer knows before their workforce is exposed.
This is not a theoretical improvement. It is a complete inversion of the status quo: moving authentication from post-incident investigation to pre-use verification, and putting that capability in the hands of the person who actually needs it.
GS1 Digital Link and the DPP as an Anti-Counterfeiting Side Effect
The EU Digital Product Passport (DPP), mandated under ESPR and being mirrored in UK product regulation frameworks, requires manufacturers to attach a machine-readable data carrier — in practice, a QR code — to physical products carrying lifecycle, compliance, and sustainability data. The implementation standard is GS1 Digital Link.
Manufacturers building DPP compliance are, as a side effect, building the infrastructure for serialised anti-counterfeiting. The same unique identifier that carries sustainability data also uniquely identifies each unit. The same scan that pulls up carbon footprint data also verifies that this specific unit exists in the manufacturer's registry.
This means the anti-counterfeiting investment is not a standalone line item. It rides on top of compliance infrastructure that manufacturers are building anyway. For PPE manufacturers facing both ESPR-adjacent UK product regulations and the counterfeiting threat simultaneously, this convergence is significant: one QR code, one scan, covers both requirements.
The Competitive Landscape
Several specialist brand protection platforms have built businesses around this problem. Scantrust focuses on secure QR codes with covert anti-copy technology, primarily for FMCG and pharma markets. Kezzler offers serialisation and traceability infrastructure with strong pharmaceutical and luxury penetration. TrackMatriX provides supply chain visibility with an authentication layer aimed at industrial sectors.
Each addresses a real part of the problem. Where they differ from a platform like BrandedMark is integration scope: brand protection tools tend to stop at authentication. The serialised identity infrastructure in BrandedMark connects the same verified scan to warranty registration, product support content, spare parts ordering, and ongoing customer engagement — so the anti-counterfeiting mechanism is not a bolt-on but a component of the product's full digital lifecycle. Manufacturers get authentication as part of giving every product a digital identity, rather than as a separate security investment.
FAQ
Does serialised QR verification actually stop counterfeiting, or just detect it?
Both, depending on where it is applied. At the retail or distribution level, verification before purchase prevents a fake from entering use. At the manufacturing level, unique serials that cannot be predicted or pre-registered by counterfeiters make bulk fake production significantly harder to monetise — a counterfeiter copying a single serial number can only sell one convincing fake before it is flagged as duplicated. The detection layer also generates intelligence: patterns of flagged scans identify which markets, channels, and time windows are targeted, enabling enforcement action.
Is GS1 Digital Link required, or can manufacturers use proprietary QR formats?
GS1 Digital Link is the industry standard and the format required for EU DPP compliance. Proprietary QR formats work but create interoperability problems — they cannot be resolved by generic QR readers without a custom app, which adds friction for end customers and distributors. For manufacturers targeting both UK and EU markets, building on GS1 Digital Link future-proofs the investment across regulatory frameworks.
How does this apply to PPE specifically — does UKCA certification change the picture?
UKCA marking (the UK equivalent of CE marking post-Brexit) certifies that a product type has been tested to the relevant standard. It does not certify that this specific unit is a genuine, tested product. Counterfeiters copy UKCA marks freely. Serialised verification closes that gap: a genuine UKCA-marked hard hat from a reputable manufacturer like JSP or Globus carries a serial number that can be verified against the manufacturer's production records, confirming both the mark and the specific unit's provenance. The certification and the identity layer work together.
The Practical Starting Point
For UK manufacturers evaluating where to begin, the entry point is simpler than it appears. Serialisation at the unit level is a production-line change, not a product redesign. GS1-compliant QR codes can be applied via existing label printing infrastructure. The verification system is cloud-hosted and does not require on-premise installation.
The harder organisational question is not "how do we implement this" but "who owns it." Brand protection, product compliance, and after-sales teams all have legitimate claims on serialised product identity — which is exactly why it works better as a product OS capability than as a standalone security tool. When the same infrastructure that authenticates a product also registers a warranty, surfaces a troubleshooting guide, and routes a spare parts order, the business case extends well beyond anti-counterfeiting alone.
GBP 9 billion a year in UK losses is the headline. The underlying story is that every one of those counterfeited products is a unit that left a manufacturer's control without a verified identity. Giving products a digital identity — unique, verified, and persistent — is how manufacturers take that control back.
For a closer look at how serialised verification integrates with the broader product experience, see how BrandedMark handles verified QR codes for product safety, the manufacturer brand protection strategy framework, and how product authentication works in luxury brand contexts — the underlying mechanisms translate directly to industrial and safety equipment markets.