Business Regulation and Consumer Protection

Recent Reports

Small Business Research Programs: Additional Actions Needed to Incorporate Best Practices for Addressing Foreign Risks

Published: Jan 28, 2026

Publicly Released: Jan 28, 2026

Consumer Protection: Expeditious Actions Needed to Implement a Government-wide Strategy and Related Efforts to Counter Scams

GAO-26-108842

Published: Jan 14, 2026

Publicly Released: Jan 14, 2026

Small Business Administration: Opportunities to Improve Management of Fraud Risks, Improper Payments, and Contracting Programs

GAO-26-108820

Published: Dec 10, 2025

Publicly Released: Dec 10, 2025

Chief Information Officer Open Recommendations: Small Business Administration

GAO-25-108660

Published: Sep 30, 2025

Publicly Released: Nov 18, 2025

Small Business Research Programs: Clearer Guidance Could Improve Award Data to More Effectively Measure Outcomes

GAO-25-107942

Published: Sep 23, 2025

Publicly Released: Sep 23, 2025

Financial Literacy and Small Business Lending: Resources Available to Military-Affiliated People

GAO-25-107561

Published: Sep 10, 2025

Publicly Released: Sep 10, 2025

View More Reports

Open Recommendations

Small Business Research Programs: Additional Actions Needed to Incorporate Best Practices for Addressing Foreign Risks

GAO-26-107972

Jan 28, 2026

Show

26 Open Recommendations

Agency Affected	Recommendation	Status
Department of the Air Force	The Secretary of Air Force should ensure the SBIR and STTR programs inform awardees in a written statement that updated disclosures must be provided within 30 days of any substantive changes to the project. (Recommendation 1)	Open When we confirm what actions the agency has taken in response to this recommendation, we will provide updated information.
Department of Agriculture	The Secretary of Agriculture should ensure the agency consistently communicates that disclosure does not mean denial to all its SBIR and STTR applicants through mechanisms such as disclosure form itself, the agency solicitation, or on a website as part of the application process. (Recommendation 2)	Open When we confirm what actions the agency has taken in response to this recommendation, we will provide updated information.
Department of Agriculture	The Secretary of Agriculture should ensure the agency clearly outlines its designation of "covered individuals" that is available to SBIR and STTR applicants and program staff to ensure consistent access and understanding. (Recommendation 3)	Open When we confirm what actions the agency has taken in response to this recommendation, we will provide updated information.
Department of Agriculture	The Secretary of Agriculture should ensure the SBIR and STTR programs inform awardees in a written statement that updated disclosures must be provided within 30 days of any substantive changes to the project. (Recommendation 4)	Open When we confirm what actions the agency has taken in response to this recommendation, we will provide updated information.
Department of Agriculture	The Secretary of Agriculture should assess SBIR and STTR applicants' cybersecurity practices, ensuring these assessments focus on basic small business safeguarding protocols and remain consistent with federal cybersecurity frameworks. (Recommendations 5)	Open When we confirm what actions the agency has taken in response to this recommendation, we will provide updated information.
Department of Education	The Secretary of Education should ensure the SBIR program informs awardees in a written statement that updated disclosures must be provided within 30 days of any substantive changes to the project. (Recommendation 6)	Open When we confirm what actions the agency has taken in response to this recommendation, we will provide updated information.

Consumer Protection: Actions Needed to Improve Complaint Reporting, Consumer Education, and Federal Coordination to Counter Scams

GAO-25-107088

Apr 08, 2025

Show

16 Open Recommendations

Agency Affected	Recommendation	Status
Federal Bureau of Investigation	The Director of FBI should lead a U.S. government effort to develop and implement a government-wide strategy to counter scams and coordinate related activities. This effort should be done in collaboration with the Director of CFPB, the Chair of FTC, the Secretary of the Treasury, and other agencies, as appropriate (through their designees). This effort should address issues such as a common definition for scams; consumer complaint reporting; related types/granularity/aggregation of data, risks, and responses; a government-wide estimate of this type of crime; and coordination of federal and business activities. As appropriate, and consistent with desired characteristics, a strategy should also define agency roles, responsibilities, and authorities; identify necessary resources; and identify any legislative, regulatory, or administrative changes needed to enable a comprehensive, coordinated response. (Recommendation 1)	Open When we confirm what actions the agency has taken in response to this recommendation, we will provide updated information.
Federal Trade Commission	The Chair of FTC should, in collaboration with CFPB, FBI, and other major contributors, explore ways to harmonize data collection and contributions to Sentinel to better identify scams, such as consistently collecting data on scam type, dollar loss amount, payment method, and other data fields, as appropriate. (Recommendation 2)	Open When we confirm what actions the agency has taken in response to this recommendation, we will provide updated information.
Consumer Financial Protection Bureau	The Director of CFPB should, in collaboration with FTC, explore ways to harmonize data collection to better identify scams, such as consistently collecting data on scam type, dollar loss amount, payment method, and other data fields, as appropriate. (Recommendation 3)	Open When we confirm what actions the agency has taken in response to this recommendation, we will provide updated information.
Federal Bureau of Investigation	The Director of FBI should, in collaboration with FTC, explore ways to harmonize data collection to better identify scams, such as consistently collecting data on scam type. (Recommendation 4)	Open When we confirm what actions the agency has taken in response to this recommendation, we will provide updated information.
Consumer Financial Protection Bureau	The Director of CFPB should use the agency's data collection and analysis to produce and report an estimate of the number of complaints it receives and the associated financial losses resulting from scams. (Recommendation 5)	Open When we confirm what actions the agency has taken in response to this recommendation, we will provide updated information.
Federal Bureau of Investigation	The Director of FBI should use the agency's data collection and analysis to produce and report an estimate of the number of complaints it receives and the associated financial losses resulting from scams. (Recommendation 6)	Open When we confirm what actions the agency has taken in response to this recommendation, we will provide updated information.

Small Business Pilot Program: SBA Has Opportunities to Evaluate Outcomes and Enhance Fraud Risk Mitigation

GAO-25-107067

Mar 27, 2025

Show

2 Open Recommendations

Agency Affected	Recommendation	Status
Small Business Administration	The Administrator of SBA should complete an outcome evaluation of the Navigator Program. The evaluation should include an assessment of the scalability of lessons learned from pilot activities and incorporate input from a broad array of SBA staff and partner organizations. (Recommendation 1)	Open When we confirm what actions the agency has taken in response to this recommendation, we will provide updated information.
Small Business Administration	The Administrator of SBA should, for its competitive grant programs, implement procedures to obtain relevant information from district office staff with knowledge of applicants. In doing so, the SBA Administrator should consider the stage of the review at which staff should obtain such information, how staff should identify and address potential bias, and how to communicate relevant assessment criteria in notices of funding opportunities. (Recommendation 2)	Open When we confirm what actions the agency has taken in response to this recommendation, we will provide updated information.

COVID-19 Relief: Improved Controls Needed for Referring Likely Fraud in SBA's Pandemic Loan Programs

GAO-25-107267

Mar 24, 2025

Show

1 Open Recommendations

Agency Affected	Recommendation	Status
Small Business Administration	The SBA Administrator should collaborate with the SBA's OIG to develop an effective plan, including the data elements to be provided and the process to be used, for referrals of potential or likely COVID-19 EIDL fraud cases. (Recommendation 1)	Open In March 2024, in its comment letter on the report, SBA agreed with the recommendation and noted that it has worked with SBA OIG to put an effective process in place. SBA's comment letter further noted that SBA will provide GAO with evidence of the efforts taken to put the plan in place. We will review this evidence once provided and will continue to monitor SBA's efforts in this area.