Wednesday, May 13, 2015

4 ways to help stop employee fraud

In the course of performing audits, I am often asked what the problem is with having one person do many different tasks for an organization.  Here is a brief explanation of some of the problems that are borne out of a single person performing incompatible duties and some things you can do to prevent fraud
:
Q: Which internal accounting controls can help prevent fraud?
A: This is a vast topic covered by countless books and consultants, so let’s narrow it down to employee fraud and theft. Aside from the obvious—conducting regular inventory checks and book audits, reconciling cash daily, and personally reviewing financial statements each month—there are several actions you can take to protect yourself and your business.

1. Establish a code of conduct.

Did you know that Walmart employees are not allowed to accept a bottle of water or cup of coffee from a vendor at a meeting without paying for it? That’s what I mean by a code of conduct. It’s a statement that you will not tolerate unethical or illegal behavior toward anyone—customers, suppliers, employees or the company itself.
While you may not be as strict as Walmart, you should write and post a code of conduct that clearly spells out the rules for employees and the repercussions for not following them. Give the code to everyone upon hire, and periodically thereafter, and require written acknowledgement that they have read, understand and agree to comply with it.
Now look in the mirror. It’s one thing to demand honesty from your employees, but the code of conduct goes both ways. So you, as the enforcer of the code, need to follow it to the letter. If employees see you take home merchandise or use company property for personal reasons, they may follow your lead—or worse. If you treat employees with respect, compensate them appropriately and offer opportunities to advance their careers, they’ll have less motivation to steal or cheat.

2. Set up organizational checks and balances.

In a small business, one person may wear many hats. But the most dangerous multitasker is a solitary administrator/bookkeeper who opens the mail, handles deposits and payments and files transaction documents. No one person should control that many aspects of the business—it’s asking for trouble.
At one of my companies that processed a high volume of mail, we convened a dozen senior managers and their assistants to open the mail every day. With all those hands, the task took about 15 minutes. All checks were set aside, with a tape of their total run. When the day’s bank deposit was prepared, the total had to match the tape run earlier.
Also avoid assigning the same person to handle purchasing and vendor payments, or allowing the same employee to manage accounts payable and accounts receivable. If you’re a manufacturer or distributor, you should have separate people managing receiving, warehousing and shipping.
At the very least, set up an operation in which one person controls what comes in (cash, checks, merchandise, supplies) and another handles what goes out (payments, orders, finished products).

3. Institute policies and procedures.

Someone other than the bookkeeper should settle bank and credit card statements every month—and the person who reconciles the bank statements should not have the ability to enter or modify transactions in the accounting system.
Here’s why: One of my partners started working with a new client and began routinely looking at their credit card statements. For one card, there were no records of purchases that matched the charges. An investigation uncovered that the client’s former controller had taken a company card with him when he left and had run up more than $200,000.
Another way to rein in fraud is to have payroll prepared and authorized by HR but entered by accounting, then checked by management before the funds are sent to the payroll company.
Also, keep everything locked up that should be locked up, and enforce rigorous key control and computer-system access, especially for departing employees. Changing locks and passwords company-wide when someone leaves or is dismissed is not an overreaction—it’s smart.

4. Watch employees’ behavior. 

If you notice changes in an employee’s behavior—files have been misplaced; they don’t want help with a project; they’re giving a customer excessive attention—look into it. The same goes for an employee with access to critical parts of the company’s operations or finances who never takes vacation time, or who routinely works early or late when no one else is around.
Trust me, they’re not working those extra hours because they love their job. It might be because they don’t want anyone else to see what they’re doing. Insist that people use their vacation time and stick to regular business hours.
Pay attention to any blips in your operation, no matter how minor. At one manufacturing company I worked for, a customer sent back an expensive item for warranty repair. We couldn’t find any record of the sale. Upon further inquiry with the customer, we discovered that our vice president of manufacturing and a foreman were building equipment inside the company, then shipping units out the back door along with their own company’s invoices. We were able to recover hundreds of thousands of dollars in losses before turning the two over to the police.
The key in all this is to trust your gut and recognize that no one knows your company as well as you do. If something doesn’t look or feel right, it’s probably not. By all means, investigate.  Thanks to Entrepreneur website for concise reporting on this topic.

Tuesday, May 05, 2015

Non Profits need to file form 990

Many Tax-Exempt Organizations Must File with IRS by May 15; Do Not Include Social Security Numbers or Personal Data
 
The Internal Revenue Service today reminds tax-exempt organizations that many have a filing deadline for Form 990-series information returns in mid-May.

With the May 15 filing deadline facing many tax-exempt organizations, the Internal Revenue Service today cautioned these groups not to include Social Security numbers (SSNs) or other unneeded personal information on their Form 990, and consider taking advantage of the speed and convenience of electronic filing.

Form 990-series information returns and notices are due on the 15th day of the fifth month after an organization’s tax year ends. Many organizations use the calendar year as their tax year, making Thursday, May 15 the deadline for them to file for 2014.

Many Groups Risk Loss of Tax-Exempt Status

By law, organizations that fail to file annual reports for three consecutive years will see their federal tax exemptions automatically revoked as of the due date of the third required filing. The Pension Protection Act of 2006 mandates that most tax-exempt organizations file annual Form 990-series informational returns or notices with the IRS. The law, which went into effect at the beginning of 2007, also imposed a new annual filing requirement on small organizations. Churches and church-related organizations are not required to file annual reports.

No Social Security Numbers on 990s

The IRS generally does not ask organizations for SSNs and in the form instructions cautions filers not to provide them on the form. By law, both the IRS and most tax-exempt organizations are required to publicly disclose most parts of form filings, including schedules and attachments. Public release of SSNs and other personally identifiable information about donors, clients or benefactors could give rise to identity theft.

The IRS also urges tax-exempt organizations to file forms electronically in order to reduce the risk of inadvertently including SSNs or other unneeded personal information. Details are on IRS.gov.