First Reference company logo

Inside Internal Controls

News and discussion on implementing risk management

machine cogs image

Internal Controls

New initiatives to hold companies accountable for human rights violations abroad

On January 17, 2018, the federal government announced two new initiatives to hold Canadian companies doing business and operating abroad accountable for human rights violations abroad.

 

, , , , , , , , , , , ,

Phishing losses exceed $224,000.00 after insurer denies coverage

In August 2010, someone called The Brick’s accounts payable (AP) department, pretending to be from Toshiba Canada. The caller said he was new to Toshiba and needed some payment details. The Brick employee faxed the payment information to the number which the caller provided.

 

, , , , , , , , , , ,

CRA guidance: Charitable status for internal divisions

internal divisions

Many larger charities are structured in such a way that there is a head organization with subordinate divisions operating below it. For example, a charity that operates across the country may do so by way of local ‘chapters’ overseen by a main organization, or a religious governing body may have several related parishes.

 

, , , , , , , , , ,

Risk and game theory

game theory

The Cuban Missile Crisis is frequently cited as an example of the use of Game Theory. I am talking about the situation confronting the Kennedy government when they found that the USSR had installed missiles in Cuba that were capable of hitting American cities with nuclear weapons. Here is a link to a summary of […]

 

, , , , , , , , , , , , , , ,

Charities can now help businesses in the aftermath of disasters

aftermath of disasters

In August 2017, the Canada Revenue Agency (“CRA”) updated its Guidance CG-014 on community economic development (“CED”) activities and charitable registration. There were a number of updates to the Guidance, but the most significant was the inclusion of the statement that charities are now able to support, on a more long-term basis, the efforts of businesses that are helping to rebuild communities affected by disaster.

 

, , , , , , , , ,

Not-for-profits need a plan to determine whether to take a stand or policy position

Not-for-profits should continuously assess current and emerging issues to determine whether to take a stand or policy position. Emerging issues may be strategically important to the organization and are often time-sensitive; the opportunity to take a stand on an issue may be fleeting because attention may soon be re-directed to something new. Not-for-profits will need […]

 

, , , , , , , , , , , , ,

Internal controls for gift giving this holiday season

Many companies effectively minimize the risk of inappropriate gifts through stringent pre-approval requirements because a sufficiently robust and enforced pre-approval policy can reduce the number of gifts simply because of the headache of getting the pre-approval. This has the added benefit of ensuring enforcement of internal controls, largely because of the reduced volume of gifts being included in expense reports.

 

, , , ,

Small business corporate tax rate reduction 2018

The government news release announcing the reduction in the small business corporate income tax rate did not address whether there would be corresponding changes to the dividend gross-up or non-eligible dividend tax credit rate.

 

, , , , , , , , , , , ,

Shareholders have fundamental right to call meetings, Ontario appeal court rules

Court limits ability to refuse a proposal based on “personal grievance” exemption… The Court gave some considerations on the shareholders fundamental right to call meetings, on how to differentiate between “personal grievances” that are not properly matters for a shareholder meeting, and the business and affairs of the company, which are proper matters.

 

, , , , , , , , , ,

NIST’s recommended password policy evolves

As imperfect a means of authentication as they are, “memorized secrets” like passwords, pass phrases and PINs are common, and indeed are the primary means of authentication for most computer systems. In June, the National Institute of Standards and Technology issued a new publication on digital identity management that, in part, recommends changes to password policy that has become standard in many organizations—policy requiring passwords with special characters.

 

, , , , , , , ,

The future of risk management

The Institute of Risk Management has a great feature where they have asked people around the world, including a number of luminaries, about the future of risk management.

 

, , , ,

Trusted advisors and world-class internal auditors

I was recently privileged to receive a signed copy of Richard Chambers’ latest book, Trusted Advisors: Key Attributes of Outstanding Internal Auditors. Richard is the President and CEO of The Institute of Internal Auditors, a veteran of internal audit at the highest level, a friend, and an individual with whom I love to debate the practices of internal auditing and risk management. (I hope I am influencing his views on the imminent update of the COSO ERM Framework.)

 

, , , , ,

Section 99 of the Environmental Protection Act: Ontario Courts continue to clarify its scope and power

In Huang v Fraser Hillary’s Limited, the Ontario Superior Court of Justice confirmed that plaintiffs can rely on section 99 of the Environmental Protection Act—a section enacted in 1985—to claim damages for spills which occurred before section 99 was enacted. The Court’s discussion in this case provides helpful guidance on the possible reach and limitations of the so-called “spill action” legislation.

 

, , , , , , , , , , , , , ,

Competition law issues for HR Professionals in Canada

Competition law

A company’s HR functions, such as recruitment and compensation, are not typically regarded as antitrust “hot spots” (as opposed to sales and marketing). Recent cases in the United States, however, highlight how hiring practices can create the risk of competition law violations for companies and their HR personnel. Since Canadian competition law is similar to U.S. antitrust law in these respects, it is important that Canadian HR professionals be aware of these risks and protect themselves and their companies from exposure.

 

, , , , , , , , , , , , , , ,

Top 10 most read Inside Internal Controls posts 2016 & Season’s Greetings

We are signing off with a list of the top 10 most read Inside Internal Controls posts 2016. Privacy issues and director’s liability seem to have been hot topics this year with several blog posts on the topics making it on the list. The top 10 most read Inside Internal Controls posts 2016 Director’s liability […]

 

, , , , , , , , , , , , , , , ,

Previous Posts