INTERNAL CONTROLS POLICY
Internal Controls
Internal control is all of the policies and procedures management uses to achieve the following goals.
-
Safeguard Company and client's assets - well designed internal controls protect assets from accidental loss or loss from fraud.
-
Ensure the reliability and integrity of financial information - Internal controls ensure that management has accurate, timely and complete information, including accounting records, in order to plan, monitor and report business operations.
-
Ensure compliance - Internal controls help to ensure the company is in compliance with the many local laws and regulations affecting the operations of our business.
-
Promote efficient and effective operations - Internal controls provide an environment in which managers and staff can maximize the efficiency and effectiveness of their operations.
-
Accomplishment of goals and objectives - Internal controls system provide a mechanism for management to monitor the achievement of operational goals and objectives.
Responsibility
Management Responsibility: Administrative management is responsible for maintaining an adequate system of internal control. Management is responsible for communicating the expectations and duties of staff as part of a control environment. They are also responsible for assuring that the other major areas of an internal control framework are addressed.
Staff Responsibility: Staff and operating personnel are responsible for carrying out the internal control activities set forth by management.
Framework for Internal Control
The framework of a good internal control system includes:
-
Control environment: A sound control environment is created by management through communication, attitude and example. This includes a focus on integrity, a commitment to investigating discrepancies, diligence in designing systems and assigning responsibilities.
-
Risk Assessment: This involves identifying the areas in which the greatest threat or risk of inaccuracies or loss exist. To be most efficient, the greatest risks should receive the greatest amount of effort and level of control. For example, US dollar or LAK amount or the nature of the transaction (for instance, those that involve cash) might be an indication of the related risk.
-
Monitoring and Reviewing: The system of internal control should be periodically reviewed by management. By performing a periodic assessment, management assures that internal control activities have not become obsolete or lost due to turnover or other factors. They should also be enhanced to remain sufficient for the current state of risks.
-
Information and communication: The availability of information and a clear and evident plan for communicating responsibilities and expectations is paramount to a good internal control system.
-
Control activities: These are the activities that occur within an internal control system. These are fully described in the downloadable document here:
