by John McCarthy Consulting Ltd. | Mar 19, 2024 | News
A 2023 ACCA disciplinary decision relating to a member makes interesting reading.
The main complaint was that he had created a document falsely claiming that his AML policies had been in existence for five years, when in fact they had not.
An ACCA remote AML inspection in October 2020 concluded by seeking additional documents including the firm’s AML Policy and Procedures document.
The ACCA compliance officer asked for the original version of the AML policy allegedly created in October 2018. The member claimed no updates had been made to the document and said that after reviewing the firm’s AML policy there was no need to make any changes to it.
At the subsequent disciplinary tribunal, the ACCA Case Officer pointed out that the AML Policy and Procedures document could not have been created in October 2018 because it was based on and ACCA technical factsheet “Anti-Money Laundering (AML) Policy and Procedures”, published by ACCA in February 2020.
The member eventually admitted that he had acted dishonestly when he claimed the AML policy had been in place since October 2018.
AML breaches
The AML Policy and Procedures created by the member had the following deficiencies:
There was a lack of evidence of:
- A Firm-Wide Risk Assessment;
- AML training to relevant staff;
- The firm’s criteria for different risk ratings.
There were also problems with:
- Inconsistency in the firm’s application of its AML Policy and Procedures Manual, because some clients had been incorrectly assessed as ‘medium risk’ when they displayed characteristics of one of more of the ‘high-risk’ factors listed in the firm’s AML Policy and Procedures document
- Lack of evidence of AML training for staff;
- The simple ‘Yes’/’No’ template used didn’t provide an assessment of the risks the firm faced or the actions to take to mitigate those risks;
- The AML template document did to relate to relevant AML processes operated by the firm and had few details of the firm’s day-to-day processes.
The disciplinary committee decided that Hung’s dishonesty and AML breaches reached the highest threshold of sanctions and excluded him from membership of the ACCA and he was ordered to pay costs of £6,000.
To hear more about the latest AML developments and how to be on the alert for suspicions of money laundering and terrorist financing under the Criminal Justice (Money Laundering and Terrorist Financing) Acts 2010 to 2021, see our latest Anti-Money Laundering webinar here.
All our courses are listed here.
Please also go to our website to see our:
- Anti-Money Laundering Policies Controls & Procedures Manual (March 2022) – View the Table of Contents click here.
- AML Webinar (December 2023) available here, which accompanies the AML Manual. It explains the latest legal AML reporting position for accountancy firms and includes a quiz. Upon completion, you receive a CPD Certificate of attendance in your inbox.
- letters of engagement and similar templates. Please visit our site here where immediate downloads are available in Word format. A bulk discount is available for orders of five or more items if bought together.
- ISQM TOOLKIT or if you prefer to chat through the different audit risks and potential appropriate responses presented by this new standard, please contact John McCarthy FCA by e-mail at john@jmcc.ie.
- We typically tailor ISQM training and brainstorming sessions to suit your firm’s unique requirements. The ISQM TOOLKIT 2022 is available to purchase here.
by John McCarthy Consulting Ltd. | Feb 24, 2024 | Blog, News
There are at least six principle aspects of the AML legislation that accountants in practice must cover in order to comply with the law.
- Policies, Controls & Procedures
There must be an AML Policies, Controls & Procedures Manual which is appropriate to each firm, and which describes the specific AML policies and procedures which the firm really implements.
The Manual needs to be specially tailored to what services the firm provides and copying the one from a friend from down the road (without to specific tailoring) will just not be good enough. In other words you need to know what you are doing.
2 Firm-wide Risk Assessment
Every firm must have to have a Firm-Wide Risk Assessment (FWRA) document (also known as a Business-Wide Risk Assessment or BWRA).
This must be relevant and specifically tailored to the firm and not simply a copy of a standard template with your firm’s name inserted into the heading. The FWRA must show that you have thought about your firm, it’s clients and the services provided (all under 5 main headings) in the context of ML risk.
3 Client Risk Assessments
This is the most onerous part of the AML law. For every client there must be written assessments of the risk of ML or terrorist financing associated with that client.
These risk assessments must be reviewed regularly and the review recorded.
Typically these reviews conclude for each client that the risk is either ‘low’ (usually for stock exchange listed companies and their subsidiaries and clients that are Government agencies and clients from other designated bodies regulated for ML), ‘normal’ (most clients are likely to be in this category – also called ‘medium’ risk), or ‘high’.
Where the client risk is high, there must be a record of additional steps taken to address that high risk (called ‘enhanced due diligence’).
4 Know Your Client or Client Due Diligence Records
On an individual client basis there firstly need to be records demonstrating that the firm has gathered information about each client (and their beneficial owners) to confirm their identity and the client’s financial activities in outline. This is commonly referred to as KYC or CDD. This information is collected when the firm commences to act for a new client and reviewed, and updated if necessary, at least annually).
Commonly referred to as KYC or CDD – there must be appropriate records that demonstrate sufficient background knowledge about each client (and their beneficial owners) to confirm their identity and the client’s financial activities and justify the risk category allocated. This CDD/KYC data needs to be reviewed, and updated where necessary, at least annually).
5 MLRO
Ensure that there is at least one person who has overall operational responsibility for operating the AML Policies Controls & Procedures. Often this person is described as the Money Laundering Reporting Officer (or MLRO), although that title is not mentioned in the AML laws.
6 Training
The MLRO and all relevant staff must have received up to date training in relation to money laundering and terrorist financing, and there must be a record of that training having been undertaken by them. The training needs to be refreshed regularly.
All our courses are listed here.
Please also go to our website to see our:
- Anti-Money Laundering Policies Controls & Procedures Manual (March 2022) – View the Table of Contents click here.
- AML Webinar (December 2023) available here, which accompanies the AML Manual. It explains the latest legal AML reporting position for accountancy firms and includes a quiz. Upon completion, you receive a CPD Certificate of attendance in your inbox.
- letters of engagement and similar templates. Please visit our site here where immediate downloads are available in Word format. A bulk discount is available for orders of five or more items if bought together.
- ISQM TOOLKIT or if you prefer to chat through the different audit risks and potential appropriate responses presented by this new standard, please contact John McCarthy FCA by e-mail at john@jmcc.ie.
- We typically tailor ISQM training and brainstorming sessions to suit your firm’s unique requirements. The ISQM TOOLKIT 2022 is available to purchase here.
by John McCarthy Consulting Ltd. | Feb 18, 2024 | Blog, News
It’s extremely important that practitioners give the Anti-Money Laundering (AML) legislation the attention it deserves and ensure full compliance with the responsibilities placed upon them by the law.
A case that dates back to December 2016, illustrates the importance of remaining alert for the red flags that can indicate money laundering (ML) is taking place. An ICAEW member, based in Leeds, was fined £5,000 by Leeds Magistrates Court and also the ICAEW severely reprimanded him, ordering that he pay costs of over £3,000 and seek training in the operation of the AML legislation.
The AML offence related to the fact that the client ‘Ms A’, was advised by HMRC that they were enquiring into their Corporation Tax Return. Ms A in turn advised the accountant that she and her husband were moving to another accountant who was presumably more experienced in tax enquiry work. She also pointed out that the issue related to an over-claim on mileage expenses and filing false tax returns.
This very fact was enough to warrant that the accountant ought to have known that the client had falsified their claims and tax was understated, irrespective of the amount of tax involved and that a ML offence had occurred. Yet the accountant did not make the necessary notifications to the authorities. Unknown to the accountant, the client’s company was involved in a much more serious fraud on the NHS by supplying false invoices for training services provided by her husband, who worked within the NHS.
The Judge indicated his view that the defendant ought to have been aware of his professional obligations concerning disclosures of this type. The belief that those disclosures would be taken up by the newly instructed tax specialists for Ms ‘A’ was not a meaningful excuse.
Money Laundering legislation needs respected and reports must be made where the circumstances necessitate it, irrespective of the amounts involved, as materiality is zero. This accountant has paid dearly for failure to do so and it is a salutary lesson for us all.
To hear more about the latest AML developments and how to be on the alert for suspicions of money laundering and terrorist financing under the Criminal Justice (Money Laundering and Terrorist Financing) Acts 2010 to 2021, see our latest Anti-Money Laundering webinar here.
All our courses are listed here.
Please also go to our website to see our:
- Anti-Money Laundering Policies Controls & Procedures Manual (March 2022) – View the Table of Contents click here.
- AML Webinar (December 2023) available here, which accompanies the AML Manual. It explains the latest legal AML reporting position for accountancy firms and includes a quiz. Upon completion, you receive a CPD Certificate of attendance in your inbox.
- letters of engagement and similar templates. Please visit our site here where immediate downloads are available in Word format. A bulk discount is available for orders of five or more items if bought together.
- ISQM TOOLKIT or if you prefer to chat through the different audit risks and potential appropriate responses presented by this new standard, please contact John McCarthy FCA by e-mail at john@jmcc.ie.
- We typically tailor ISQM training and brainstorming sessions to suit your firm’s unique requirements. The ISQM TOOLKIT 2022 is available to purchase here.
by John McCarthy Consulting Ltd. | Feb 14, 2024 | Blog, News
The Protected Disclosures (Amendment) Act 2022 (the Act) requires certain entities to have in place procedures to establish internal reporting channels and procedures to enable workers make protected disclosures (defined as a ‘relevant wrongdoing’).
From 17 December 2023 its scope will be expanded to employers with over 50 employees.
The Act already applies to entities employing over 250 employees from 1 January 2023 including certain financial services entities (regardless of employee numbers) like AIFMs, MiFID firms, Irish UCITS management companies and other Irish financial service providers, as well as Irish domiciled corporate funds.
The 2022 Act expands the scope of the Protected Disclosures Act, 2014 to include areas such as:
- public procurement;
- financial services;
- anti-money laundering (AML);
- product safety and compliance;
- transport safety;
- environmental protection;
- radiation and nuclear safety;
- food and animal health and welfare;
- public health;
- consumer protection; and
- the protection of privacy and personal data.
Its scope has been further widened from 17 December 2023 when employers with over 50 employees will need to have such a policy in place. The basic steps for employers are:
- the establishment, maintenance and operation of a secure and confidential internal reporting channel for workers who wish to make a protected disclosure, whether in writing, orally or both;
- the designation of an impartial and competent person who may be internal/external; and
- an obligation to provide workers with information on the internal/external protected disclosure reporting process.
The Act also creates a newly established Office of the Protected Disclosures Commissioner (www.opdc.ie) which will forward reports of work-related wrongdoing to the most appropriate body for initial assessment and follow-up.
Employees are given protection from dismissal from employment (among other protections) when they report a ‘relevant wrongdoing’ (defined which are defined to include:
- Where an offence has been or is likely to be committed;
- Non-compliance with a legal obligation – the 2014 Act excludes obligations arising under the worker’s contract of employment;
- A miscarriage of justice;
- Danger to the health and safety of any individual;
- Damage to the environment;
- An unlawful or otherwise improper use of funds or resources of a public body;
- Oppression, gross neglect or gross mismanagement by a public body; and
- Other breaches related to the financial interests of the EU the internal market, EU competition and state aid rules and internal market rules on corporate tax.
The legislation is complex and we cannot cover all its aspects in the space of a blog. We urge our readers to seek independent professional and legal advice where necessary.
IT Controls Assessment
Auditors are reminded that there are relatively significant changes in the requirements of ISA 315 Identifying and Assessing the Risks of Material Misstatement for accounting periods commencing 15 December 2021, which in practical terms means, accounting periods Ended 21 December 2022 and later.
Auditors dealing with the audits of entities with such accounting periods affected by these change will need, to adopt new audit programmes and, in additional to the normal audit tests, to also assess the entity’s IT controls (no matter what the size of that entity).
This is a significant new development for auditors of SMEs, in particular, and will be a game changer ion the type of audit documentation and evidence of assessment of such IT controls by the auditor on audit files.
For an easy to implement additional (two page) IT Controls Questionnaire to help document the above process, please click on this link to download immediately for only €60 + VAT.
Please also go to our website www.jmcc.ie/training to see our latest:
- Latest updated AML for Accountants webinar (December 2023) which explains the current legal AML reporting position for accountancy firms and includes a quiz. Upon completion, you receive a CPD Certificate of attendance in your inbox. A 20% discount is available for orders of five or more webinars/products, if bought together.
- There are other accounting/audit webinars on the site and more will follow throughout 2024.
- Anti-Money Laundering Policies Controls & Procedures Manual (March 2022) – View the Table of Contents click here.
- letters of engagement and similar templates. Please visit our site here where immediate downloads are available in Word format. A bulk discount is available for orders of five or more items if bought together.
- ISQM TOOLKIT – We can also tailor ISQM training and brainstorming sessions to suit your firm’s unique requirements. The ISQM TOOLKIT 2022 is available to purchase here.
by John McCarthy Consulting Ltd. | Jan 20, 2024 | Blog, News
Nearly a third of UK audits completed by small and mid-tier firms need ‘significant improvements’ after inspections by the Financial Reporting Council (FRC). The inspections were carried out for the year ended 31 March 2023 on 32 firms in total and reported by the Financial Reporting Council in late 2023.
These inspection results will be influential for Irish regulators like the Chartered Accountants Ireland, the CPA Ireland, the ACCA as well as the Irish Audit & Accounting Supervisory Authority when carrying out their inspections of Irish audit firms in 2024.
The Financial Reporting Council say that ‘disappointingly, many of our findings were in routine areas, such as
- the audit of journal entries;
- complying with archiving requirements;
- the audit of judgments and estimates (17% worse than in the previous report), and
- the audit of going concern.
Audit teams need to demonstrate a greater effort at robust professional scepticism when it comes to both the audit of judgments and estimates, and going concern.
The FRC also suggested audit teams refer to the FRC paper, What Makes a Good Audit.
We will continue with Part Two of this blog next week.
Please also go to our website www.jmcc.ie/training to see our latest:
- Latest updated AML for Accountants webinar (December 2023) which explains the current legal AML reporting position for accountancy firms and includes a quiz. Upon completion, you receive a CPD Certificate of attendance in your inbox. A 20% discount is available for orders of five or more webinars/products, if bought together.
- There are other accounting/audit webinars on the site and more will follow throughout 2024.
- Anti-Money Laundering Policies Controls & Procedures Manual (March 2022) – View the Table of Contents click here.
- letters of engagement and similar templates. Please visit our site here where immediate downloads are available in Word format. A bulk discount is available for orders of five or more items if bought together.
- ISQM TOOLKIT – We can also tailor ISQM training and brainstorming sessions to suit your firm’s unique requirements. The ISQM TOOLKIT 2022 is available to purchase here.
