Professional Documents
Culture Documents
Module-II
REVISION
BOOK
SECRETARIAL AUDIT
COMPLIANCE MANAGEMENT &
DUE DILIGENCE
CS Muskan Gupta
HIGHLIGHTS
- Amended in line with new modules issued by ICSI
- Covers all important topics
- Covers past topics of previous year exams
CHAPTER 1
COMPLIANCE
FRAMEWORK
COMPLIANCE FRAMEWORK
AFFIRMATION
Content of
Compliance
Report is
have been done
correct
Submit to BOD
(along with the
comment)
Program Design/Update: Used to assess the compliance programme and the reporting
structure or communication methods.
Compliance Policies and Procedures: Policies and procedure should be enhanced and updated.
Risk – Review
and update
Ongoing self-Assessment, Monitoring, and Reporting: Assessment, mechanisms,
and processes must be incorporated to achieve success.
The compliance
system and
processes in a
company are E. Whether the
D. Nature of the company viz., private, public,
dependent company is a listed
government company, etc.
mainly on the company or not
following
factors:
Is the professional who guides the board and the company in all
matters, renders advice in terms of compliance and ensures that
the board procedures are duly followed.
CS MUSKAN GUPTA 9532064262 YES ACADEMY, PUNE 8888 235 235
RISK PROFILING OF A COMPANY MAY INCLUDE FOLLOWING
RISK
DOCUMENTATION
AND
MAINTENANCE
OF RECORDS
CS MUSKAN GUPTA 9532064262 YES ACADEMY, PUNE 8888 235 235
PURPOSE OF DOCUMENTATION ELECTRONIC REPOSITORY OF DOCUMENTS
5. Accessibility to data room Timings to access data may be Can be accessed anytime
restricted
SAFETY AND RETRIVAL Inspections: List of individuals who have access of the records and have right to
RECORDS inspect the same.
The care of
records is
Keeping Ensure life Record
governed by
together cycle Preservation
three main
concepts
Regulation 30(8) provides that the listed entity e. Copies of all annual returns and copies of all
shall disclose on its website all such events or certificates and documents required to be preserved for
information which has been disclosed to stock 8 years from the date of filing with the Registrar.
exchange for a minimum period of five years
Physical data needs to be protected and handled responsibly, especially if the data contains PRIVACY
personal or confidential information.
OF
The following documents are primarily considered as confidential and need complete privacy: RECORD
a. Customer’s & Employees’ Information: AND ITS
b. Office Plans, Office IDs and Internal Procedure Manuals CONTROL
c. Contracts and Commercial Documents and Trade Secretes
a. All confidential documents should be stored in locked file cabinets or rooms accessible only to
those who are authorized.
SUGGESTIVE b. All electronic confidential information should be protected through encryption and passwords.
STEPS FOR
PROTECTING c. Employees should refrain from leaving confidential information visible on their computer
CONFIDENTIAL monitors when they leave their office.
INFORMATION
d. Employees should not discuss confidential information in public places.
e. Employees should avoid using e-mail to transfer certain sensitive or controversial information.
CS MUSKAN GUPTA 9532064262 YES ACADEMY, PUNE 8888 235 235
CHAPTER 4
SEARCH AND
REPORT
Creation of charge
Failure to file
application within the In 120 days if a person
60 days - 60 days fails to register the ROC will register the
extension (Condition - application , ROC will Charge
Ad Valorem fees) not register the Charge
TOTAL 120 Days
1. Examination of documents Registered on MCA 21 3. Cross Verification of Documents from the MCA Records:
portal: SR.NO PARTICULARS DOCUMENTS TO BE
MCA provides the facility to access public documents of the VERIFIED
company. 1. Name of the Company Memorandum of Association
The document can be viewed only within 7 days after the Certificate of Incorporation or
payment has been confirmed Fresh Certificate of
The documents are available for only 3 hours after the user Incorporation/Change of Name.
has started viewing the first document of the company.
2. Date of incorporation Certificate of Incorporation
2. Inspection of Various Documents maintained by the
3. Company Certificate of
company: Number/Corporate Identity Incorporation/Fresh Certificate
1. Various clauses of Memorandum and Articles of Association Number upon change of name/
2. Forms filed with the Registrar of Companies Certificate of registration of
3. All statutory registers *CLB Order for shifting
4. Verification of financial statement and Auditor’s Report registered office to another
State
5. Report of Internal Auditor
6. Copies of contracts made between the company and any of 4. Address of Registered Office INC-22, MGT-14 Resolution(s)
the related parties of Board/ General Body, INC28
with copy of NCLT Order.
7. Transfer and Transmission of Share
8. Instruments creating, modifying or satisfying charges
5. Name and address of Articles of Association, DIR-12,
9. Various Disclosures from Directors
present directors Register of Directors.
10. Related Party Transactions
11. Corporate Social Responsibility (CSR) 4. Compilation and Preparation of Search Report
12. Directors and Key Managerial Personnel (KMP)
5. Format of Search Report and its Preparation
CS MUSKAN GUPTA 9532064262 YES ACADEMY, PUNE 8888 235 235
SEARCH REPORT UNDER IPR LAWS
1. Corporate Announcements
11. Information Memorandum-
2. Corporate Actions
1. QIP
3. Financial Results
2. Scheme of Arrangement
6. Voting Results
12. Pledge Data
7. Results Calendar
13. Sustainability Reports
8. Shareholding Patterns
14. Buyback / Redemption
9. Corporate Governance
15. Public Notice - Compulsory Delisting
10. Offer Documents
C-KYC:
E-KYC: KYC OF DIRECTORS BY ICSI GUIDELINES ON
MCA: KNOW YOUR MEMBERS:
The government has E-KYC customers authorize
UIDAI to reveal their identity Conducted by the MCA at KYM proforma is to be
authorized the Central
or address information the time of the Allotment submitted by all the
Registry of Securitization
through biometric of the Director members of the
Asset Reconstruction and
authentication to their Identification Number. Institute along with the
Security Interest of India
respective bank branches or payment of annual
(CERSAI) for performing
business correspondent Every individual who has membership once in
the functions of Central
after which the UIDAI sends been allotted a DIN before three years. and has to
KYC Records Registry
the customers data 31st March of a financial be submitted every time
(CKYCR).
consisting of customer year need to submit e- when there is a change
name, age, gender, and form DIR-3-KYC to the CG in job/
After complying with the
new CKYC norms, a photograph electronically to on or before 30th profession/professional
the bank. September of immediate address.
unified customer
next financial year.
identification code is
The fee will be accepted
generated which can be
only when the proforma
used whenever KYC is
is properly filled and
required.
signed.
Key Elements:
1. Client Information
2. Corporate Structure
3. Permissible Business information as per Client Acceptance Policy
Memorandum of Association
4. Board Structure/ Organization Structure
5. Transaction with Business entities in which
Directors are interested
6. Creation, modification and satisfaction of Client Identification Procedures
charges
7. FOREX Exposure and overseas borrowings
8. Payment status of statutory dues and arrears
9. Name of the CEO, Company Secretary & CFO
10. Engagement Information Client Monitoring Mechanism
11. Proceedings against the company or any of its
director
12. Other Information
13. Undertaking from the client that information
provided is true and correct to his
knowledge and belief. Risk management
Hacking: Hackers/fraudsters obtain unauthorized access to the card management system of the banks which are then
issued for the purpose of money laundering.
Phishing: It is a technique used to obtain card and personal details through a fake email.
Pharming: It is a technique similar to phishing where a fraudster installs malicious code on a personal computer or
server which redirects all the click you make on one website to another fraudulent Website without your
consent or knowledge.
Smishing: It uses cell phone text messages which contain an URL or phone number, which usually has an automated
voice response system.
Debit card skimming: A machine or camera is installed at an ATM which picks up card related information and PIN
numbers when customers use their cards.
Computer Viruses: Company’s systems are always open to the risk of being infected with nefarious software which
may harvest the information from customer servers.
Counterfeit Instruments: Fake cheques / Demand Drafts are used in a great number of fraudulent schemes.
INC-21, INC-22, INC-28, PAS-3, SH-7, CHG-1, CHG-4, CHG-9, MGT-14, DIR-6, DIR-12, MR-1, MR-2, MSC-1, MSC-3, MSC-4,
GNL-3, ADT-1, NDH-l, NDH-2, NDH-3.
E-form DIR-3 and e-form DIR-3-KYC shall be filed along with attestation of photograph, identity proof and proof of residence
of the applicant by the CA/CS/Cost Accountant.
The Annual Return of the company in form MGT-7 shall be signed by the CS and where there is no CS, by a PCS.
Rule 11(2) of the Companies (Management and Administration) Rules, 2014 - annual return - filed by a listed company/company-
paid-up share capital of ten crore rupees or more or turnover of fifty crore rupees or more – certified by - PCS (Form No. MGT-8).
PCS to certify that all certificates have been issued within thirty days of the date of registration for transfer - Regulation 40(9)
of SEBI (LODR) Regulations.
Every listed entity and its material subsidiary is required to conduct a secretarial audit by a PCS and attach its report in
format MR-3 – Regulation 24A of SEBI (LODR) Regulations.
3. Statutory Registers
8. List of Promoters.
● Annual Return is required to be signed by a Director and the Company Secretary, or where there is no
company secretary, by a company secretary in practice.
● In case of OPC and small company same shall be signed by the Company Secretary or where there is no
company secretary, by the director of the company
The annual return of every listed company/company having a paid-up share capital of Rs. 10 crore or more
having turnover of 50 crore rupees or more shall be certified by a PCS in the Form No. MGT-8, with respect to
following points:
1. The facts disclosed in annual return are correct and adequate
2. The Company has complied with the provisions of the Act & Rules during the financial year in respect of:
● Status
● Maintenance of registers or records
● Closure of Register of Members Security holders.
● Advances or loans to its directors and persons or firms or companies referred in section 185 of the Act.
● Contracts/arrangements with related parties
● Declaration/ payment of dividend or transfer of unpaid/ unclaimed dividend/ other amounts to the Investor
Education and Protection Fund.
● Appointment / reappointment/ filling up casual vacancies of auditors
● Alteration of the provisions of the memorandum and / or articles of association of the Company.
● Issue, allotment, transfer, transmission or buy back of securities.
Penalty Rs. 10,000 ( continuing failure penalty of Rs.100 for Penalty Rs. 10,000 ( continuing failure penalty of Rs.100 for
each day) - maximum Rs.2 lakhs each day) - maximum Rs.2 lakhs
Not filed its Annual Return for last two financial years -
“inactive company”.
Liable under section 447
Not filed its Annual Return for two financial years - enter its
name in the Register of Dormant Companies.
Listed Entity means an entity whose designated securities are listed, on a recognised stock exchange(s), in accordance with the listing
agreement entered into between the entity and the recognised stock exchange(s).
Designated Securities includes the equity shares, convertible securities, non-convertible debt securities, nonconvertible redeemable
preference shares, perpetual debt instrument, perpetual non-cumulative preference shares, Indian depository receipts
Material subsidiary mean a subsidiary, whose income or net worth exceeds ten percent of the consolidated income or net worth respectively,
of the listed entity and its subsidiaries in the immediately preceding accounting year.
Net worth means the aggregate value of the paid-up share capital and all reserves, after deducting the aggregate value of the accumulated
losses, deferred expenditure and miscellaneous expenditure not written off, but does not include reserves created out of revaluation of assets
or amalgamation.
Exemption
1. The listed entity having paid up equity share capital not exceeding rupees ten crore and net worth not exceeding rupees 25 crore,
as on the last day of the previous financial year.
2. The listed entity which has listed its specified securities on the SME Exchange.
● Ensures that goals and objectives of the company are BENEFITS OF SECRETARIAL AUDIT TO
being achieved and company is updated with the latest developments in
STAKEHOLDERS:
business and the law governing the corporate entities
2. NON-EXECUTIVE/INDEPENDENT DIRECTORS
4. INVESTORS
5. OTHER STAKEHOLDERS
• Companies Act, 2013
• Securities Contract (Regulation) Act, 1956
• The Depositories Act, 1996 In terms of Form MR-3, the Secretarial
• Foreign Exchange Management Act, 1999
auditor needs to examine and report the
• Regulations and Guidelines prescribed under the Securities and
Exchange Board of India Act, 1992 (‘SEBI Act’) compliance of the following:
• ‘Other laws as may be applicable specifically to the company Secretarial
Auditor
COMPLIANCE UNDER COMPANIES ACT, 2013 Details of change in shareholding of the promoters and top ten
shareholders of the Company under Section 93.
Memorandum and Articles of Association
Details with respect to maintenance of cost records and appointment of
Forms filed with the Registrar of Companies with receipts.
cost auditor.
Index of Meetings held during the financial year.
Details of appointment of Auditor and Internal auditor.
Minutes of the Board, its Committees and of General meeting.
The list of Related Party Transactions.
Proof of Circulation of Notice and Agenda of Board meetings, Committee
Indebtedness Certificate signed by Company Secretary/ CFO of the
meetings and the General meeting.
Company.
Proof of circulation of Draft Minutes and Final Minutes of meeting of
Listing and Trading Approval(s) from Stock Exchanges.
Board and its committees.
Change of name of the company, change in the face value of the company,
Attendance Register of Board and committee meetings
new ISIN No. of the Company in respect of the allotment or as a result of
All statutory registers.
any change in capital structure due to any corporate action taken by the
Copy of financial statement along with notes to accounts and Auditor
Company during the financial year under audit.
Report.
Corporate Action Forms filed by the Company with Depositories.
Report of Internal Auditor.
Equity Shareholding pattern and its break up as at the close of the
Notices of annual and event based disclosure of directors’ interests.
financial year.
Copies of contracts made between the company and any of the related
Any orders received by the company from the High court/Tribunal or from
parties.
any other regulatory body.
Shareholder List, details of Share Transfers which have taken place
Compliance record under FEMA with respect to FDI, ECB and ODI as
during the financial year
applicable.
Copy of Share Transfer Deeds.
Copies of Shareholders and joint ventures agreement, if any.
Instruments creating, modifying or satisfying charges.
Copy of Declaration received from Independent Director u/s 149(7).
Forms relating to Disclosures from Directors.
Corporate Social Responsibility (CSR)
Certificate from RTA stating the number of shareholders as on the close of
Directors and Key Managerial Personnel (KMP)
the financial year.
Bank Statements relating to transfer of Dividend to separate bank
Certified true Board Resolution for any type of corporate actions taken by
account, proof of dispatch of dividend within 30 days of Dividend
the Company.
Advertisement/circular relating to Deposits; Credit rating certificate,
Details of the Holding and Subsidiary Companies
deposit insurance, if any
Complete details of Shares and Debentures issued during the year.
Such other documents as required for the purpose of audit
IDENTIFICATION AND COMPLIANCE The Secretarial Auditor may take note of various laws applicable to the
Company and should apply his own efforts to identify various other laws as
OF SPECIFIC APPLICABLE LAWS
may be applicable to the company
every company has to observe Secretarial Standards with respect to General and
Board meetings as specified by the Institute of Company Secretaries of India
(ICSI). The Secretarial Standard-1 is applicable to the Meetings of Board of
Directors of all companies incorporated under the Act and The Secretarial REPORTING ON THE
Standard-2 is applicable to all types of General Meetings of all companies CONSTITUTION OF THE BOARD
incorporated under the Act except.
The Secretarial Auditor shall verify that the company has followed the
applicable clause of the Secretarial Standards
The Secretarial Auditor shall verify that during the year the Board of Directors of
REPORTING ON COMPLIANCE
the Company is duly constituted with proportion of Executive Directors, Non-
WITH THE APPLICABLE CLAUSE Executive Directors, Independent Directors, and Women Director as required
OF SECRETARIAL STANDARDS under the applicable Laws, Rules & Regulations
REPORTING ON BOARD
The Secretarial Auditor shall verify that during the year adequate notice is
given to all directors at least seven days in advance. PROCESSES
The Company Secretary in Practice shall be liable for professional or other misconduct
mentioned in First or Second Schedule or in both the Schedules to the Company Secretaries
Act, 1980 and where held guilty, be liable for the following actions: Where found guilty of
professional or other misconduct mentioned in the First Schedule:
a) Reprimand;
b) Removal of name from the Register of members up to a period of three months;
c) Fine which may extend to one lakh rupees.
where found guilty of professional or other misconduct mentioned in the
Second Schedule:
a) Reprimand;
b) Removal of name from the Register of members permanently or such period as decided by
the Disciplinary Committee;
c) Fine which may extend to five lakh rupees.
CS MUSKAN GUPTA 9532064262 YES ACADEMY, PUNE 8888 235 235
CHAPTER 10
INTERNAL AUDIT
&
PERFORMANCE AUDIT
200 cr
100 cr
50 cr 100 cr
Turn over
Paid-up share Outstandin
capital 200 cr 25 cr
g loans and
borrowings
Outstandin
Outstanding g loans and
Turn over deposits borrowings
Reliability and
Review of Internal Integrity of Economical and
Control Systems Financial and Efficient Use of
and Procedure Operating Resources
Information.
SCOPE OF INTERNAL
AUDIT
Compliance with Accomplishment
Review of
Laws, Policies, Plans, of Established
Organizational
Procedure, and Goals for
Structure
Regulations Operations
Safeguarding of
Assets
Test Controls
Account Details
Report issues and challenges identified and make action
plans and solutions.
Keep follow-ups.
Detect errors and prevent frauds, Internal audit ensures effectiveness and efficiency of
internal control system
Not responsible with management’s primary responsibility of designing, implementing
INTERNAL CONTROL: and maintaining internal control.
Internal audit functions add value to an organization’s internal control system by
bringing a systematic, disciplined approach to the evaluation of risk and by making
recommendations to strengthen the effectiveness of risk management efforts.
RISK MANAGEMENT The risks fall under strategic, operational, financial reporting, and
legal/regulatory categories.
a. Whether the decisions are taken after following the decision-making process?
b. Whether such decisions meet the organisation objectives?
c. Whether such decisions are documented in a fair manner?
Provides assurance to the various stakeholders that all the required governance activities have been
accomplished by the organisation and it is conducting its business in a fair manner.
Helps the stakeholders to ensure that company is in compliance with all the governance norms and ethical
principles are incorporated in the management of the company.
Accountability:
a. Check there is separation of ownership and control.
b. Check whether executive management is accountable to Board.
CHECKLIST FOR AUDITING c. Check whether board is accountable to shareholders.
CORPORATE d. Check whether there is a board or audit committee policies.
GOVERNANCE e. Check whether the independent directors have powers to play their role effectively.
MECHANISM IN A f. Check whether sufficient number of meetings are held.
COMPANY g. Check whether the auditors of the company have full access to information and authority
to present their view points at board meetings.
CS MUSKAN GUPTA 9532064262
h. Check whether the company has made policies on bribery, fairness, privacy, related party
YES ACADEMY, PUNE 8888 235 235
transactions etc.
Transparency: Fairness:
a. Investors should be able to obtain a) Check whether all shareowners, including minorities are
information about the rights Any changes treated equitably.
in voting rights should be subject to b) Check whether there is defined procedure for effective
approval resolutions of violations.
b. Check whether there is a timely, accurate c) Check whether the company has pricing policy and fair market
disclosure on all material matters. practice code
c. Check whether the company has a policy
for making political contributions.
d. Check whether the company has insider Responsibility:
trading disclosure and compliance a) Check whether the company has policy on stakeholder’s
practices. rights and social responsibility.
e. Check whether shareholders are allowed b) Check whether the board’s responsibility includes review
to keep their views on the remuneration and guiding of corporate strategy, major plans of action,
policy for board members and key risk policy, annual budgets and business plans; setting
executives performance objectives etc.
Shareholder’s interest:
a) Check whether shareholders should have the right to participate in and be sufficiently informed on, decisions concerning
fundamental corporate changes such as:
i. amendments to the statutes, or articles of incorporation or similar governing documents of the company;
ii. the authorisation of additional shares; and
iii. extra-ordinary transactions, including the transfer of all or substantially all assets that in effect result in the sale of the
company
b) Check whether the capital structure which enable the shareholders to exercise control disproportionate to their holding, is
disclosed.
c) Check whether all shareholders have ownership rights.
d) Minority shareholders should be protected from actions of majority.
e) Members of the Board and key executives have to disclose their interest in the transaction.
f) Minority shareholders should be protected from abusive actions of majority shareholders and should have effective means of
redressal.
Contribution:
Schedule VII provides the list of activities which could be taken by the company as their CSR Activities.
Takeover audit is conducted to ensure compliance with Companies Act, 2013 and
SEBI (Substantial Acquisition of Shares and Takeover) Regulations, regarding
disclosures, offer price, pricing etc. Takeover audit includes:
CHECK POINTS
FOR VERIFICATION OF
COMPLIANCE UNDER THE SBI
(PROHIBITION OF INDISER TRADING)
REGULATIONS, 2015
Cyber audit is performed avoid cyber security risk. The objective of cyber audit is to assess the cyber security
policies and procedures, identify risk and report the same to the Board.
The scope of cyber audit includes:
1. Data security policies.
2. Data loss prevention measures deployed.
3. Detection/prevention systems deployed.
4. Security controls established.
5. Incident response program implemented.
Dimension of Risk Management: the objective of any risk assessment is twofold; firstly, to identify the level
the Cyber of risk and secondly to identify how the risk is required to be assessed. Thus, is important to
Security Audit have a proper process, competent cyber security resources and a governance framework to
Process: ensure that appropriate is mechanism is established to assess risk competently.
Internal Audit: Cyber Auditing is a security measure which is critical in protecting the enterprise in
today’s global digital economy. Internal auditor helps enterprises with the challenges of managing
cyber threats, by providing an objective evaluation of the controls and making recommendations to
improve them as well as assisting the senior management and the board of directors understand and
respond to cyber risks.
CS MUSKAN GUPTA 9532064262 YES ACADEMY, PUNE 8888 235 235
ENVIRONMENT AUDIT
Environment’ includes Water, air and land and the inter-relationship that exists between water,
air, land, human beings, plants and other living creatures.
Conducted to ensure that computer system ensures protection of data and maintains data integrity.
IFS is a complete examination of a targeted system.
SEBI has made it mandatory for stock broker who use algorithmic trading to conduct systems audit mandatorily
Management Controls:
Application Controls:
a. Security Policy and Standards
Whether each of the Computer Systems and
b. Constitution of Steering Committee
subsystems must have its own set of controls for
c. Business Continuity Planning
Inputs, processing & outputs
d. Systems Development Methodology
Organizational
Controls:
Whether the roles,
responsibilities and duties
of User Departments and
IT Department are defined
Operational Controls: Ensure adequate environmental controls:
1. Whether monitoring of physical assets are 1. Whether proper facilities of Air-conditioning (dust,
done in regular intervals temperature & humidity controls), Power
2. Any discrepancy in the data collected and the Conditioning are timely reviewed?
current data of physical assets are addressed 2. Whether the cable connections/electronic points
immediately or not? are functioning properly or not is reviewed on
regular intervals?
● Highly specialized, and the work requires detailed knowledge of fraud investigation techniques and the legal framework.
Forensic accountants are trained to look beyond the numbers and has necessary skills and experience to accept the work.
1. Whether the company has well defined policies for development of the society especially the poor and rural
people?
3. Whether the physical and financial gaps between needs and resources available for local development are
assessed on regular intervals?
4. Whether the voice of the stakeholders and poor people are considered?
TENDERING PROCESS
ONE TO ONE BASIS
A pre-bid meeting should be conducted with the
• The offer for the audit management to discuss prior year audit results,
engagement may be 1. Select auditee based on following risk and
understand business and environment, audit
initiated by the Auditee assessment:
process and determine nature and conflict of interest
or the auditor but it is etc.
necessary that the
engagement are a. Performance Risk – capacity, resources etc.
2. A technical bid will be submitted as per the
accepted by the requirements of the tender document of the
auditors. management.
b. Reputation Risk
Audit fee is the fee charged by the auditor to conduct audit. It depends upon several factors including:
1. Size of the organization
2. Nature of business
3. Internal Controls systems & Technology adopted
4. Scope of audit
5. Frequency of audit etc.
Audit fees
Fair reflection of the value of worked performed
Mentions in the Audit Engagement Letter – Quantum of fees, billing arrangement, terms of payment
It shall not be contingent
Auditor shall not pay or accept commission
As per Clause 2 of Schedule I of the Company Secretaries Act, 1980, a Company Secretary in Practice shall be
deemed to be guilty of professional misconduct, pays or agrees to pay directly or indirectly any share, commission
or brokerage in the fees or profits of his professional work to any person, other than a member of the Institute or a partner.
As per Clause 9 of Schedule I – deemed to be guilty if h charges or offers to charge, accepts or offers to accept
fees which are based on a percentage of profits or which are contingent upon the findings
The auditor to refrain from: The auditor shall intimate the previous auditor,
who was before taking up any audit engagement.
1. Disclosing information
Communication:
2. Using information for their personal advantage or the by a letter
advantage of third parties. by Registered Acknowledgement or
by courier or
3. He should also maintain confidentiality of by hand or
information disclosed by a prospective client or by an email
employer.
The Auditor shall wait for a period of 7 days from
4. He Should maintain confidentiality of information the date of communication before accepting the
within audit.
the firm or employing organization.
Incase information is provided by previous auditor
5. An auditor should take all reasonable steps to ensure and is useful take that into consideration and
that maintain confidentiality.
staff under the auditor’s control and respect the
auditor’s
duty of confidentiality.
Independence:
Section 141(3) - eligibility criteria for the appointment of
an auditor
Conflict of interest
Section 149(6)- the eligibility criteria of independence
In following cases, it shall be construed that the Auditor has
a substantial conflict of interest :
A combination of both of provisions may be considered
as the guiding criteria for the auditor’s independence. 1. Auditor holds more than 2% paid up share capital or
Following are certain examples where an auditor shall assume to shares of nominal value of Rs. 50,000
have interested in the auditee’s business or enterprise:
1. Holding any security or interest in the company or its 2. Auditor indebted to the Auditee for an amount exceeding
subsidiary, or of its holding or associate company or a Rs. 5,00,000
subsidiary of such holding company.
2. Indebtedness to the company, or its subsidiary, or of its 3. Indebtedness that may seriously impair the independence
holding or associate company or a subsidiary of such holding of the Auditor, irrespective of the amount
company.
3. Having business relationship (direct or indirect) with the 4. Auditor was in employment of the Auditee during
company, or its subsidiary, or of its holding or associate immediately preceding 2 years.
company or a subsidiary of such holding company.
4. Any relative of the auditor is a director or is in employment of
the company as a director or key managerial personnel.
5. Has given a guarantee or provided any security in connection
with the indebtedness of any third person to the company, or
its subsidiary, or of its holding or associate company or a
subsidiary of such holding company
Whether the
management is
in agreement to b) Development of internal control/systems/procedure to enable the
acknowledge preparation of secretarial/ nonfinancial statements which are free from
and material misstatement.
understands its
responsibility
relating to:
c) Providing access to all information of which management is aware that
is relevant to the preparation/ audit/review etc. of the secretarial/
nonfinancial statements.
The auditor should
check following:
1. Whether the
reporting framework
as required in the d) Providing additional information that the auditor may request from
preparation, management for the relevant purpose and,
performance of audit,
review of the
secretarial/ non-
financial statements is e) Providing unrestricted access to persons within the company from
acceptable; and
whom the auditor wants to obtain audit evidence.
LIMITS
CR + PRC
260th meeting 5 5 10
Indian
Independence Confidentiality
Skill and Cinema
Competence
Se
Before conducting audit, the auditor plans how the audit is to be conducted, to ensure
efficiency, effectiveness and completion of audit in a timely manner. The process of audit
planning should include the following elements:
9. Areas to be classified
1. The purpose and on “Risk” criteria to
objectives. allocate suitable
5. Check points resources.
activities.
10.Determining the extent
2. Legal framework of detailed examination
6. Allocation of work and coverage in terms of
under which the audit is
contents amongst the volume.
being conducted.
staff. 11.Evaluation of internal
controls and professional
3. Significant areas and 7. Time schedules for work carried out by other
issues involved. completion of various agencies / experts and
placing reliance thereon.
tasks/ phases.
12.Materiality
8. Determining timelines considerations and
4. Process and for submission of draft determining the
technique to be adopted. report, discussion threshold, therefore.
thereon with the auditee
and submission of final 13.Structure, contents
report. of the report.
CS MUSKAN GUPTA 9532064262 YES ACADEMY, PUNE 8888 235 235
1. The Audit should be planned in such manner that ensures the high quality of audit in
economic, efficient, and effective way and in a timely manner.
ESSENTIALS OF
AUDIT 2. The Audit plan should be documented and should be kept with the audit working
PLANNING: papers.
3. The elements of an audit plan may be similar for different auditee entities. However,
the actual contents may differ from auditee to auditee on the basis of nature, type &
objective of the audit.
For
A 4. The audit plan should be flexible enough to accommodate modifications which may be
successful necessary and should be carried out with the approval of team leader.
audit
plan 5. The Auditing staff should be made familiar of the quality control policies and
following procedures of the firm. The hierarchy, responsibility & authority for decision making
points needs to be clearly defined and understood by the audit staff.
should
be 6. The inter related steps and events should be clubbed together.
considered
By
the 7. The plan should be reviewed by an experienced auditor, who is not engaged in the
auditor: assignment. This helps in modification of audit plan and conduct audit efficiently.
CS MUSKAN GUPTA 9532064262 YES ACADEMY, PUNE 8888 235 235
SUBSTANTIVE CHECKING
SAMPLING
Evaluation of Evidence:
Selection of audit techniques
Once the evidence has been
depends upon the risk, internal
gathered from above mentioned
control system and reliability than
techniques, it is evaluated and
can be placed on the internal
material information is taken into
control system in the organisation.
consideration.
Interviews
• aims at exploring and giving an overview of a specific area or function, e.g.,
are
by asking for presentations of activities, explanations of formal or informal
conducted networks or interpretation of documents (reports, instructions or, budgets).
for Orientation: • Unstructured Approach
two
out
of
these
three • aims at more specific issues with a view to establishing new
purpose, information, often to be used as audit evidence.
but Examination: • More Structured Approach
it
Is
Never
conducted
for • it is conducted either after examination or orientation.
all • Needs a structured approach
the Confirmation:
three
purposes:
WORKING PAPERS:
The working papers may include:
1. Audit plan and programme.
Audit working papers are the 2. Internal control questionnaires
documents prepared or obtained by 3. Checklists prepared for collecting
the auditors and retained by him in evidence.
connection with the audit. 4. Notes and minutes resulting from
interviews.
5. Organizational data, such as charts
Audit working papers are used to
with job descriptions, process chart.
support the audit work done in order
6. Copies of important documents.
to provide assurance that the audit 7. Information about operating and
was performed in accordance with the financial policies.
applicable standards. 8. Results of control evaluations.
9. Analysis and test of transactions,
Working papers include all the processes.
evidence gathered by auditor 10. Results of analytical review
indicating what work has been done procedures.
by him and the procedure he has 11. Audit reports and management
followed in verifying a particular asset responses.
or a liability. 12. The audit conclusions reached.
1. General File:
General file provides almost all the Permanent audit file:
relevant information at one place. It Current audit file:
contains information which
provides key information about the contains all information relating
may be required in further
various phases of the audit to the current audit
audits
including planning (audit objectives,
planning comments including etc.),
reporting process, audit programs
and comments for the next audit.
2. Work paper File: WORKING PAPER REVIEW: Reviewing the audit procedures
Work paper file can direct the Audit and the referenced working
in right direction and may ensure Officer should always review the papers to ensure the working
the completion of work with in working papers to ensure that papers support the procedures
timelines. This file should contain proper standards have been performed and all procedures
the detailed audit procedures and followed, audit evidence supports have been completed.
audit conclusion and the Determine that the working
detailed audit working papers.
conclusions reached are valid. papers adequately document the
The review will consist of: conclusions reached in the
3. Future Audit Considerations: report.
Auditors are encouraged to develop Determining compliance with
working paper guidelines. Ensuring that all findings have
and document future audit ideas been discussed with the
during the course of their work. Reviewing the audit program
appropriate member of
These should be included in the that outlines the major management.
“Comments for next audit” section of objectives of the audit. Documenting review notes.
the general file. CS MUSKAN GUPTA 9532064262
IDENTIFICATION OF THE EVENT AND CORPORATE ACTIONS
While conducting audit, the auditor has to go through the 8. Corporate debt restructuring.
various filings with the statutory authorities and below 9. Reference to IBC, 2016 and winding-up petition filed by
mentioned events and information to see if they comply with any arty / creditors
the applicable laws: 10. Amendments to memorandum and articles of
1. Acquisition (including agreement to acquire), Scheme of association
Arrangement (amalgamation/ merger/ 11. Disruption of operations of any one or more units or
demerger/restructuring), or sale or disposal of any unit. division of the Company due to natural calamity
2. Issuance or forfeiture of securities, split or consolidation (earthquake, flood, fire etc.), force majeure or events such as
of shares, buyback of securities, re issue of forfeited strikes, lockouts etc.
securities etc. 12. Effect(s) arising out of change in the regulatory
3. Revision in Rating(s) framework applicable to the Company.
4. Agreements (shareholder’s agreements, Joint venture 13. Litigation / dispute / regulatory action.
agreements, impacting management and affairs of the 14. Granting, withdrawal, surrender, cancellation or
company), which are binding and not in normal course suspension of key licenses or regulatory approvals.
of business. 15. Any other information/event or major development
5. Fraud/defaults by promoter or key managerial personnel that is likely to affect business, e.g. emergence of new
or by Company. technologies, expiry of patents, any change of accounting
6. Fraud/defaults etc. by directors (other than key policy that may have a significant impact on the accounts,
managerial personnel) or employees of Company. etc.
7. Change in directors, key managerial personnel, auditors
and compliance officer.
The author should identify and report all the events or actions which may
have major effect on the affairs of the company. An event/action may be
considered as having major bearing on Company ‘s affairs in the following
situations:
1. Events/actions altering the Incorporation documents of the Company
2. Changes in the Capital structure of the company
3. Change in the affairs/management of the company
4. Change in the licensing or permission for the business operation of the
company
5. Capacity expansion and utilization of the company
6. Sale/ Disposing of the substantial assets of the company
7. Entering into Joint ventures agreements etc
Auditor should adhere to the following before While using the work of Third Party, the Auditor
forming an opinion from the third-party should:
reports or opinions: a. Consider the independence and objectivity of
the Third Party;
b. Take account of the Third Party’s professional
competence for the specific audit;
1. The auditor should indicate the fact that a third
c. Consider the scope of the Third Party’s work;
party opinion has been used and the
d. Determine the cost-effectiveness of using such
circumstances which indicated a need to obtain
work;
such opinion.
e. Perform procedures to obtain sufficient
appropriate Audit Evidence that the work of the
2. The auditor should clearly indicate if third party Third Party is adequate in the context of the
o opinion is provided by the auditee. specific audit (which may require access to the
Third Party’s working papers); and
f. Consider the significant findings of the other
Auditor when analysing and interpreting the results
3. The Auditor should consider the important
of that work. Where these findings are significant to
findfindings/observation of third party
the opinion, Auditor should discuss these findings
with the Third Party and consider whether it is
necessary to carry out additional audit testing him.
4. The Auditor should, if necessary and feasible,
g. When using the work of Third Party, Auditor
carry out an additional test to check reliability of
should carefully consider that, the Third Party may
the third-party report or opinion.
only recognise a duty of care to the addressee of the
CS MUSKAN GUPTA 9532064262
audit report. YES ACADEMY, PUNE 8888 235 235
EVALUATION OF AUDIT EVIDENCE AND FORMING OPINION
6. Photocopies are less reliable than the originals. Auditor should aim at
collecting the source of photocopies
CS MUSKAN GUPTA 9532064262 YES ACADEMY, PUNE 8888 235 235
SHARING DRAFT REPORT WITH MANAGEMENT WITH CATEGORY OF RISK INVOLVED WITH
EACH REMARK AND QUALIFICATION
After the exit meeting the auditor will prepare an executive summary which would indicate the audit
issues, the category of risk, their resolution and agreed adjustments. It should contain sufficient
information to provide summary of the evidence which supports audit team’s conclusion.
The executive summary should include:
f) a commentary on the
b) a summary of the regularly j) a summary of other
framework within which the accounting policies and
important matters for
auditee operates significant account areas
attention
c) an explanation of the audit k) outstanding matters, for
approach and the balance g) a summary of the result of example, outstanding
between test of controls and audit procedures reappointment orders or letter
authorising agreed amendment s
substantive procedures
to the financial statement
Non-financial Fraud:
Involves the inadequate
Financial & Accounting Fraud: disclosure by the Company to
the public or regulatory bodies,
Involves fraud relating to
false reporting of governance
financial statements of the
company. norms and doing business not
according to the regulatory
requirement
Sec 143
Central Government Audit Committee/Board of Director
Procedure Procedure
Auditor
Report the matter
Report the matter
Audit Committee/ Board
Board of Directors/Audit Committee
within 2 days
within 2 working days
Specifying:
seek reply within 45 days Nature of fraud with description
Approximate amount involved
along with comments Parties involved
Statutory Auditors
Branch Auditors appointed
appointed under section
under section 139
139
Cost Accountant in
PCS under section 204 practice under section
148
Internal Auditor or other professionals appointed are not covered under section 143 of the
Companies Act, 2013.
an act of trading in an
asset or conducting any
financial transaction with
an expectation of
substantial gain.
Fraud:
Non-Compliance:
Deceiving someone for
Refers to failure to
dishonestly obtaining a
comply with the laws,
benefit.
rules regulations etc.
Includes any intentional
or deliberate act to
May lead to fraud but a SUSPICION
compliant company can
deprive another’s
also be involved in the
property or money by
fraud.
deception or unfair
means.
Sec 204
Penalty 2 lakhs
1. On receipt of a report of the registrar under sec 208 Section 212 (1) - Central Govt. may assign the
investigation (a) on receipt of report of the Registrar
under section 208; on intimation of a special resolution
passed by a company
in public interest;
on the request of any Department of CG & SG
2. On intimation of a special resolution
On receiving information, SFIO may designate as
many inspectors as it wants.
QUALITY REVIEW
Meaning:
Self-improvement process
Method of evaluation of a person’s work or performance by a group of people in the same occupation,
profession, or industry.
Conducted to analyse the performance of the individuals and improve quality and standards.
OBJECTIVES OF PEER
REVIEW BENEFITS OF PEER REVIEW
Technical Standard 1. Provides comfort to the member that he has adhered to all required statutory,
and Proper Systems documentary and regulatory requirements.
Enhancement of 2. If deficiencies are noticed, then members will have the opportunity to correct their
Quality deficiencies and enhance their performance.
Peer review process 3. Certificate is issued to the members which may help in improving credibility
and expectations from
the members
b) been convicted by a Competent Court whether within or outside India, of an offence involving moral
turpitude and punishable with transportation or imprisonment;
Section 29 B: 1. Make recommendations to the Council about the quality of services required to be provided by the
Functions of Board members of the institute.
2. Review the quality of services provided by the members of the Institute including secretarial Audit.
3. Guide the members of the Institute to improve the quality of services.
Section 29 C: The Board shall meet at such time and place and follow in its meetings such procedure as may be
Procedure of Board specified.
Section 29 D:
Terms and conditions
of service of The expenditure of the Board shall be borne by the Council and the terms and conditions of service of
Chairperson and the Chairperson and the members of the Board, and their allowances shall be such as may be
members of Board and specified.
its expenditure
VALUES ETHICS
AND
PROFESSIONAL
CONDUCT
CS MUSKAN GUPTA 9532064262 YES ACADEMY, PUNE 8888 235 235
TYPES/BRANCHES OF ETHICS
Applied Ethics:
Descriptive Ethics:
Deals with the believe of Deals with the philosophical
the people. examination from moral
standpoint.
Meta Ethics or Analytical
Normative Ethics:
Ethics:
The study of what you
Basically a high abstract way
should or should not do.
of thinking about ethics.
Ethics: Values:
Provides the guidelines for conduct Principles and ideals which are necessary in making
Compels us to follow some action judgement about right or wrong.
Ethical practices are consistent Strongly influence the state of mind and act as
Helps us in deciding what is morally correct or motivators.
incorrect May differ from one person to another.
Determines to what extent our options are right or Tell us what we want to do or achieve in our life
wrong. Defines our priorities for life.
Be Accountable Be Ethical
Integrity
Quality of being honest and having strong moral principles. High Standard of service or professional competence:
It includes: Should be delivered throughout one’s working life, which includes:
acting professionally in your business dealings maintaining professional knowledge and skills which are required to
respecting others at all times perform the role which you are employed to carry out.
avoiding involvement in any unethical, misleading or illegal acting competently.
behaviour respecting the confidentiality of information acquired through
not accepting or offering improper gifts, hospitality or other professional relationships.
inducements communicating effectively and promptly with your clients,
displaying a proper understanding and appreciation of your role colleagues and stakeholders to ensure that they are able to make
and responsibilities informed decisions.
avoiding conflicts of interest, or, where a conflict arises, making Upholding requirement of laws.
sure that everyone involved is aware of the interest.
Professional Behaviour:
Transparency: Requires that members conform to the relevant laws of the jurisdiction
or following actions or inactions may result in disciplinary proceedings:
Requires that members are clear and open in their business a) Becoming bankrupt or insolvent
b) Failing to uphold the code of professional conduct and ethics
and professional conduct, which includes:
c) Disobeying any decisions of the Council or of one of its Divisional
a) Being open and frank in any business dealings
Committees
b) Treating all work as if it was reported in the public d) Breaking any of the Institute’s byelaws or Charter or Regulations
domain e) Failing to comply or co-operate with a disciplinary investigation
c) Not conducting any transaction secretly f) Failing to comply with a decision or any conditions made by a
Disciplinary or Appeal Tribunal
2. Members should at all times safeguard the interests 5. Members should ensure the currency of their
of their employers, colleagues or clients. knowledge, skills and technical competencies in
relation to their professional activities.
FUNDAMENTAL DUTIES OF
PROFESSIONAL
● Decision-making problem between two possible
moral imperatives where neither of them is
1. Fair dealing totally acceptable or preferable.
2. Confidentiality ● Also known as moral dilemma.
3. Conflicts ● An “absolute” or “pure” ethical dilemma only
4. Integrity of evidence occurs when two (or more) ethical standards
5. Anti-discrimination and apply to a situation but are in conflict with
harassment each other.
6. Inadvertent Disclosure
7. Mistakes of the solicitor
8. Client Documents
9. Dealing with the media ● Some examples of ethical dilemmas
10. Professional Opportunity include:
11. Undertakings A secretary discovers her boss has been
12. Dealing with other persons laundering money, and she must decide
whether or not to turn him in.
A doctor refuses to give a terminal patient
morphine, but the nurse can see the
patient is in agony.
CS MUSKAN GUPTA 9532064262 YES ACADEMY, PUNE 8888 235 235
HOW TO RESOLVE ETHICAL DILEMMA COMMON CAUSES OF LOSS OF
ETHICS AND VALUES
1) Unclear Policies
2) Conflict between organisational
When there is a right versus right dilemma, the and individual goals
situation can be resolved by finding the highest 3) Culture Value and background
right. 4) Dynamic and different human
There are three ways to make the best choice when nature
faced with these types of dilemmas: 5) Pressure from management
6) Conflicting Values
7) Ambition and Discrimination
Ends-based Care-based
Rule-based 1) Satisfaction
2) Ends not to justify the means
3) Ethical Leadership
4) Character
2. Diligence
a) Deal Breakers
b) Deal Diluters
c) Deal Cautioners
d) Deal Makers’
1. Pre-Diligence
a. Signing the Letter of Intent (LOI)
and the Non-Disclosure
3. Post Diligence
Agreement (NDA)
Result in rectification of non-compliances
b. Receipt of documents from the
company and review of the same found during the course of due diligence.
with the checklist of documents There can be interesting assignments
already supplied to the company. arising out of the diligence made by the
c. Identifying the issues. team of professionals.
d. Organising the papers required for
a diligence.
e. Creating a data room.
2. Technology Due Considers aspects such as current level of technology, company’s existing technology,
Diligence: further investments required etc.
Help organizations in the decision-making process when acquiring new technologies or
lines of business, or when they need a simple evaluation of how their current
technology is functioning.
● The agreement should be confidential and it should be used only for the purpose specified.
It will be considered as breach of agreement if such person gives access to the information to some
other person.
DUE DILIGENCE II
NON-
COMPLIANCES
UNDER 2. Depending on Cognizability:
● Cognizable offenses: are those in which police does not
COMPANIES require warrant for arrest. (Bailable)
ACT, 2013 ● Non-Cognizable offenses: are those in which police do
require a warrant for arrest. (Non Bailable)
COMPLAINT BY ROC
Essentially a compromise or arrangement between administrator of the enactment and person committing an
offense, to provide some consideration
Settlement/Compounding
Recovery
She has worked with esteemed lawyers and firms and has always
shown great interest in subjects like Crpc, CPC, Constitution of India
and Corporate Laws. She contributes to the legal fraternity by
running a project called “VAKAALAT” which is a venture to brighten up
the future of students pursuing law.
Office 30A, 1st Floor, Gate No. 1, Kumar Prestige Point, Behind BSNL Office, Bajirao Road, Shukrawar Peth, Pune - 411 002
8888 235 235, 8888 545 545, 8888 569 569, 8888 280 280 yesacademypune@gmail.com