Ethics & Confidentiality

Question 1

5 fundamental principles (IMPORTANT)

Answer 1

1. Integrity
   -> straightforward and honest in all professional behaviour and business relationships
2. Objectivity
   -> not to compromise professional or business judgements because of bias, conflict of interest or undue influence of others
3. Professional competence and due care
   -> keep professional skills up to date
   -> act diligently
4. Confidentiality
5. Professional behaviour
   -> comply with relevant laws and regulations
   -> keep up professional knowledge and skills to give compete at service

Question 2

Ethical threats (IMPORTANT)

Answer 2

-> situations that may damage the auditors independence

1. Self interest
   -may have a financial or other interest in the emitter and may not act with objectivity and independence
2. Self review
   -auditor reviews a judgement they have made themselves, threat to objectivity and independence
3. Advocacy
   -auditor is expected to defend or justify the position of the client and threatens objectivity and independence
4. Intimidation
   -auditor cants act independently due to being scared due to intimidatory threats
5. Familiarity
   -auditor and client may have a close relationship with

-> also management threats = informed management

Question 3

Where there are threats the auditor must

Answer 3

1. Eliminate the circumstance that creates the threat
2. Apply safeguards to reduce the threats to an acceptable level
3. Decline or end the specific professional activity

Question 4

Safeguards

Answer 4

-> seek to reduce or eliminate threats

1. Profession
   -education and training
   -setting of corporate governance regulations and professional standards
   -monitoring of professional work (disciplinary procedures)
2. Work environment
   -internal control system
   -review procedures
   -organisational codes of ethics and disciplinary procedures
   -rotating senior personnel
   -separate review and reporting for key engagement
3. Individual
   -comply with professional standards
   -maintaining records of contentious issues
   -mentoring
   -contacting professional bodies with queries

Question 5

Self interest safeguards

Answer 5

1. Lowballing = pre determined level of work. fees should not make a loss. Maintain records of time costs.
2. Close business relationship = joint venture with a client is self interest so should be avoided. Buying things in the normal way is fine.
3. Close family relationship = individual basis. If director or employee of audit has significant influence over the subject matter they should be removed
4. Parter on the client board = partner or employee of audit firm should not serve on the board of an audit client.
5. Gifts and hospitality = if trivial and inconsequential do not accept
6. Overdue fees = payment of overdue fees should be paid before the next audit report is signed. If don’t pay consider resigning
7. High % of fees to the firm (10% or 15%) = discuss with audit committee. Take steps to reduce dependency of client. Obtain internal and external quality reviews.

Question 6

Self review safeguards

Answer 6

1. Preparing accounting records and financial statements = use different staff from audit team, appropriate reviewer. Don’t make management decisions. Source data entries made by client. If listed client do not do it.
2. Valuation services = can’t carry out valuation services that have material impact on the financial statements or have subjective judgement
3. Taxation services = tax returns are okay. Tax planning okay if not cause material effect on financial statement. Different term for tax and audit
4. Internal audit services = providing internal audit services to an audit client is prohibited
5. Secondments = do not second staff to audit client
6. IT services = do not design, provide or implement it

Question 7

Advocacy safeguards

Answer 7

1. Forbids legal services to audited entity if materially affected financial statements
2. Different engagement teams with separate reporting lines for the provision of non assurance services to audit client
3. Disclosure to the audit committee
4. Withdraw if affects independence
5. No bank negotiations

Question 8

Intimidation safeguards

Answer 8

-> may only arise if assurance firm has something to loose

1. Litigation (client sues) = disclose to audit committee the nature and extent. Removed affected individuals from audit team. If real, resign from engagement
2. Assurance staff members move to employment with client = director of client in last two years then should resign.
3. Client acting contrary to laws or regulations or against professional or technical standards = obtain advice from professional advisor
4. Pressure from client to provide misleading info = consult with superiors at the client. Consult those charged with governance. Consult with relevancy professional body.

Question 9

Familiarity safeguards

Answer 9

1. Use different patterns/engagement teams with separate reporting lines for the provision of non assurance services to an audit client
2. Rotate senior staff
   -> audit partner consider rotating after 10 years and if remain then engagement quality reviews required
   -> public interest entities (PIE) audit partner rotate after 5 years (5 years gap)
3. Withdraw if needed
4. Should not provide recruitment services and no advising

Question 10

How to resolve ethical conflict

Answer 10

1. Should consider
   -relevant facts
   -relevant parties
   -ethical issues involved
   -fundamental principles related to the matter in question
   -established internal procedures
   -alternative course of action
2. Accountant should then consider which is the course of action that most alienates with the fundamental principles
3. Accountant cannot determine best course of action they should refer to relevant departments for advice
4. Better to come to conclusions in house but if need be can find help from professional body

Question 11

Confidentiality

Answer 11

-fundamental ethical principle
-greatest risk is accidental disclosure of info

Question 12

General data protection regulation (GDPR)

Answer 12

-> aims to give individuals control over their personal information

Question 13

Data protection act & GDPR

Answer 13

-must ensure that data is protected. Business processes should be built with privacy default and should store data anonymously
-individuals have the right to access both their personal data and information about how it is being processed
-personal data can only be held if there is a specific lawful reason to do so, or if individual has explicitly opted in to allow storage of data
-must notify the information commission office (ICO) to state they process date. Must be informed of any breaches and lasts 1 year
-1 person in charge of this called data controller
-not notifying after breaches is a criminal offence

Question 14

Safeguards to confidentiality

Answer 14

1. Greater risk of accidental disclosed
   - within business
   - outside of business
2. Should
   -not discuss client matters with any party outside accountancy firm
   -do not discuss in public space
   -do not leave files unattended
   -do not leave files in car or unsecured private residency
3. Confer with senior staff if have concern

Question 15

Disclosure of confidential info

Answer 15

Information acquired in the course of professional work should only be disclosed where
-consent has been obtained from client, employer or other proper source
-public duty to disclose
-legal or professional right or duty to disclose

Codes of ethics states only disclose when
1. Permitted by law and authorised by the client
2. Required by law
3. Professional duty