Nonprofit Governance: It’s Not Rocket Science Part 2 – Assure Compliance & Avoid Governance Traps

By David Goldstein, Esq.

Certilman Balin Adler & Hyman, LLP

Let’s start with this basic premise:  people join nonprofit boards because of their passion for the mission.  No one joins a nonprofit board to spend time and energy on nonprofit governance.  Nobody wants to become a governance geek!  Because of this basic mindset, nonprofit directors and officers are often surprised when they discover that the only way to protect the organization, its mission and its assets, the only way to fulfill their fiduciary duties under the law, and the only way to protect themselves from personal liability for breach of these fiduciary duties is careful and continuous attention to governance.  Bottom line:  as a director or officer of a nonprofit you have no choice but to become a governance geek, both for the good of the organization and for your own good.

To make matters worse, New York nonprofit law is chock full of requirements, some of them quite demanding, and some of them somewhat counterintuitive.  There are no shortcuts to evade these legal requirements, and the only way to comply is to keep governance in the spotlight and to implement governance requirements and procedures with careful attention to detail.  Here are some governance requirements that every nonprofit should be sure to follow.

Have An Annual Meeting.  New York law requires every nonprofit to have an annual meeting.  There are two requirements at the annual meeting:  the election of directors and the delivery of the annual financial report.  The election of directors is fundamental to nonprofit governance.  As one might imagine, deficient or improper election of directors calls into question the board’s composition and authority, and can, in turn, undermine the validity of board decisions and actions, with far-reaching negative consequences.  The law mandates that certain information be included in the annual financial report.  This is set forth in Sections 513 and 519 of the Not-for-Profit Corporation Law.  But the mandated financial information is not the end of it.  It is often the timeliness requirement for the annual financial report that trips up nonprofits, and this is most certainly a trap for the unwary.  The law requires that the financial information provided covers a twelve-month fiscal period ending not more than six months prior to the date of the annual meeting.  So, if your fiscal year ends December 31, your annual report would need to be delivered before the end of June.  Delivery of a complete, compliant and timely annual financial report is an essential component of New York nonprofit law’s model of financial reporting, transparency and governance.

New York Law Does Not Permit Email Voting.  Let me repeat that, because it is such a source of confusion for directors and officers.  New York law does NOT permit email voting!  The board can act in two ways under New York law.  One option is action at a meeting (including in-person, phone conference or video conference – depending on what your bylaws provide).  The other option is unanimous consent in lieu of a meeting (this can be unanimous written consent or unanimous email consent, again depending on what your bylaws provide).  But the key is that if the board is going to consent without a meeting, the consent must be unanimous.  19 out of 20 directors consenting is not sufficient.  I had this very fact pattern occur with the board of a national organization with 50 directors.  49 directors consented by email.  One director did not consent because he was in a coma.  The 49 consents were useless (because there was not unanimous consent, and because email voting is not permitted), so the board needed to call a special meeting to take the intended action.  These distinctions are anything but insignificant technicalities, because if the consent is not valid, the result is that the action is not authorized, and unauthorized actions can lead to all sorts of entanglements and potential liability, including personal liability for directors.

The law has mandatory requirements in the areas of meeting notice, quorum and voting thresholds.  Very often, bylaws are written in a way that violates these mandatory requirements.  So, you could be scrupulously following your bylaws, but nonetheless be violating the law.  Here too, violations are not harmless technical infractions.  Deficiencies in the areas of meeting notice, quorum and voting thresholds can lead to challenges to both the validity of meetings and the authority for the actions that were taken at those meetings, with potential personal liability of directors as an unfortunate consequence.

Committees are another area full of traps for the unwary.  There are two types of committees permitted under the law:  board committees and committees of the corporation.  Each board committee must have at least 3 directors.  Non-directors cannot be voting members of board committees.  Board committees can possess certain aspects of board authority, which are formally delegated to the committee by the full board.  But there are certain aspects of board authority and functioning that the law does not allow to be delegated to a committee.  And there are specific statutory provisions that apply to, and govern, certain board committees (principally, the Executive Committee and the Audit Committee).  Committees of the corporation, on the other hand, cannot be delegated any board authority, and cannot bind the corporation.  Committees of the corporation can play a strictly advisory role.  As a result of this more limited role, non-board members (as well as board members) may serve on committees of the corporation, and there is no minimum number of members for a committee of the corporation.  In the area of committees, too, missteps can have serious consequences, and can lead to the undermining of decisions and actions, and potential personal liability of directors.

Nothing listed above is rocket science.  So then, why do we see governance deficiencies in these areas cited over and over in regulatory actions against nonprofit directors and officers, and also in litigations by private litigants against nonprofit directors and officers?  Careful attention to detail can eliminate these exposures before they happen.  “An ounce of prevention is worth a pound of cure!”  Nonprofits owe nothing less to the organization and its mission, to those that they serve, and to the directors and officers whose service is so vital to the advancement of the organization’s good and essential work.

About the Author

David Goldstein is the founding partner of the Nonprofit/Tax Exempt/Religious Organizations Practice Group at Certilman Balin Adler & Hyman, LLP.  He is the Chair of the Not‑For‑Profit Corporations Law Committee of the New York State Bar Association’s Business Law Section.  Mr. Goldstein represents a broad range of international, national, regional and local not-for-profit entities across a wide variety of nonprofit sectors.  You can reach David at dgoldstein@certilmanbalin.com or (516) 296-7811.

The information contained in this edition of Nonprofit Legal Currents has been prepared by Certilman Balin Adler & Hyman, LLP for general informational purposes only and is not intended and should not be considered to be legal advice or a legal opinion.  Readers should seek the advice of legal counsel on any specific matter.  Transmission or receipt of this edition of Nonprofit Legal Currents does not constitute nor create an attorney-client relationship.  Please note that we do not undertake to update this edition of Nonprofit Legal Currents after its publication to reflect subsequent developments.

Audit Committee Bootcamp Wrap Up

bootcamp

In the fall of 2020, we presented a three-part webinar series, Audit Committee Bootcamp. We created this webinar series to bring important information about the audit committee and its roles and responsibilities to light. The information we shared was broken out in the following topics: roles and responsibilities of the audit committee; the committee’s role in the audit process; and internal communication and understanding risk. Here is a summary of the information presented at each webinar.

ROLES AND RESPONSIBILITIES OF THE AUDIT COMMITTEE

  • The audit committee is a committee of the Board. Its members, all independent of the organization, typically include those that understand financial statements that are prepared in accordance with accepted accounting principles, the financial statement audit process, and the organization’s internal controls.
  • An important purpose of the audit committee is to evaluate the internal and external risks of the organization.
  • The audit committee should meet with the board of directors, external auditors, and if the organization has these functions/requirements: internal auditors and corporate/Medicaid compliance officer/quality assurance officer.
  • The audit committee reviews and approves the organization’s audited financial statements, auditor’s findings, reports from government audits and its funding sources, and its annual IRS Form 990 and applicable state returns. If the organization has a pension plan, the audit committee should also review the pension to make sure it is properly being benchmarked on a periodic basis.
  • The audit committee will meet periodically throughout the year and minutes must be maintained for all meetings held.

THE AUDIT COMMITTEE’S ROLE IN THE AUDIT PROCESS

  • Audit Committee members play an important role in the selection of the organization’s external auditor.
  • The audit committee will prepare a request for proposal to send out to various CPA Firms, including the organization’s existing external audit firm.
  • There are many factors to consider when selecting an audit firm. Does the firm have experience working with other organizations in the same industry? The firm should provide references to organizations that are comparable to your organization. COVID-19 brought a change in how audits are performed. Is the firm’s use of technology appropriate for remote working and secure for sharing of sensitive audit documents? Other than performing the audit, is the auditor available to answer questions throughout the year? Do they provide resources for accounting and industry updates? Other factors to consider are staffing patterns, will the partner and manager have significant involvement in the audit; demeanor and communication style, responsiveness to emails, deadline awareness, flexibility of the auditor to work with you with respect to audit adjustments and findings; fees and extra billing, how does the firm budget for annual increases and will they bill for additional time spent above the quoted audit fee. Price is an important factor for many organizations; however, audit quality should be in line with the price of the audit. Lastly, the audit firm’s most recent peer review report should be reviewed.
  • Based on the previously noted factors, the audit committee should develop a scorecard to compare the type of factors that are most important in the decision of the audit firm.
  • Once the audit firm is selected, the audit committee will review the engagement letter to ensure understanding of management and the auditor’s responsibilities.
  • The audit committee will meet with the auditors before and after the audit, approve the audited financial statements and audit findings, if any, and present to the full board of directors.

INTERNAL COMMUNICATION AND UNDERSTANDING RISK

  • The audit committee interacts with the Board of directors, management of the organization, internal and external auditors.
  • There is a purpose for the audit committee’s communication with each of these groups. The discussions with the board of directors are for the plans and results of internal and external audits; results of risk management; internal controls; board policies and compliance with annual return filings. The audit committee will discuss with organization management, any changes to internal controls and risk management reviews. Communication with the internal auditors over risk assessments and audit tests will help the audit committee in its risk management process.
  • The audit committee’s risk management includes its assessment on several factors that can have a significant impact on the organization. The audit committee being aware of these factors can help to ensure the organization reduces its exposure to risk of non-compliance with laws and regulations, as well as the risk of significant audit findings from both its external auditors and if applicable, audit findings from its funding sources. Some factors include having the required board policies, proper internal controls, compliance with funding source contracts, compliance with annual filing requirements (i.e. 990 and audited financial statements to the NYS Charities Bureau), reviewing and understanding the finances of the organization, compliance with regulations surrounding human resources, and ensuring there are proper information technology policies and security in place.

Each of these webinars and materials are available on our website. Please share them with your audit committee. We also provided an audit committee self-assessment guide. We recommend reading this over and performing your own self-assessment to ensure the audit committee is functioning in the manner it was designed and that best fits the organization.

This article was also featured in our newsletter NFP Advisor Vol. 23

Tania Quigley, CPA
TANIA QUIGLEY, CPA | Partner

Tania Quigley has been a member of Cerini & Associates’ audit and consulting practice area for ten years where she focuses on serving the firms nonprofit and employee benefit plan clientele. Tania has experience in performing financial statement audits and reviews, tax return preparation, cost report preparation and filing, retirement plan audits, and other consulting. Tania brings her expertise, diversified background, and helpful approach to all of her engagements.

Nonprofit Spotlight: BoardStrong

BoardStrong

Are you a nonprofit looking for new board members? An individual seeking a position on a board? This March BoardStrong (formerly Governance Matters) is launching a powerful websitea comprehensive board building solution that provides board recruitment and education, and board development services. The heart of the new site is a digital board education and matching site that enables individuals and nonprofits to search for each other. The site will go live on March 1st, and BoardStrong welcomes all to sign up and explore. Organizations and individuals who were signed up on BoardStrong’s older sites – charitySTRONG and boardnetUSA will find that they already have profiles in the new site. They need to register with the same email they signed up for to access their information. BoardStrong also offers high-touch, personalized board placements, and a team of expert board trainers and facilitators all brought together under the new BoardStrong brand. Learn more at boardstrong.org.