University of Virginia | ICQ: Print Form

Internal Controls Questionnaire

Review as of June 15, 2009

Office of the University Comptroller
P.O. Box 400194
Carruthers Hall
Charlottesville, VA 22904-4194
fax: 434-982-2315

ID:

User Name:

Receipt Date:

Department Name:

Department Address:

Contact Person:

Contact Phone:

Contact Email:

@virginia.edu

Oracle Org. #:

Yes	No
		Corrective Action Schedules will be submitted.

Department Head's Name:

Department Head's Email: @virginia.edu

Department Head's Signature:

Section 1: Basic Financial Management

Yes	No	N/A	1.1 As department head, I have read University Financial Policy I.A.1 on internal controls and I understand my responsibility for ensuring that business activities of the unit are conducted in a manner consistent with good internal control, such as maintaining the separation of duties, and accordance with applicable Federal, State, and University regulations.

Yes	No	N/A	1.2 Employees assigned to the department's fiscal and administrative duties have received the necessary training to satisfactorily accomplish their assigned duties, including attending all appropriate classes for the Integrated System and the Business Professionals Development Program (BPDP).

Yes	No	N/A	1.3 Employees assigned to the department's fiscal and administrative duties are adhering to the responsibilities stated in the Integrated System Responsibility Acknowledgment and Agreement.

Yes	No	N/A	1.4 Employees assigned to the department's fiscal and administrative duties have access to, and refer to, the following University reference materials, as appropriate. All appropriate personnel are aware of these resources and periodically review them for changes. UVA Policy Directory Financial and Administrative Policies Financial and Administrative Procedures Human Resources Policies and Procedures Health System Policies Faculty Handbook Integrated System Procedures University Computing Policies Code of Ethics

Yes	No	N/A	1.5 The department provides proper security and storage for all original documentation retained in the department in accordance with University Policy II.C.1.

Yes	No	N/A	1.6 Employees assigned to the department's administrative duties are aware that all public records must be retained and/or destroyed in accordance with Federal and State requirements and University Policies II.C.1 and IRM-004 as directed by the University Records Officer, and are familiar with the services provided by the University Records Management Office.

Yes	No	N/A	1.7 The department provides appropriate cross-training and internal procedures documentation so that all critical job duties can be performed in the absence of key individuals.

Yes	No	N/A	1.8 The department reviews and reconciles the Integrated System activity reports to departmental records by the 10th working day of each month, in compliance with University Policy II.B.2. If "No," the department will submit an alternate schedule based on criteria detailed in University Policy II.B.2 for review by the University Comptroller and the Director of Audits.

Yes	No	N/A	1.9 Someone with knowledge of and responsibility for a project or award, other than the preparer, reviews and signs any reconciliation on a timely basis (by the 10th working day, unless on an approved alternate schedule) as required in the University Policies I.A.1 and II.B.2.

Yes	No	N/A	1.10 Employees assigned to the department's fiscal and administrative duties know to immediately report any suspected fraudulent transaction to BOTH the University Police and the University Audit Department as required in University Policy GOV-002.

Yes	No	N/A	1.11 Employees assigned to the department's fiscal and administrative duties know to immediately report any loss or occurrence that could be filed as an insurance claim to the Office of Risk Management as required in University Policy FIN-006.

Yes	No	N/A	1.12 Employees assigned to the department's fiscal and administrative duties that prepare or execute contracts in the name of the University are familiar with, and adhere to, the provisions in University Policies VII.R.1 and VII.R.2.

Yes	No	N/A	1.13 Upon receipt of a request for University records or information from an outside source, employees assigned to the department's fiscal and administrative duties know to notify the office of Office of Public Affairs and to process the request in accordance with University Policy XV.C.1.

Yes	No	N/A	1.14 Employees assigned to the department's fiscal and administrative duties know to report potential conflict of interest situations to the Assistant Vice President for Finance and University Comptroller in accordance with University Policy XV.A.1.

Yes	No	N/A	1.15 Employees assigned to the department's fiscal and administrative duties know that all on-grounds student fund-raising projects must be approved in writing by the respective dean, department head, or designee as required by University Policy I.H.1.

Yes	No	N/A	1.16 Employees assigned to the department's fiscal and administrative duties know that all services and activities offered on behalf of the University must be consistent with the mission of the University and must not compete unfairly with the private sector as stipulated in University Policy XV.G.3.

Yes	No	N/A	1.17 Employees assigned to the department's fiscal and administrative duties know that any items carrying the University's trademarked logos which are produced and offered for sale must conform to the guidelines and restrictions stipulated in University Policy XV.G.5.

Yes	No	N/A	1.18 The department has a current business continuity plan which has been communicated to its employees and addresses issues such as fire, water damage, etc. A printed copy is filed in the department and a backup copy is kept in an off-site location. See the University's Critical Incident Management Plan.

Yes	No	N/A	1.19 The department adheres to University policies and procedures for internal controls as directed in Policy I.A.1, Section 2.7. Any processes which must be altered for business reasons are required to have the appropriate documentation completed, including written approval by the University Comptroller and the Director of Audits.

Yes	No	N/A	1.20 Departmental employees are familiar with the terms of all agreements between University Treasury Operations and UVA Departments and comply with the terms of these agreements.

Section 2: Financial Management: Handling of Cash

Yes	No	N/A	2.1 All cash receipts (currency or checks) are deposited into a University bank account, as required by the Commonwealth's cash management guidelines and University Policy II.E.4 and. If no, list bank name and account number in popup window.

Yes	No	N/A	2.2 Responsibility for cash receipts is fixed from the time the funds are received until sent to the bank or taken to the Cashier's Office (i.e., adequate accountability exists to identify who is responsible for cash at any given time) in accordance with University Policy II.E.4.

Yes	No	N/A	2.3 All checks received by the department are restrictively endorsed immediately after receipt as specified in University Procedure 5-8.

Yes	No	N/A	2.4 Accountability over all cash receipts is ensured by using at least one of the following: check logs, cash registers or pre-numbered receipts in accordance with University Policy II.E.4.

Yes	No	N/A	2.5 If receipts are used in departmental cash transactions, voided receipts are maintained and reviewed by someone other than the person collecting cash in accordance with University Policy II.E.4.

Yes	No	N/A	2.6 All employees assigned cashiering duties understand that all cash receipts (currency or checks) must be deposited into a University bank account within 24 hours if greater than $200 or weekly if total receipts are $200 or less as required by the Commonwealth's cash management guidelines and University Policy II.E.4.

Yes	No	N/A	2.7 For departments that take deposits directly to the bank, entries are recorded into the Integrated System General Ledger the same day that the deposit is made to the bank and the deposit clearing account project is reconciled at least monthly to identify potential bank problems.

Yes	No	N/A	2.8 Accountability over cash transactions is ensured by having at least two persons involved in performing the duties of cash collection, accounts receivable record keeping, and account reconciliation, unless an explanation of special circumstances is attached for review and approval by the University Comptroller.

Yes	No	N/A	2.9 Only employees with cashiering responsibilities have access to a secure cash storage container and know that any un-deposited cash items must be properly secured and stored prior to deposit, as required by the Commonwealth's cash management guidelines and University Policies II.E.4 and V.B.1.

Yes	No	N/A	2.10 If the department accepts credit cards (over the web or through a point-of-sale terminal), the activity has been approved and a unique merchant number has been issued by the Office of the Comptroller for each web or terminal application as stipulated in the University's Credit Card Requirements guidelines.

Yes	No	N/A	2.11 If the department accepts credit cards (over the web or through a point-of-sale terminal), any credit card numbers collected are stored, protected, and destroyed in accordance with University Policy I.A.1 and the University's Credit Card Requirements guidelines (contact Banking Services).

Yes	No	N/A	2.12 For departments that accept credit card payments, the related accounting entries are recorded into the Integrated System General Ledger no later than the day after the credit card batch transmission is reflected on the credit card network as stipulated in the University's Credit Card Requirements guidelines.

Yes	No	N/A	2.13 For departments accepting credit cards, their credit card clearing projects are reconciled at least monthly to identify potential bank problems as stipulated in the University's Credit Card Requirements guidelines.

Yes	No	N/A	2.14 Departments that use a software product to accept, process, transfer, or store payment card data have been approved by the Office of the Comptroller and are responsible for providing documentation that the software products are PCI-DSS compliant (the payment application is validated by the PCI Council through the PA-DSS).

Yes	No	N/A	2.15 For Departments that accept credit card payments, all processes and procedures support and comply with PCI-DSS Standards and are supported by a completed questionnaire that is filed annually with the Office of the Comptroller as stipulated in the University's Credit Card Requirements guidelines.

Yes	No	N/A	2.16 The department has been authorized by the University Comptroller to engage in an activity, by agreement or contract, with an external vendor or organization that processes payment card data (such as Visa, AMEX, etc.) on the department's behalf. Examples could include organizations that handle application fees, transcript services, ticket sales, conference registration, etc. and remit funds/revenue to the department.

Section 3: Financial Management: Internal Billings

Yes	No	N/A	3.1 If the department engages in a revenue generating activity, the activity has been approved by the appropriate Dean or Vice President and then by the University Comptroller in accordance with University Policies XV.G.3 and V.A.1, and an appropriate Sales and Services Award and Project have been established as stipulated in University Procedure 15-70.

Yes	No	N/A	3.2 All such revenues/recoveries come only from other University or Medical Center departments or approved external entities.

Yes	No	N/A	3.3 All billable services are properly documented, promptly billed at approved rates, and reconciled to receipts on a consistent and timely basis as stipulated in University Policy VI.A.6.

;

Yes	No	N/A	3.4 If the department engages in a revenue generating activity, the activity is managed so that it operates on a breakeven basis over a two year period.

Yes	No	N/A	3.5 The rates charged to users are set at a level which will recover all allowable costs. Any over/under-recovery from prior years is factored into updated or revised rate calculations.

Yes	No	N/A	3.6 All delinquent accounts are referred to Student Financial Services or Accounting Services for collections efforts as stipulated in University Policy V.B.2.

Yes	No	N/A	3.7 Procedures are established for the time of billing of external customers and for collecting of slow-paying accounts as stipulated in University Policy V.B.2.

Yes	No	N/A	3.8 Virginia Sales Tax is collected, reported, and remitted when a sale is subject to the Virginia Sales Tax as described in University Policy V.A.3.

Yes	No	N/A	3.9 If the revenue generating activity generates unrelated business income as described in University Policy XV.G.4, such income is reported to the University's Director of Tax Compliance & Operational Contracts.

Section 4: Financial Management: Petty Cash

Yes	No	N/A	4.1 All petty cash accounts and change funds have been approved and established by the Comptroller's Office as stipulated in University Policy II.E.2.

Yes	No	N/A	4.2 Petty cash funds are used ONLY for University transactions as stipulated in University Policy II.E.2.

Yes	No	N/A	4.3 Petty cash funds (cash or checking account) are reimbursed at least every 30 days and at fiscal year-end as stipulated in University Policy II.E.2.

Yes	No	N/A	4.4 Accounting Services has approved all departmental checking accounts and all other Bank accounts/relationships as stipulated in Financial Policy II.E.1.

Yes	No	N/A	4.5 Petty cash funds (cash and checking accounts) are reconciled at least monthly as stipulated in University Policy II.E.2.

Yes	No	N/A	4.6 Change funds (cash drawers) are verified at the end of the day by two different people as stipulated in University Policy II.E.4.

Yes	No	N/A	4.7 Petty cash funds (currency or checks) are stored in a secure physical location with access limited to only the minimum necessary number of authorized employees as stipulated in University Policy II.E.4.

Section 5: Financial Management: Procurement

Yes	No	N/A	5.1 All expenditures of University funds are reasonable, necessary, directly related to the goals and mission of the University, and in compliance with applicable state, federal, University, and where applicable, donor regulations, as stipulated in University Policies VI.F.1 and VI.F.2, and the department can document and justify its expenditures if necessary.

Yes	No	N/A	5.2 The same person approving the purchase does not also process the receiver, unless under special circumstances outlined in a separate letter/memo attached explaining the situation, as stipulated in University Policy VI.H.1.

Yes	No	N/A	5.3 Receiving information is recorded in the University's Integrated System, in a timely manner, for the amount of the goods/services actually received, as stipulated in University Policy VI.H.1.

Yes	No	N/A	5.4 The department maintains sufficient documentation to support charges to its projects as stipulated in University Policy II.B.2.

Yes	No	N/A	5.5 If the department uses the University Procurement Card, cardholders and their supervisors and/or reviewers of cardholder documentation have met the requirement for annual purchasing card training.

Yes	No	N/A	5.6 If the department uses the University Procurement Card, a log is kept as an auditable record of purchases made and the card's statements are reconciled monthly as stipulated in University Policy VII.C.3.

Yes	No	N/A	5.7 If the department uses the University Procurement Card, the supervisors of all UVA purchasing cardholders conduct an annual review of cardholder limits and document the analysis, in writing for audit review, and provide any necessary changes in limits to the UVA Purchasing Card Administrator.

Yes	No	N/A	5.8 Employees assigned to the department's fiscal and administrative duties know that vendor refunds and other credits received in the department must be taken to the University Cashier's Office to be processed as an Expenditure Credit as stipulated in University Policy V.B.3.

Yes	No	N/A	5.9 Long distance phone bills are reviewed monthly by the owner of the Forced Authorization Code, and approved by their supervisor, to identify and resolve erroneous long distance charges as stipulated in University Policy IRM-005.

Yes	No	N/A	5.10 Transactions placed in OTPS Suspense are redistributed to the correct PTA combination on a monthly basis.

Yes	No	N/A	5.11 Employees assigned to the department's fiscal and administrative duties know that someone with knowledge of, and responsibility for, approving reimbursements to employees (including University sponsored travel) is signing off on all reimbursements, and is assuring that expenses paid by an external entity have been received and reimbursement requests have been appropriately adjusted for expenditures covered by external entities, including University foundations, as stipulated in University Policy VI.G.1.

Yes	No	N/A	5.12 Employees assigned to the department's fiscal and administrative duties know that someone with knowledge of, and responsibility for, approving University sponsored travel is signing off on all travel reimbursements.

Yes	No	N/A	5.13 For all non-contract purchases less than $5,000, our department obtains at least one quote from a DMBE-Certified Minority- or Woman-owned (DMBE M/W) vendor, unless one cannot be found.

Section 6: Financial Management: Gifts

Yes	No	N/A	6.1 Employees assigned to the department's fiscal and administrative duties know to promptly notify the Office of University Development when gifts are received, as stipulated in University Policy IX.A.2.

Yes	No	N/A	6.2 Employees assigned to the department's fiscal and administrative duties know to promptly notify the Office of University Development and the University Investment Management Company (UVIMCO) when gifts of securities are received as stipulated in University Policy FIN-018.

Section 7: Financial Management: Tax

Yes	No	N/A	7.1 Employees awarding scholarships and fellowships are aware of their responsibility to complete the "Fellowship Disclosure Form/Questionnaire" required in University Policy IV.G.3.

Yes	No	N/A	7.2 Employees awarding scholarships and fellowships are aware of their responsibility to inform award recipients of possible tax implications related to those awards as stipulated in University Policy IV.G.3.

Yes	No	N/A	7.3 If the department has revenues from a revenue generating activity from outside (non-UVA) sources, the activity has been reviewed by the University's Director of Tax Compliance & Operational Contracts as specified in University Policy V.A.1.

Yes	No	N/A	7.4 Employees assigned to posting revenue amounts have examined the source of the revenue to determine if the revenue is being generated from outside (non-UVA) sources as specified in University Policy V.A.1.

Yes	No	N/A	7.5 If the department had unrelated business income tax allocated to them in past years, the current year's unrelated business income source has been examined and a summary been given to the University's Director of Tax Compliance & Operational Contracts.

Yes	No	N/A	7.6 Virginia Sales Tax has been collected, reported, and remitted when a sale is subject to the Virginia Sales Tax (University Policy V.A.3), except for sales of the following: Textbooks sold to University students & faculty, and Retail sales of meals to students or others, if the price of the meals is included in room, board, or tuition charges or fees.

Yes	No	N/A	7.7 Virginia Sales Tax has been paid or submitted to Accounting Services on goods purchased by the University only when: Goods are purchased for non-University use, whether or not University funds are used, Employee purchases of meals or lodging, whether or not on official purchase orders, and The purchase of tangible personal property to be sold through vending machines.

Yes	No	N/A	7.8 Payments made to persons for services performed in excess of $600 (including payments made from petty cash) for any calendar year have been reported to Procurement Services for possible issuances of an IRS Form 1099. Payments may include honoraria, payments for human subjects, gifts, etc.

Yes	No	N/A	7.9 All new management contracts, leases, and revenue generating activities are reviewed for potential tax consequences to debt issued by or for the University.

Section 8: Financial Management: Sponsored Programs

Yes	No	N/A	8.1 Employees responsible for the completion and certification of effort reports understand their roles in the process in accordance with University Procedure 8-31 .

Yes	No	N/A	8.2 Employees responsible for the management of Federal and Federal flow-through sponsored programs understand proper cost accounting (consistency, allocation, allowability, and reasonableness) in accordance with the Cost Accounting Standards (CAS) Guidelines.

Yes	No	N/A	8.3 Employees responsible for the review and approval of project expenditures understand their roles in the process and comply with University Procedure 1-4A.

Yes	No	N/A	8.4 Employees responsible for the fiscal administration of sponsored programs understand how to properly address cost overruns in accordance with University Procedure 8-30.

Yes	No	N/A	8.5 Employees responsible for the fiscal administration of sponsored programs understand how to properly process cost transfers and labor distribution adjustments in accordance with University Procedures 8-20, 8-21, and 8-22.

Section 9: Financial Management: Asset Management

Yes	No	N/A	9.1 The department's resources (personnel, space, and equipment both on and off grounds) are used solely to promote the University's primary mission as stipulated in University Policies XV.G.1 and XV.G.2.

Yes	No	N/A	9.2 Employees assigned to the department's fiscal and administrative duties know to dispose of surplus property through Procurement Services as stipulated in University Policy X.F.1. Electronic devices or media are being surplused as stipulated in University Policy IRM-015.

Yes	No	N/A	9.3 Employees assigned to the department's fiscal and administrative duties are aware that they must notify the Fixed Assets Accounting unit within Financial Administration when equipment is obtained without using a purchase order, or equipment is transferred (e.g. location changes or employee departs), or equipment is disposed of or retired as stipulated in University Policy X.A.1.

Yes	No	N/A	9.4 Employees who have been given the authority to make or place purchases (via requisitions/purchase orders/procurement card/credit card/etc.) have received the required Procurement training for processing these transactions. In addition, these employees understand the proper use of expenditure types (i.e. capital equipment threshold is $5000 per item for "Eq-Capital XXX" expenditure types for non-ETF items) as stipulated in University Policy X.A.1 and University Procedure 6-40.

Yes	No	N/A	9.5 Each Chair, Dean, and Primary Investigator (PI) recognizes their responsibilities and accountability over University-owned capital equipment or sponsor-owned equipment within their respective organizations, and provides oversight and support as needed for the periodic inventories required to be performed by the Fixed Assets Accounting group as stipulated in University Policy VIII.E.4.

Yes	No	N/A	9.6 Each Chair, Dean, and Primary Investigator (PI) understands that there may be general or specific restrictions on their awards/grants/contracts requiring them to first seek Office of Sponsored Programs (OSP) review/approval before transferring equipment to another institution as stipulated in University Policies VIII.E.1 and VIII.E.5. In addition, the department understands that it must process the required P1 Request form through the Fixed Assets Accounting group BEFORE transferring equipment as stipulated in University Policy X.A.1.

Yes	No	N/A	9.7 The department disposes of surplus software and its documentation in accordance with the license agreement, as stipulated in University Policy XV.F.9. (Note: software upgrades are an extension of the original license and must be treated accordingly.)

Yes	No	N/A	9.8 Assets belonging to the department are properly safeguarded, with access restricted only to those properly authorized, as stipulated in University Policy I.A.1.

Yes	No	N/A	9.9 The department completes the process outlined in the University's Information Technology Security Risk Management Program at least once every three years, when there are significant changes to departmental IT assets or when there are significant changes to the risk environment, as stipulated in University Policy IRM-003.

Section 10: Decorative Art

Yes	No	N/A	10.1 If the department owns or houses any fine or decorative art items (paintings, sculptures, antiques, etc.), employees assigned to the department's fiscal and administrative duties are aware of their responsibilities under University Policy X.E.2. This includes notifying the Fixed Assets Accounting section of receipt of decorative art items.

Yes	No	N/A	10.2 The department has a current inventory listing of any fine or decorative art items and their location (building, floor, room).

			10.3 The department has acquired fine or decorative art items by means of: Purchase, Donation, or Other. (Use N/A for None.)

			10.4 The department has received fine or decorative art items within the past 18 months: Monthly, Semi-Annually, Annually, or Other. (Use N/A for None.)

Yes	No	N/A	10.5 Employees assigned to the department's fiscal and administrative duties are aware that when gifts/donations of fine or decorative art items are received, a deed of gift is executed with the donor through the Development Office, as stipulated in University Policy IX.A.4.

Section 11: Personnel Management

Yes	No	N/A	11.1 The duties of adding new employees to the payroll and of approving new hires are assigned to different employees.

Yes	No	N/A	11.2 The department retains original payroll documents for classified and wage employees (OTM timesheets, timecards, etc.) as original evidence to support classified and wage employee payments and the accurate reporting of leave.

Yes	No	N/A	11.3 Supervisors are aware that approved, signed time sheets must be given to the department's HRM Specialist and are not returned to the employee, as stipulated in the University's Human Resources Policy on departmental responsibilities for payroll.

Yes	No	N/A	11.4 Employees assigned to the department's fiscal and administrative duties are aware of and adhere to University (or Medical Center Payroll) policies on earning and using leave as stipulated in the University's Human Resources Policy on leave.

Yes	No	N/A	11.5 Employees assigned to the department's fiscal and administrative duties are aware of and adhere to University policy governing hours of work, overtime hours, Fair Labor Standards Act, and compensatory leave.

Yes	No	N/A	11.6 Employees assigned to the department's fiscal and administrative duties are aware of their responsibility to closely monitor their workers and record hourly and overtime hours in accordance with published schedules, so as to produce an accurate payroll, as stipulated in the University's Human Resources Policy on departmental responsibilities for payroll.

Yes	No	N/A	11.7 Payroll encumbrance reports are reviewed monthly to ensure salary and overtime rates are correct in accordance with University Policies I.A.1 and II.B.2.

Yes	No	N/A	11.8 Transactions placed in Labor Suspense are redistributed to the correct PTA combination at least monthly.

Yes	No	N/A	11.9 Employees assigned to the department's fiscal and administrative duties are aware of their responsibility to authorize appropriate access privileges to employees, contractors, and others working under their direction or sponsorship and to modify or revoke those privileges when individuals transfer to another job within UVa, terminate from UVa, or otherwise no longer need these privileges, as stipulated in Human Resources Policies and Procedures, Responsibility of Managers and Other UVa Officials for Access Privileges.

Section 11: Data Collection

List All Petty Cash, Change Funds, and Checking Accounts

Type	Amount	Custodian	Date Last Reimbursed	Checking Account Number
Petty Cash				N/A
Change			N/A	N/A
Checking

Departmental Cash Accounts and Amounts

For revenue projects where cash (defined as currency or checks) is received directly
in the department, please list those projects and annual dollar amounts received
over the last fiscal year.

Entity	Project	Fund Source	Object	Organization	Approx. Annual Dollar Amt.










				Total:

List Organizations That Collect Money on Your Behalf
and Remit Revenue to the Department
If you use other organizations or third party vendors, such as Pay-Pal, to collect
money on your behalf and remit revenue to the Department, please list them here.

Organization Name	Estimated Annual Revenue

List All Accounts with University Affiliated Foundations

Foundation Name	Account Numbers and Name

Personnel

List the names of the departmental personnel assigned responsibility for the following areas:
Note: Place N/A in all three table cells of any row that does NOT apply to your Org(s).

Area	Name(s)	Phone	Email (prefix only)
Payroll
Leave
Property
Fine or Decorative Art
Fiscal Responsibilities
Internal Controls Questionnaire Completion

Oracle Organizations

If this is a consolidated questionnaire for several Oracle Organizations within your department, please identify those organizations in the spaces below (Org. # only!).

Org. #	Org. #	Org. #	Org. #	Org. #	Org. #	Org. #	Org. #