6111 - INTERNAL CONTROLS
The Superintendent shall establish, document, and maintain effective internal controls over Federal awards that provide reasonable assurance that the District is managing all awards in compliance with the U.S. Constitution, statutes, regulations, and the terms and conditions of the awards. The District will have a process that provides reasonable assurance regarding the achievement of the following objectives:
- effectiveness and efficiency of operations;
- reliability of reporting for internal and external use; and
- compliance with applicable laws and regulations.
These internal controls should comply with the guidance in "Standards for Internal Control in the Federal Government" issued by the Comptroller General of the United States or the "Internal Control-Integrated Framework" issued by the Committee of Sponsoring Organizations of the Treadway Commission (COSO).
The internal controls must provide reasonable assurance that transactions are properly recorded and accounted for in order to permit the preparation of reliable financial statements and Federal reports; maintain accountability over assets; and demonstrate compliance with Federal statutes, regulations, and the terms and conditions of the Federal award. The internal controls must also provide reasonable assurance that these transactions are executed in compliance with Federal statutes, regulations, and the terms and conditions of the Federal award that could have a direct and material effect on a Federal award, as well as any other Federal statutes and regulations that are identified in the Compliance Supplement. Finally, the District's internal controls must provide reasonable assurance that all Federal funds, property, and other assets are safeguarded against loss from unauthorized use or disposition.
The District shall:
- comply with the U.S. Constitution, Federal statutes, regulations, and the terms and conditions of the Federal award;
- evaluate and monitor its compliance with the U.S. Constitution, statutes, regulations, and the terms and conditions of the award;
- take prompt action when instances of noncompliance are identified; and
- take reasonable cybersecurity and other measures to safeguard protected information including protected "personally identifiable information" (PII) and other types of information. This also includes information the Federal agency or pass-through entity designates as sensitive or other information the District considers sensitive and is consistent with applicable Federal, State, local, and tribal laws regarding privacy and responsibility over confidentiality.
PII is defined at 2 C.F.R. 200.1 as "information that can be used to distinguish or trace an individual's identity, either alone or when combined with other personal or identifying information that is linked or linkable to a specific individual."
However, the definition of PII is not attached to any single category of information or technology. Rather, it requires a case-by-case assessment of the specific risk that an individual can be identified.
Suggested Resources:
- "Standards for Internal Control in the Federal Government" issued by the Comptroller General of the United States;
- "Internal Control Integrated Framework" (commonly referred to as the Green Book) issued by the Committee of Sponsoring Organizations of the Treadway Commission;
- "Compliance Supplement" issued by the U.S. Office of Management and Budget; and
- Internal control guidance issued by the U.S. Department of Education.
© Neola 2024