Category Archives for "Auditing"

Do you know what you need to know about emphasis of matter and other matter paragraphs? Sometimes auditors elect to or are required to add an extra paragraph after the opinion paragraph. You need to know why and when. (This article was written prior to the amendments made by SAS numbers 134, 137, 140, and 141. Those amendments are effective for periods ending on or after December 15, 2021. See my new article regarding the amended guidance for emphasis of matter and other matter paragraphs.)

This post gives you the leg up on emphasis of matter (EOM) paragraphs and other matter (OM) paragraphs. 

Definitions

First, let’s first define the two terms.

AU-C 706.05 provides the following definitions:

Emphasis-of-matter paragraph. A paragraph included in the auditor's report that is required by GAAS, or is included at the auditor's discretion, and that refers to a matter appropriately presented or disclosed in the financial statements that, in the auditor's professional judgment, is of such importance that it is fundamental to users' understanding of the financial statements.

Other-matter paragraph. A paragraph included in the auditor's report that is required by GAAS, or is included at the auditor's discretion, and that refers to a matter other than those presented or disclosed in the financial statements that, in the auditor's professional judgment, is relevant to users' understanding of the audit, the auditor's responsibilities, or the auditor's report.

Notice that an EOM refers to “a matter appropriately presented or disclosed in the financial statements,” while an OM refers to “a matter other than those presented or disclosed in the financial statements.”

Now, let's take a look at sample EOM and OM paragraphs. 

Sample Emphasis of Matter Paragraph

Here’s a sample EOM paragraph:

Emphasis of Matter

As discussed in Note X to the financial statements, the Company has elected to change its policy for determining cash equivalents in 20X 7. Our opinion is not modified with respect to that matter.

Sample Other Matter Paragraph

Here is a sample OM paragraph:

Other Matter

In our report dated April 18, 20X5, we expressed a qualified opinion since the Company’s main office had a material unrecognized impairment loss. As noted in Note 12, the Company has now recognized the impairment in conformity with accounting principles generally accepted in the United States of America. Accordingly, our present opinion on the restated 20X4 financial statements, as presented herein, is different from that expressed in our previous report.

You also need to know the presentation requirements for EOM and OM paragraphs.

Presentation Requirements for an EOM

AU-C 706.06 and 706.07 provides guidance in reference to EOMs. The auditor should:

• Refer only to information presented or disclosed in the financial statements
• Include the EOM immediately after the opinion paragraph in the auditor’s report
• Use the heading “Emphasis of Matter” or other appropriate heading
• Include a clear reference to the matter being emphasized and to where relevant disclosures that describe the matter can be found
• Indicate that the auditor’s opinion is not modified with respect to the matter emphasized

Presentation Requirements for an OM

AU-C 706.08 provides guidance in reference to OMs. The auditor should:

• Include the OM immediately after the opinion paragraph and any EOM paragraph (or elsewhere in the auditor’s report if the content of the OM paragraph is relevant to the “Other Reporting Responsibilities” section – see AU-C 706.A6--.A11)
• Use the heading “Other Matter” or other appropriate heading

AU-C Sections Requiring EOMs

Sometimes EOMs are required; here are examples:

• AU-C 570.15-.16 The Auditor’s Consideration of an Entity’s Ability to Continue as a Going Concern
• AU-C 560-.16c Subsequent Events and Subsequently Discovered Facts
• AU-C 708.08-.09 and .11-.13 Consistency of Financial Statements

See exhibit B of AU-C 706 for a complete listing of AU-C sections requiring EOM paragraphs.

An EOM is commonly required when a company has a change in an accounting principle (that has a material impact). AU-C 708 Consistency of Financial Statements paragraphs .07-.08 provides guidance on when the EOM is required.

The auditor also has an option to use an EOM to emphasize matters that are not required by audit standards. So, sometimes EOMs are included because they are required (e.g., going concern) and, other times, they are optional (e.g., to highlight a related party transaction).

AU-C Sections Requiring OMs

Sometimes OMs are required; here are examples:

• AU-C 725.09 Supplementary Information in Relation to the Financial Statements
• AU-C 800.20 Special Considerations—Audits of Financial Statements Prepared in Accordance With Special Purpose Frameworks

See exhibit C of AU-C 706 for a complete listing of AU-C sections requiring OM paragraphs.

Simple Summary

• Use EOMs to OMs to highlight important matters
• EOMs refer to matters presented or disclosed in the financial statements
• OMs refer to a matter other than those presented or disclosed in the financial statements
• EOMs and OMs are—in certain situations—required by audit standards
• An EOM should immediately follow the opinion paragraph and should refer to the note that describes the issue; include the heading “Emphasis of a Matter” or other appropriate heading
• An OM should immediately follow the opinion paragraph and any EOM (if one is included); include the heading “Other Matter” or other appropriate heading

Of course, creating your opinion is just a part of wrapping up your audits. 

Congratulations! You've won a new audit client. Now, let's consider the first year audit considerations.

In this post, I explain why it's necessary to obtain supporting information for opening balances and how contacting the predecessor auditor is to your advantage.

First Year Audit Considerations

Here are three key first year audit considerations:

1. Obtaining information about opening balances 
2. Reviewing the predecessor auditor's workpapers
3. Complying with your firm's quality control standards 

Let's take a look at each of these.

1. Obtaining Information about Opening Balances

AU-C 510.08 states "The auditor should obtain sufficient appropriate audit evidence about whether the opening balances contain misstatements that materially affect the current period's financial statements." If you are unable to obtain such information, then you will need to qualify or disclaim your opinion. So, it's important to get comfortable with these balances.

Some auditors think, "Well, I'll just review the prior year audit report." That's a good start, but not good enough.

Why can't we just review the prior audit report? If the prior audit covered the period ending December 31, 2018, it does not cover the January 1, 2019 balances. If your audit is for the year ended December 31, 2019, then reviewing the audited financial statements for the year ending December 31, 2018 helps but it does not ensure the legitimacy of the January 1, 2019 opening balances. The audit standards state that the auditor has to determine whether the prior period closing balances were correctly brought forward to the new period. Additionally, we need to consider how the predecessor's audit work affects our current year risk assessment (more in a moment).

Also, determine that the opening balances are in compliance with appropriate accounting policies. If the prior year financial statements were created using the modified cash basis of accounting but GAAP financials are required in the current year, then bringing forward prior year balances won't do. GAAP is full accrual; the modified cash is not.

Additionally, the audit standards state that the successor auditor should perform "specific audit procedures to obtain evidence regarding opening balances" (per AU-C 510.08). You might, for example, examine the depreciation schedule for the prior year and compare it to the opening balances. For debt or investments, you could confirm the opening balances (I'm not saying this is required, just an option). For some (less significant balances) you might examine investment statements or loan amortizations and agree those to the opening balances. The opening balances for current assets or liabilities might be proven by activity early in the current year: Were prior year receivables collected? Were prior year payables paid?

What we can't do, however, is nothing. The General Audit Engagement Checklist (PRP Section 20,400) asks the peer reviewer the following:

Did the successor auditor obtain sufficient appropriate audit evidence regarding opening balances about whether opening balances contain misstatements that materially affect the current period's financial statements and appropriate accounting policies reflected in the opening balances have been consistently applied?

The peer reviewer will look for documentation as it relates to opening balances. If not present, then there is a problem. At a minimum, write a memo stating how you got comfortable with all significant opening balances. And create an audit program related to opening balances.

2. Reviewing the Predecessor Auditor's Workpapers

Reviewing the predecessor auditor's workpapers is one of the more unpleasant duties of an auditor. I did so recently. The predecessor auditor is a friend of mine. As I visited him, I was uncomfortable. He was cordial, respectful, and nice. Some predecessor auditors don't exactly roll out the red carpet for you (and I get that). I try to remember the importance of professional courtesy when I lose a job (though it stings my pride).

In any event, the successor auditor is required to initiate communications with the predecessor auditor prior to accepting the engagement (see AU-C 210.11-12). The peer review checklist asks:

If the auditor succeeded another auditor, did the successor auditor initiate communications with the predecessor auditor to ascertain whether there were matters that might assist the auditor in determining whether to accept the engagement?

Why call the predecessor auditor? To see if there were disagreements between the auditor and the company. To see if there were ethical issues.

Additionally, you need to request permission to review their prior year workpapers. AU-C 510.A 7 says, "The extent, if any to which a predecessor auditor permits access to the audit documentation...is a matter of the predecessor auditor's professional judgment." Translation: They don't have to permit access, but they (generally) should. If the predecessor allows access to their workpapers, you can use that information in planning your current year audit. 

3. Complying with Your Firm's Quality Control Standards

See what your firm's quality control document says about initial audits. Many firms require an engagement quality control review (an EQCR) for first-year engagements. (If yours does not, consider adding it to your QC document.) Why? New audits take a great deal of time. Because they do, it's tempting to cut corners. An EQCR lessens the temptation. The engagement partner knows the engagement will be reviewed by another firm member (often, another partner). 

How the Predecessor Auditor's Work Helps You

Contacting the predecessor auditor may be the best thing you can do prior to accepting an audit. They might tell you, for example, that the potential client is unethical or that they are slow to pay their audit fees. Because you desire a healthy book of business, this step may save you plenty of headaches. As I've said before client acceptance is the important audit step.

If you accept the engagement, consider how the predecessor's responses and workpapers affect your risk assessment. Were there several material audit adjustments in the prior year? Did the predecessor auditor issue a material weakness letter? Then such considerations should be included in your current year risk assessment.

The predecessor auditor's work can also help you get comfortable with opening balances. 

Yellow Book independence is a big deal. And if you prepare financial statements in a Yellow Book audit, you need to be aware of the independence rules. Below I tell you how to maintain your independence—and stay out of hot water,

Yellow Book Independence Impairment in Peer Review

Suppose that--during your peer review--it is determined your firm lacks independence in regard to a Yellow Book engagement.

What could happen? Well, I can't say for sure, but I think it would be nasty. At a minimum, you would probably receive a finding for further consideration. The engagement is definitely nonconforming (not conforming to professional standards).

Then, you'd need to provide a response--explaining what you intend to do about the lack of independence. And this could get very interesting. Not where you want to be.

Preparation of Financial Statements is a Significant Threat

If you prepare financial statements (a nonattest service) for your audit client, you have a significant threat. Why? You are auditing something (the financial statements) that you created. There is a self-review threat. 

When there is a significant threat, you must use a safeguard (to lessen the threat). Such as? A second partner review. So, for example, you might have a second audit partner (someone not involved in the audit) review the financial statements. Since the second partner did not create the financial statement, the self-review threat is mitigated.

Notice the safeguard (the second partner review) is something the audit firm does--and not an action of the audit client. Therefore, it qualifies as a safeguard.

But My Client has Sufficient SKE

You've heard your audit client must have sufficient skill, knowledge and experience (SKE) and that they must oversee and assume responsibility for nonattest services. This is true and is always required when nonattest services are provided to an audit client. 

Even so, the client's SKE does not address the self-review threat. 

Think of the SKE issue as a minimum requirement. Do not pass "go" if the client does not assign someone (with SKE) to oversee the nonattest service. You are not independent. End of discussion. (If the client does not have sufficient SKE, see section below titled Inadequate Skill, Knowledge, and Experience.)

Once the client SKE issue is dealt with, consider if auditor safeguards are necessary. Why? A self-review threat may be present. 

The AICPA (in its AICPA Yellow Book Practice aid) provides examples of safeguards (again, these are actions of the audit firm) including:

• Obtaining secondary reviews of the nonaudit services by professional personnel who were not involved in planning or supervising the audit engagement.
• Obtaining secondary reviews of the nonaudit services by professional personnel who were not members of the audit engagement team.

See Appendix E of the AICPA Yellow Book Practice Aid for additional examples of safeguards and how to apply them.

Independence Documentation is Required

The Yellow Book requires that your independence be documented. If it is not, a violation of professional standards exists. 

So, document the SKE of the client and the safeguards used to address significant threats. Also, document which nonattest services are signficiant threats. Peer reviewers focus on Independence documentation.

Judging Client's SKE

Management Responsibilities

The 2018 Yellow Book (paragraph 3.75) says the following about management responsibilities:

In cases where the audited entity is unable or unwilling to assume these responsibilities (for example, the audited entity does not have an individual with suitable skill, knowledge, or experience to oversee the nonaudit services provided, or is unwilling to perform such functions because of lack of time or desire), auditors should concluded that the provisions of these services is an impairment to independence.

Additionally, paragraph 3.73 of the Yellow Book states:

Auditors should determine that the audited entity has designated an individual who possesses suitable skill, knowledge, or experience and that the individual understands the services to be provided sufficiently to oversee them.

If the government has no one with sufficient SKE, then the external auditor is not independent and can't perform the audit.

So, is there another option when the client does not have sufficient SKE?

Inadequate Skill, Knowledge, and Experience

If the auditor can't get comfortable with the client's SKE (e.g., the client's ability to review the financial statements and assume responsibility), what can be done? The audited entity can hire someone with sufficient SKE. For example, the entity could contract with a CPA not affiliated with the external audit firm to review the financial statements on their behalf.

Many smaller governments need to contract with an outside person in order to have sufficient SKE. The problem, however, is they may not have the funds to do so. If you as the auditor make this suggestion, be prepared for this question: "Isn't this why I hired you?" Regardless, the client has to have sufficient SKE before the auditor can issue an opinion. 

In Summary

Here's the lowdown to protect your firm:

1. Document the nonattest services you are to perform
2. Document the client person that will oversee and assume responsibility for the nonattest service
3. Document the SKE of the designated person
4. Consider whether any nonattest services are significant threats 
5. Document which, if any, nonattest services are significant threats
6. Use (and document) a safeguard to address each significant threat (examples of safeguards include an EQCR or a second-partner review)

Looking for a tool to document Yellow Book independence? Consider the AICPA's practice aid. Here is the free PDF version. You can also purchase the fillable version here. (Cost is $39 for AICPA members.) This is the 2011 Yellow Book aid. I am thinking the AICPA will create a 2018 Yellow Book version as well.