Auditing: Chapter 5 Lecture Notes
Auditing: Chapter 5 Lecture Notes
Auditing: Chapter 5 Lecture Notes
Changed Legal Environment: [LO 1] Major factors that have contributed to the recent increase in the number of lawsuits against auditors & the size of awards to plaintiffs: 1) The growing awareness of the responsibilities of public accountants by users of FSs. 2) An increased consciousness on the part of the SEC regarding its responsibility for protecting investors' interests. 3) The complexity of auditing & accounting functions caused by the increasing size of businesses, the globalization of business, & the complexities of business operations. 4) Large civil court judgments against CPA firms. 5) Litigious society: People sue auditors because they have an asymmetric law function [if a company does well, no one sues the auditor]. Deep pockets phenomenon: The only one left to sue when the company does poorly, is the auditor. 6) The willingness of CPA firms to settle legal problems out of court to avoid costly legal fees & adverse publicity, rather than pursuing resolution through the judicial process. 7) The difficulty judges & jurors have understanding & interpreting technical accounting & auditing matters. Business Failure, Audit Failure & Audit Risk [LO 2] Business Failure: Occurs when a business is unable to repay its lenders or meet expectations of its investors because of economic or business conditions, such as recession, poor management decisions, or unexpected competition in the industry. Audit Failure: An auditor issues the incorrect opinion b/c they failed to comply with auditing standardsthey didnt do their job. Can be eliminated by doing our jobs correctly. Audit Risk: The risk that, after conducting an adequate audit in which we have followed auditing standards, & yet we still fail to discover that the client's F/Ss are materially misstated. Here, we come up with the wrong opinion/conclusion. We cant eliminate audit risk because we dont look at everything. We look at things on a test basis. Also fraud can keep us from finding things. Expectation Gap: The gap is the difference between what the public perceives auditors do and what auditors actually do. Legal Concepts Affecting Liability: 1
Prudent person concept: An agreement within the profession & the courts that the auditor is not a guarantor or insurer of FSs. The auditor is expected only to conduct the audit in due care, & is not expected to be perfect. Liability for the Acts of Others: CPAs are liable for themselves & everyone under their direct supervision. Lack of Privileged Communication: CPAs do NOT have the right to withhold info from the courts on the grounds that the info is privileged. Confidential discussions between the client & auditor cannot be withheld from the courts. Some states have statutes that permit privileged communication between the client & the auditor; however, even then, the intent at the time of the communication must have been for the communication to remain confidential. A CPA can refuse to testify in a state with privileged communication statutes; however that privilege does NOT extend to the federal courts. Legal Terms Affecting CPAs Liability: Terms Related to Negligence & Fraud: 1) Ordinary Negligence: Ordinary negligence is the absence of reasonable care that can be expected of a person in a set of circumstances. For auditors, it is in terms of what other competent auditors would have done in the same situation. 2) Gross Negligence / Constructive Fraud: Gross negligence is the lack of even slight care that can be expected of a person in a set of circumstances. Gross negligence is also termed reckless behavior. Constructive fraud is the existence of extreme or unusual negligence even though there was no intent to deceive [scienter] or to do harm. Constructive fraud is also termed reckless. Recklessness in the case of an audit is present if the auditor knew an adequate audit was not done but still issued an opinion, even though there was no intention of deceiving statement users. 3) Fraud: Occurs when a misstatement is made & there is both knowledge of its falsity & the intent to deceive. Terms Related to Contract Law: 1) Breach of Contract: Failure of one or both parties in a contract to fulfill the requirements of the contract. An example is the failure of a CPA firm to deliver a tax return on the agreed-upon date. Parties who have a relationship that is established by a contract are said to have privity of contract. 2) Third Party Beneficiary: A 3rd party who does not have privity of contract but is known to the contracting parties & is intended to have certain rights & benefits under the contract. A common example is a bank that has a large loan outstanding at the B/S date & requires an audit as part of its loan agreement. Other TermsSources of Auditor Liability:
1) Common Law: Laws that have been developed through court decisions rather than through government statutes. Uses legal precedent to identify fault & responsibility. Can be sued by: Clients: [Sued for failure to discover fraud.] Non-shareholder third parties: [Someone like a bank or creditor can sue you for not finding a material mistake or fraud in your audit.] Under Common Law, you can bring an action under: Breach of contract: You didnt fulfill the stuff under the contract. A contract has to exist between the auditor & the client, either verbal or written. Tort liability: This is more common than breach of contract b/c the amounts you can recover as a plaintiff is larger. Obligation based on failure to exercise appropriate level of professional care, whether it be Ordinary negligence, Gross negligence, or Fraud. 2) Statutory Law: Based on violations of written statutes, like The Securities Acts of 1933 & 1934 & the SOX Act of 2002. Can be sued by: Shareholders 3) Joint & Several Liability: The assessment against a defendant of the full loss suffered by the plaintiff, regardless of the extent to which other parties shared in the wrongdoing. For example, if management intentionally misstates the FSs, an auditor can be assessed the entire loss to SHers if the company is bankrupt & management is unable to pay. 4) Separate & Proportionate Liability: The assessment against a defendant of that portion of the damage caused by the defendant's negligence. For example, if the courts determine that an auditors negligence in conducting an audit was the cause of 30% of a loss to a defendant, only 30% of the aggregate damage will be assessed to the CPA firm. Common Law Negligence & Fraud: Common Law Negligence: The elements that have to be proven by a plaintiff in order to be brought into action: 1) 2) 3) 4) Duty: Prove that a duty of care existed. Breach of that duty. There has to be proximate causethere was some type of breach. Injury: You have to have suffered something due to the proximate cause.
Common Law Fraud (Constructive Fraud): 1) There has to be a material misrepresentation or omission of a material fact. They have failed to disclose that a material fact existed. 3
2) Reckless disregard for the truth: You just didnt care. 3) There has to be reliance. 4) There has to be an injury as a result of relying on them. Fraud: 1) There has to be a material misrepresentation or omission of a material fact. I failed to disclose that this material fact existed. 2) You INTENTIONALLY deceived people. 3) There has to be reliance. 4) There has to be an injury as a result of relying on them. Sources of Legal Liability: Source of Liability Liability to Clients Liability to 3rd Parties Under Common Law Civil Liability Under Federal Law Securities Criminal Liability Example of Potential Claim Client sues auditor for not discovering a material fraud during the audit. Bank sues auditor for not discovering that a borrowers FSs are materially misstated. Combined group of SHers sues auditor for not discovering materially misstated FSs. Federal Govt prosecutes auditor for knowingly issuing an incorrect audit report.
Common Law LiabilityClients: The most common source of lawsuits against CPAs is from clients. Breach of contract: Failure to perform the audit in accordance with engagement letter. An Engagement letter is required under the GAAS standards. It is a document that formalizes the document regarding the services youre going to perform, fees, etc. This is to protect you from a lawsuit. What client must prove depends on action brought Proof & Defenses: Liable for Ordinary Negligence, Gross Negligence, Constructive Fraud & Fraud Defenses Lack of Duty: Theres no express [written] or implied contract. Theres no reason for us to do something that theyre saying we didnt do. Non-negligent Performance: You complied with GAAS standards. Causation: Whatever we did, did not cause the actual injury. 4
Contributory negligence (clients were partially responsible for the loss) Approaches Courts Take to Assign 3rd Party Liability for Ordinary Negligence Under Common Law: Interpretation: Approaches by Courts & Example Cases: VERY IMPORTANTUltramares Corp. vs. Touche: Ordinary negligence is insufficient for liability because of lack of privity. 3rd parties cannot bring ordinary negligence suits against an auditor. Credit Alliance vs. Arthur Andersen: Liable to primary beneficiaries [like banks] for Ordinary Negligence. Rusch Factors vs. Levin [Restatement of Torts]: Liable to limited & identifiable foreseeable third parties [like shareholders] for Ordinary Negligence Rosenblum vs. Adler: Liable to an unlimited class of all foreseeable third parties for Ordinary Negligence. Reasonable limited & identifiable group of users who have relied on the auditors work. Bank or trade creditors when the auditor is aware that the client has provided audited FSs to such users. A trade creditor that has NOT previously conducted business with the client. That client has not provided FSs to trade creditors in the past. Definition of 3rd Party User: Example:
Most NARROW
Auditor knows & intends that user will use audit report.
Somewhere in between
Most BROAD
An unlimited class of users that the auditor should have reasonably been able to foresee as being likely users of the FSs.
Proof & Defenses Against Third Parties: For Negligence (Fraud) third parties must show: Same as clients Defenses: Lack of Duty Nonnegligent Performance Causation Contributory negligence: Not a viable defense against a 3rd party. They arent in the position to cause material misstatements in the FSs.
Statutory Negligence & Fraud: Securities Act of 1933 Securities Act of 1934 Sarbanes-Oxley Act of 2002 Foreign Corrupt Practices Act of 1977 Securities Act of 1933: Regulates initial issuance of securities by registrants to investing public Required to file registration statement with SEC that includes F/S Under Section 11 of the Securities Act of 1933 plaintiff must prove: 1. 2. Liability Under 1933 Act: Auditors responsible for material misrepresentations or omissions Defenses Due diligence (auditors performed a GAAS audit) Causation (loss resulted from other factors) Escott v. BarChris Construction Corp. Auditors held liable for failure to conduct reasonable investigation (Ordinary Negligence) Securities Exchange Act of 1934: Regulates daily trading of securities & requires periodic FSs & information to be filed with the SEC To bring suit, investors must show: [Rule 10-(b) & 10b-5 of the Securities Act of 1934] 1. 2. 3. 4. Liability Under 1934 Act: Auditors liable for Gross Negligence, Constructive Fraud, & Fraud Defenses Auditors acted in good faith Auditors were not aware of material misstatements Ernst & Ernst v. Hochfelder Relieved auditors from liability for Ordinary Negligence Did provide liability for reckless behavior in the absence of scienter 6
Summary of Auditor Liability: Alleged Auditor Action Liability to Client? Yes 3rd Parties Under Common Law? Liability to 3rd Parties under 1933 Securities Act? n/a Liability to 3rd Parties under 1934 Securities Act? n/a
n/a Primary Beneficiary: Yes Other 3rd Parties: Depends on the Jurisdiction Yes
Yes
n/a
No
Yes
n/a
YesLikely
Yes
Yes
n/a
YesLikely
Auditor Defenses Against Suits by Client, 3rd Parties Under Common Law, & Under the 1933 & 1934 Securities Acts: Available Defenses Lack of Duty to Perform Service Non-Negligent Performance [Audit in Accordance with Standards] Contributory Negligence by Client or 3rd Party Absence of Causal Connection [No Reliance on FSs] Client Suits 3rd Party Common Law 1933 Securities Act 1934 Securities Act
Developments in Auditor Liability: Sarbanes-Oxley Extends statute of limitations for bringing suit under the Securities Exchange Act Increased penalties for mail fraud & wire fraud Destruction, alteration, & falsification of records Increased records retention requirements 7
Higher potential liability in civil cases Developments in Auditor Liability: Foreign Corrupt Practices Act of 1977 Auditors not subject to RICO (and treble damages) Limitations on aiding & abetting Organization of firms as limited liability partnerships Private Securities Litigation Reform Act: Proportionate liability, instead of joint & several Class Action Fairness Act: Moves class action cases from state courts to federal courts Securities Litigation Uniform Standards Act: Requires class action lawsuits with > 50 parties to be filed in federal courts Auditor liability caps Criminal Liability? State Law Federal Law Professions Response to Limiting Liability: Standards & Rules Fighting Lawsuits Education of Users Sanctions for bad CPAs Lobby Limiting Liability for Individual CPAs: Client Acceptance & Retention Policies Independence Knowledge of Entity & Environment Quality Work Document, Document, Document Professional Skepticism
POSSIBLE EXAM QUESTIONS: KPRV LLP, A CPA firm, provided audit services for AP&P in which they relied on the work of Toiled LLP, another CPA firm, regarding the internal controls of a 3rd party payment processor PayRite. A material fraud was later uncovered which was directly related to PayRites internal controls. Which of the following is/are true?
a) KPRV is liable to AP&P for breach of contract for failing to uncover the fraud. WE DONT KNOW IF THEY ARE LIABLETHEY MIGHT BE. THIS IS FALSE B/C WE DONT KNOW. b) Toiled may be liable for losses caused by their failure to uncover the fraud. c) KPRV is not liable for any loss caused by the fraud because they did not audit PayRite. THEY ARE LIABLE B/C THEY DIRECTLY SUPERVISED THEM. d) All of the above. Match the description with the legal term: Breach of Contract: Failure of one or both parties to fulfill the requirements of a contract. Gross Negligence or constructive Fraud: Recklessness. Privity: Parties who share a contractual relationship. Statutory Law: Laws passed by Congress or governmental units. Joint Several Liability: The assessment of a full loss suffered by a plaintiff irrespective of shared wrongdoing. Fraud: Knowledge of a material misstatement with the intent to deceive. Terms: Separate & proportionate liability Common Law Fraud Negligence Statutory Law Privity Scienter None of the above
The distinction between constructive fraud & fraud is that fraud has a greater degree of recklessness. THE DIFFERENCE IS INTENT. a) TRUE b) FALSE At a confidential meeting, an audit client informed a CPA about a clients illegal insidertrading actions. A year later, the CPA was subpoenaed to appear in a federal court to testify in a criminal trial against the client. The CPA was asked to testify to the meeting between the CPA & the client. After receiving immunity, the CPA should do which of the following? ITS FEDERAL COURT, SO A STATUTE WOULNT APPLY. a) b) c) d) Take the 5th amendment & not discuss the meeting Site the privileged communication aspect of being a CPA Discuss the entire conversation including the illegal acts Discuss only the items that have a direct connection to those items the CPA worked on for the client in the past
The concept that the auditor is expected to conduct the audit with due care & is not expected to be perfect is referred to as: 9
a) b) c) d) e)
Promissory Estoppel Statute of Frauds Novation Principle Prudent Person Concept None of the above
When CPAs fail in their duty to carry out their contracts for services, liability to clients may be based on: Breach of contract Strict Liability Yes No [Strict liability generally has to do with statutory contract.] Which of the following statements best describes whether a CPA has met the required standard of care in conducting the audit of a clients FSs? a) The clients expectations with regard to the accuracy of the audited FSs b) The accuracy of the FSs & whether the statements conform to GAAP. CAN THE FSS BE ACCURATE & THE LACK OF CARE NOT BE MET? YES. SO, THIS IS FALSE. c) Whether the CPA conducted the audit with the same skill & care expected of an ordinarily prudent CPA under the circumstances [prudent person concept] d) Whether the audit was conducted to investigate & discover all acts of fraud. FALSE BECAUSE AN AUDIT FINDS MATERIAL FRAUD, NOT ALL FRAUD. A client suing a CPA for negligence must prove each of the following factors except: a) Breach of duty of care b) Proximate Cause c) Reliance d) Injury e) Duty f) All of the above are required Which of the following elements, if present, would support a finding of constructive fraud? a) Scienter b) Gross negligence in applying GAAS c) Ordinary negligence in applying GAAP d) Identified third parties e) Only a & b Fill-in-the-blank: Privity is not a viable defense in a suit against the CPA by the client. If a stockholder sues a CPA for common law fraud based on false statements contained in the FSs audited by the CPA, which of the following, if present, would be the CPAs best defense? THE HARDEST THING TO PROVE IN A FRAUD CASE FOR AN AUDITOR, IS THE INTENT TO DECEIVE. a) The stockholder lacks privity to sue. b) The false statements are immaterial. c) The CPA did not financially benefit from the alleged fraud. Not a consideration d) The contributory negligence of the client. This isnt a viable defense. e) Only a & b 10
Hark, CPA, failed to follow GAAS in auditing Long Corp.s FSs. Longs management had told Hark that the audited statements would be submitted to several banks to obtain financing. Relying on the statements, Third bank gave Long a loan. Long defaulted on the loan. In a jurisdiction applying the Ultramares decision, if Third sues Hark, Hark will: a) Win, because there was no privity of contract between Hark & Third b) Lose because Hark knew that banks would be relying on the FSs c) Win, because Third was contributorily negligent in granting the loan d) Lose, because Hark was negligent in performing the audit Fill-in-the-blank: If a CPA recklessly departs from standards of due care when conducting an audit, the CPA will be liable to 3rd parties who are unknown to the CPA based on Constructive Fraud or Gross Negligence. Under common law, which of the following statements most accurately reflects the liability of a CPA who fraudulently gives an opinion on an audit clients FSs? a) The CPA is liable only to third parties in privity of contract with the CPA. b) The CPA is liable only to foreseeable users of the FSs. c) The CPA probably is liable to any person who suffered a loss as a result of the fraud. d) The CPA probably is liable to the client even if the client was aware of the fraud & did not rely on the opinion Which of the following is the best defense a CPA firm can assert in a suit for common law fraud based on its unqualified opinion on materially false FSs? a) b) c) d) e) Contributory negligence on the part of the client A disclaimer contained in the engagement letter Lack of privity Lack of scienter All of the above
Short answer: How does the Securities Act of 1933, which imposes civil liability on auditors for misrepresentations or omissions of material facts in a registration statement, expand auditors liability to purchasers of securities beyond that of common law? To be successful in a civil action under Section 11 of the Securities Act of 1933 concerning liability for a misleading registration statement, the plaintiff must prove the: Defendants intent to deceive a) No a) Yes b) No c) Yes Plaintiffs reliance on the registration statement No Yes Yes No
11
Under the provisions of Section 10(b) & Rule 10b-5 of the Securities exchange Act of 1934, which of the following activities must be proven by a stock purchaser in a suit against a CPA? I. II. III. Intentional conduct by the CPA designed to deceive investors Negligence by the CPA Materiality a) I only b) II only c) III only d) Both I & II e) Both I & III f) All of the above
Ocean & Associates, CPAs, audited the FSs of Drain Corporation. As a result of Oceans negligence in conducting the audit, the FSs included material misstatements. Ocean was unaware of this fact. The FSs & Oceans unqualified opinion were included in a registration statement & prospectus for an original public offering of stock by Drain. Sharp purchased shares in the offering. Sharp received a copy of the prospectus prior to the purchase but did not read it. The shares declined in value as a result of the misstatements in Drains FSs becoming known. Under which of the following Acts is Sharp most likely to prevail in a lawsuit against Ocean? Securities Act of 1934 Securities Act of 1933 Section 10(b) Section 11 a) Yes Yes b) No Yes c) Yes No d) No No Fill-in-the-blank: The most common source of lawsuits against CPAs is from _______________. Name the four sources of legal liability for auditors: 1. 2. 3. 4.
12