(1) The purpose of this Policy is to protect the reputation and assets of the University of New England (UNE) from fraudulent and corrupt activities, and outline the processes and mechanisms for preventing, reporting and investigating incidents of fraudulent activity in and against the University. (2) This Policy establishes a Fraud and Corruption Control System (FCCS) consistent with the Australian Standard on Fraud and Corruption Control (AS 8001:2021). The Policy provides guidance on how to prevent, detect and respond to incidents of fraud and corruption and: (3) This Policy applies to all (4) This Policy should be read in conjunction with the UNE Risk Management Policy, Organisational Resilience Rule, Procurement Policy, and Codes of Conduct. (5) Within this Policy: (6) UNE has zero tolerance for fraudulent or corrupt activity. (7) UNE recognises that fraud and corruption create reputational and financial damage to the University. (8) UNE recognises that the risk of fraud and corruption can arise in various contexts and has put in place measures proportionate to the risks in order that (9) To demonstrate this commitment the University, through the Vice-Chancellor and Chief Executive Officer (VC&CEO) and (10) This Policy is one element of a suite of practices in place across the University that reinforce the University’s values. The University’s framework of ethical conduct includes, but is not limited to: (11) Supporting the University’s commitment to an observable ethical culture, all staff are required to confirm (12) The Director Governance and University Secretary (DGUS) is the primary Fraud and Corruption Control Officer (FCCO). In relation to fraud and corruption, the DGUS is responsible for: (13) The Head, Internal Audit is responsible for: (14) While not limiting the capacity of any person to report matters of concern to any person or agency, the Head, Internal Audit is the nominated position to make official report to external agencies as a representative of the University with the exception of: (15) The (16) The Chief Information Security Officer (CISO) is responsible for: (17) UNE is committed to preventing fraud and corruption within the University and its controlled entities. The enact this commitment, UNE will put in place appropriate mechanisms for fraud and corruption risk management, including policies and processes, risk assessment, internal controls, investigation, reporting, education and independent auditing to reduce the incidence of fraud and corruption and regularly evaluating these. (18) UNE will minimise the incidence of fraud and corruption by: (19) The DGUS will coordinate an annual program of fraud and risk assessment management activities across the University. The program: (20) The Head, Internal Audit will use the findings of the fraud and corruption risk assessments to develop a fraud and corruption control assurance management plan to be reported annually to the Audit and Risk Committee and monitored for effectiveness over time. (21) The DGUS will coordinate a regular program of communication and awareness to inform all stakeholders impacted by this Policy of: (22) The Director People and Culture, will develop, implement and coordinate an employment screening program consistent with contemporary human resource practice, relevant legislation, codes and standards. The employment screening program will apply to appointments of: (23) The program will provide for effective employment screening of relevant persons: (24) The Director People and Culture will develop, implement and coordinate business processes for the declaration of: (25) The Chief Financial Officer (CFO) will develop, implement and coordinate a process for the vetting of business associates (suppliers). The vetting process: (26) The vetting process is to include but is not limited to the following: (27) Vetting is to be undertaken prior to the award of contracts exceeding the threshold value and at such time that the University becomes aware that expenditure with a specific supplier has exceeded the annual threshold value. (28) Adverse outcomes in relation to vetting are to be report to the Chief Operating Officer (COO) for consideration of the University’s ongoing commercial relationship with the business associate. (29) The COO will maintain oversight of the University’s practices for the physical security and asset management. The security of the physical environment will be assessed to ensure appropriate measures are implemented for the prevention of theft of valuable tangible assets. Details of measures in place are outlined in the Key and Lock Policy, Password Policy, IT Server Room Access Procedures, and Information and Communications Infrastructure Rule. (30) For Education agent, intermediary and partner vetting process refer to the Academic Quality Assurance Policy and Third Party Provider Arrangements Policy. (31) For (32) Verification of student identity occurs at the point of issuing a student identification card. (33) The Student Coursework Academic Misconduct Rule and Student Academic Integrity Policy, HDR - Higher Degree Research Student Responsible Research Conduct Policy and the Code of Conduct for Research Rule set out the requirements for the protection of academic and research integrity. (34) The Knowledge Assets and Intellectual Property Policy sets out the requirements for the protection of intellectual property. (35) The University Seal and Signing Documents Rule, Academic Qualifications Issuance Policy, Rescission of an Award/Correction of an Award Procedure and Digital Signatures Policy outline business practices protecting the integrity of the certification of documents. (36) Business practices must ensure all certification documentation issued by the University is: (37) The DGUS will promote the development, implementation and coordination of business practices to protect the integrity of (38) These practices must ensure all (39) Internal Audit support the prevention of fraud and corruption by: (40) UNE is committed to the development and implementation of dynamic detection processes. The DGUS, CISO, Head of Finance and Head, Internal Audit have responsibility to validate the development of systems to detect and investigate fraud and corruption, including post transactional review, data mining and analysis of management accounting reports. (41) A random selection of transaction will be reviewed after processing, by staff unconnected with the business unit making the transaction. Transaction to be reviewed include any action where fraudulent or corrupt gain or loss is possible and includes: (42) The transaction reviews will look to ensure: (43) Data analytics will be developed to consider relevant indicators of the University’s fraud and corruption risk exposure. Data analysis will be used to identify suspect transitions. (44) Analysis of accounting reports will be conducted to identify trends that may be indicative of fraud or corrupt conduct, including: (45) Refer to relevant policies including Admission, Credit and Enrolment Policy, Student Behavioural Misconduct Rules, Student Coursework Academic Misconduct Rule and Student Academic Integrity Policy, HDR - Higher Degree Research Student Responsible Research Conduct Policy, Assessment Policy, and HDR - Encumbrances Procedure. (46) UNE will present the annual financial statements to the NSW Audit Office for validation, and will participate in audits by the NSW Audit Office, and any other statutory agency as required. (47) (48) UNE may have a statutory, regulatory or contractual obligation to report suspected fraud and/ or corruption to an external body or agency. (49) UNE does not tolerate vexatious and/ or frivolous reports in relation to fraud or corruption, and may initiate disciplinary proceedings where reports of this nature are made. (50) Reporting may be done by following the process outlined in the Reporting Wrongdoing at UNE Policy. (51) UNE’s complaint management processes are designed to ensure that staff receiving (52) UNE’s exit interviews seeks to identify knowledge or reasonable suspicion the exiting employee has of potential fraudulent or corrupt conduct, including the conduct of the exiting employee, other internal UNE persons, and business associates of internal UNE persons. (53) The investigation of a report of possible wrongdoing to an authorised disclosure officer will be managed as outlined in the Reporting Wrongdoing at UNE Policy. (54) Concerns related to personal information held by the University will be address in accordance with the Privacy Management Rule. (55) The following table outlines responsibilities associated with this procedure: (56) The following Table provides examples of functions and activities that are at risk of fraud and corruption, noting these are not exhaustive. (57) The Council, pursuant to Section 29 of the University of New England Act 1993 (NSW) makes this University Policy. (58) The Policy Steward, Director Governance and University Secretary (DGUS), is authorised the develop supporting documents to support this Policy. (59) This Policy operates as and from the (60) Previous policy and plans on fraud and corruption controls are replaced and have no further operation from the (61) Notwithstanding the other provisions of this Policy, the Vice-Chancellor and Chief Executive Officer may approve an exception to this Policy where the Vice-Chancellor and Chief Executive Officer determines the application of this Policy would otherwise lead to an unfair, unreasonable or absurd outcome. (62) The implementation of this Policy will be supported and measured by UNE annually to ensure the level of understanding, engagement and application of this Policy meets expectations.Fraud and Corruption Control Policy
Section 1 - Overview and Scope
Top of PageSection 2 - Policy
Part A - Principles
Framework of ethical conduct
Part B - Planning and prevention of fraud and corruption
Fraud control officer
Prevention systems
Fraud and corruption risk management
Communication and awareness of fraud and corruption
Employment screening and vetting processes
Business associate (supplier) vetting
Physical security and asset management
Education agent, intermediary and partner vetting
Student capability vetting
Protection of academic and research integrity
Protection of intellectual property
Protection of certification documentation
Privacy management
Internal audit
Part C - Detecting fraud and corruption
Post-transactional reviews
Data analytics
Analysis of accounting reports
Student related fraud and corruption detection systems
External audit
Part D - Response to fraud and corruption
Reporting fraud and corruption
Complaint management
Exit interviews
Investigation of fraud and corruption
Responses to privacy concerns
Responsibilities
Top of Page
Section 3 - Authority and Compliance
Top of PageSection 4 - Quality Assurance
View Current
This is the current version of this document. To view historic versions, click the link in the document's navigation bar.
Officer or body
Responsibilities
Council
Approve the University’s Fraud and Corruption Control Policy and System;
Receive reports of significant instances of fraud and remedial actions taken.
Audit and Risk Committee
Review and advise Council on the appropriateness of the University’s process for effective identification and management of fraud and corruption risks;
Endorse the University’s Fraud and Corruption Control Policy and System;
Receive reports on instances of ‘high’ and ‘extreme’ risks reported by Business units of the University and review the remedial actions taken.
Vice-Chancellor and Chief Executive Officer (VC&CEO)
Foster an environment that makes active fraud and corruption control the responsibility of all staff.
Ensure that appropriate measures are in place in relation to fraud prevention and detection;
Report any matter they suspect may concern corrupt conduct to the ICAC (non-delegable duty)
Ensure appropriate resourcing within Governance Division to lead fraud control at the University.
University Executive
Foster an environment that makes active fraud and corruption control the responsibility of all staff;
Ensure that appropriate measures are in place with regard to fraud and corruption prevention and detection.
Chief Operating Officer
With advice from the Legal Office, refer instances of potential serious or complex fraud offences to the NSW Police or external agency as appropriate.
Director Governance and University Secretary (DGUS)
Arrange fraud and corruption awareness training for relevant staff.
Coordinate fraud and corruption risk assessment activity across the University;
Head, Internal Audit
Develop the University’s Fraud and Corruption Control Policy and System;
Use fraud risk assessments to inform the development of the University’s annual internal audit program for endorsement by the ARC and approval by Council;
Receive reports of suspected fraud and take appropriate action.
Chief Financial Officer (CFO)
Review, on an ongoing basis, the financial fraud controls to ensure they are effective in minimising financial fraud risks;
Provide assurance on the adequacy of the University’s financial fraud control arrangements to the external auditors annually, through management representation letters.
Heads of Business units
Foster an environment that makes fraud and corruption control the responsibility of all staff;
Ensure that a fraud and corruption risk assessment for their area is conducted and reviewed at least every two years and whenever there is significant organisational change;
Ensure that appropriate internal controls are in place and operating effectively to minimise fraud and corruption risks (including by ensuring appropriate record keeping practices are in place);
Ensure that staff participate in fraud and corruption awareness education and training;
Ensure that agreed recommendations relating to fraud and corruption in internal and external audit reports are implemented promptly.
All UNE Representatives and students
Act in accordance with the Code of Conduct policy and Student Behavioural Misconduct Rules when undertaking their duties and representing the University;
Disclose to their supervisor any conflict of interest that relates to the affairs of the University;
Actively participate in the implementation of fraud risk control strategies;
Undertake appropriate record keeping;
Report any suspicions of, or information relating to any instance of, fraudulent or corrupt conduct to their supervisor, an authorised officer for Reporting Wrongdoing at UNE Policy or the DGUS;
Encourage others to make such reports;
Deal with all reports of suspected fraud or corruption professionally and promptly.
AREA OR FUNCTION
EXAMPLES
Misuse of University assets and monies
Use of UNE funds or resources for personal use, and not reimbursed to the University;
Unauthorised sale of UNE assets for personal gain, or sale at values that are not arms length;
Theft of UNE property such as cash and/ or equipment;
Dishonestly using the University’s computers, vehicles, telephones, credit cards, cab vouchers, stationery, other property and/ or services;
Dishonestly using grant of research funds or scholarships for other than purposes for which they were provided.
Travel
Claiming for a travel entitlement to attend a course and then not attending the course and not reimbursing travel monies;
Luxurious or excessive expenditure;
Inflated and/ or fake claims;
Undertaking travel under the guide of a business purpose when the dominant purpose and expenditure of time was for a private holiday/ or other private purpose.
IT Assets and Security
Misappropriation or the unauthorised or unlawful destruction of data;
Unauthorised or unlawful alteration of data;
Accepting bribes for admission of students or creating fraudulent transcripts for students.
Regulatory Compliance
Providing false or misleading information to agencies such as the NSW Ombudsman, the NSW Audit Office or TEQSA;
Failing to provide information where there is a legal obligation to do so.
Contract Management
Receiving kickbacks or secret commissions from a contractor;
Accepting hospitality from suppliers which is either not approved in accordance with the UNE Gifts and Benefits Policy, or is deemed to be excessive and not incidental;
Incorrect charging for labour and material, misuse of assets or product substitution, including substituting a product for one of a lesser quality.
Tendering
Collusive tendering (the act of multiple tenderers for a particular contract colluding in the preparation of their bids);
A UNE Representative manipulating a tendering process to achieve a particular outcome;
Acceptance of a payment, gift or hospitality from a third party where it is known, or suspected (or should be suspected) that it is offered or provided with an expectation that a business advantage will be provided in return.
Credit Cards, EFTPOS, cheques
Using a University credit card for personal expenses and claiming them as University related;
Unauthorised use of a credit card or a credit card issued to another person;
Making or using forged or falsified document or signatures.
Procurement and accounts payable
Receiving kickbacks or secret commissions from a contractor;
Misappropriating official order forms to gain a personal benefit;
Making cheques out to false persons/ companies, etc;
False invoicing involving a UNE Representative ;
A person external to the University creating a false invoice for payment by UNE, claiming payment for goods or services not delivered, or exaggerating the value of goods delivered or services provided.
Conflicts of Interest
A UNE Representative acting in their own self-interest rather than the interests of the University in relation to University matters;
Failure to disclose and actual, perceived or personal conflict of interest contrary to the Code of Conduct and the Conflicts of Interest Policy;
Allowing a conflict of interest to undermine independence;
Nepotism and cronyism
People and Culture
Misuse of personal or sick leave;
Failing to apply for leave taken when not working;
Receiving personal benefits in exchange for assisting a consultant to gain work at the University;
Payment of secret commissions to a UNE Representative that is related to a specific action or decision of the UNE Representative ;
Receiving kickbacks or secret commissions from a contractor;
Submission of exaggerated, or wholly fictitious, or vexatious accident, harassment, bullying or injury claims.
Student Admission and Records
Evasion of fees due to the University;
Making, using or possessing forged or falsified documents such as degrees, academic transcripts, testamurs and other academic records;
Using forged or falsified documents when applying for admission, or advanced standing/ credit towards a course;
Using forged or falsified documents when applying for special study accommodations, extensions of time;
Submitting the work of others as if it were the students own work (Also Academic/ Research Misconduct).