View Current

Fraud and Corruption Control Plan

This is the current version of this document. To view historic versions, click the link in the document's navigation bar.

Section 1 - Overview

(1) The purpose of the Fraud and Corruption Control Plan (the Plan) is to implement the University of New England's (UNE) Fraud and Corruption Prevention Rule (the Rule). The Plan establishes an appropriate strategic framework that defines management and staff responsibilities and facilitates the implementation of robust practices for the effective detection, investigation and prevention of fraud and corruption within UNE.

Top of Page

Section 2 - Scope

(2) The Rule and this Plan apply to UNE Representatives and students of UNE and its controlled entities.

Top of Page

Section 3 - Plan


(3) The potential for fraud and corruption exists in every organisation - UNE is no exception. It is the responsibility of UNE's Management to ensure an effective fraud and corruption control plan, summarising UNE's anti-fraud and anti-corruption strategies, is operating and that it identifies potential risks and takes action to mitigate such risks.

(4) The success of the Plan relies heavily on the commitment and attitude of all employees and Management. UNE will not tolerate any instance of fraud or corruption. All instances of fraud and corruption will be reported to the Independent Commission Against Corruption (ICAC) and where appropriate to NSW Police and NSW Audit Office.

(5) The consequences of fraud and corruption is a risk to business, and can have a similar impact on the University as other types of enterprise risk in terms of:

  1. financial loss;
  2. reputational impact;
  3. diversion of management energy;
  4. organisational morale;
  5. organisational disruption;
  6. loss of employment;
  7. reduced performance; or
  8. diminished safety.

(6) If fraud or corruption occurs the results can include the following consequences:

  1. damage to UNE's reputation;
  2. reduced confidence in UNE by the Government and community;
  3. loss of assets including equipment, cash and information;
  4. inability to meet strategic plan objectives; or
  5. detrimental effect on employee morale and performance.

(7) Attributes of the Fraud and Corruption Control Plan - The Plan is based on the "ten attributes of effective fraud control strategies" developed by the Audit Office of NSW. These attributes are:

  1. integrated macro policy;
  2. responsibility structures;
  3. fraud and corruption risk assessment;
  4. employee awareness;
  5. customer and community awareness;
  6. notification systems;
  7. detection system;
  8. external notification;
  9. investigation standards; and
  10. conduct and disciplinary standards.

The Policy

(8) The Fraud and Corruption Prevention Rule, sets out UNE's principles and responsibilities for fraud and corruption control.

(9) The most effective means of controlling fraud and other corrupt behaviour is for Management to foster and encourage an ethical environment that is committed to preventing, detecting and reporting fraud and corruption and to implement control mechanisms which minimise the likelihood of fraud or corrupt practices occurring.

(10) UNE operates on the basis that its systems and procedures reflect its core principles.

(11) In line with an integrity framework approach this means the ethical values of UNE need to be clearly communicated to all employees and reflected in their behaviour and actions on a daily basis.

Standards of Behaviour

(12) The standards of behaviour expected from all employees are provided under the following principles, as stated in the Code of Conduct:

  1. responsibility to the University;
  2. respect for people;
  3. integrity and public interest;
  4. responsive service; and
  5. economy and efficiency.

Risk Management

(13) For the control of potential fraud and corrupt behaviour UNE uses a risk management approach (see Corporate Risk Management Rule and Corporate Risk Management Framework and Procedures). This process identifies risks associated with the activities of UNE and designs actions that are to be undertaken to mitigate such risks. These actions are then incorporated into UNE's operating systems.


(14) While overall responsibility for the fraud and corruption control plan rests with Management it needs to be very clear that all employees have an obligation to fulfil their responsibilities in implementing the Plan. This includes use of the risk ‐ based approach for fraud and corruption control, compliance with the internal control systems and reporting instances of suspected fraud and corruption.

Responsibility Structure


(15) The Vice-Chancellor and Chief Executive Officer has ultimate responsibility to ensure an effective fraud and corruption control plan is operating that identifies potential risks and takes action to mitigate such risks.

(16) All employees of the University have a responsibility to undertake their duties in accordance with the Plan. The most important factor to ensure success of the Plan is the commitment and attitude of all employees.

(17) The responsibility structure for control of fraud and corruption is depicted by: (click here for diagram)


(18) Is responsible for:

  1. approving the rule;
  2. overseeing and monitoring risk management and risk assessment across the University;
  3. approving and monitoring systems of control and accountability for the University; and
  4. establishing policies and procedural principles for the University consistent with legal requirements and community expectations.

Audit and Risk Committee

(19) Audit and Risk Committee gives advice to Council on:

  1. compliance of UNE and related entities to laws and regulations, including those relating to audit;
  2. procedures, programs and policies of the University relating to compliance;
  3. the University's programs and policies for detection and control of fraud, corruption and other illegal acts;
  4. risk management and risk assessment across the University; and
  5. the approval and monitoring of systems of control and accountability for the University.

(20) Audit and Risk Committee is responsible for reviewing the University's fraud and corruption control plan and satisfying itself that the University has appropriate processes and systems in place to capture and effectively investigate fraud related information.

Audit and Risk Directorate

(21) Is responsible for:

  1. establishing a fraud and corruption control plan;
  2. developing fraud and corruption awareness information;
  3. assuring all new employees receive an induction regarding fraud, corruption and ethics, code of conduct, Gifts and Benefits, Conflicts of Interest and Public Interest Disclosures; and
  4. assuring Senior Executives, Heads of Cost Centres and management receive ICAC training in fraud awareness and ethics.


(22) Is responsible for:

  1. approving the Plan.
  2. ensuring managers and employees are aware of their responsibilities under the Plan;
  3. ensuring managers and employees are aware that fraud and corruption will not be tolerated and all instances of fraud and corruption will be reported to ICAC and where appropriate to NSW Police;
  4. ensuring an effective risk management system is operating;
  5. ensuring appropriate cost effective internal control systems are in place;
  6. ensuring identified fraud and corruption risks are fully addressed;
  7. receiving reports on suspected cases of fraud and corruption and approving any further action plans; and
  8. reporting instances of suspected fraud and corruption to ICAC and where appropriate to NSW Police and the NSW Audit Office.

Senior Executive, Heads of Cost Centres and Managers

(23) Are responsible for:

  1. taking a leadership role in promoting ethical behaviour;
  2. ensuring implementation of the Plan;
  3. ensuring effective risk management;
  4. ensuring internal control systems are operating;
  5. sustaining the ethical culture of UNE;
  6. ensuring employees are aware of the Plan and their responsibilities as part of the Plan;
  7. implementing the Plan within their area;
  8. identifying risks and developing appropriate internal control systems to mitigate those risks;
  9. considering new and emerging risks on a regular basis and where necessary adjusting systems for control of these risks;
  10. ensuring employees understand the purpose of internal controls;
  11. ensuring employees are complying with internal controls; and
  12. reporting suspected fraud and corruption.


(24) Are responsible for:

  1. fulfilling their responsibilities under the Plan;
  2. conducting themselves and performing their duties in accordance with the principles of the Code of Conduct;
  3. complying with UNE's internal control systems, policies and procedures; and
  4. reporting suspected cases of fraud and corruption.

Fraud and Corruption Risk Assessment

(25) UNE uses a risk management approach for the prevention and detection of fraud and corruption and the risk management approach provides a structured and transparent method to managing risk across UNE. The Risk Management Framework provides a detailed methodology built upon the principles inherent in the risk management International Standard ISO 31000:2009, which has become an accepted and proven best practice approach to risk management.

(26) This methodology provides for systematic and consistent identification, assessment and management of risk across UNE. Each business unit should evaluate the potential for risk of fraud and corruption. The Risk Management Framework also defines reporting processes to ensure exposures are managed at an appropriate level across the organisation.

(27) The management of risks includes development and implementation of appropriate policies and internal control systems and communication of requirements to employees.

(28) The establishment of dedicated risk responsibilities via the risk management function has a dual role of supporting the organisation's risk management framework and providing the necessary oversight and reporting on risk management practices within UNE.

Employee Awareness

(29) UNE recognises that the success of the Plan relies heavily on the commitment and attitude of all employees. Employees are those who are permanent, temporary or casual and include contractors and consultants.

(30) Employees have an understanding of how the University and systems operate, what is actually happening, what the weaknesses and failings are and where improvements can be made. Therefore they can make significant contributions to the control of fraud and corruption.

(31) All employees have an obligation to fulfil their responsibilities in implementing the Plan.

(32) The following steps have been taken to ensure employees are aware of fraud and corruption issues:

  1. the Fraud and Corruption Prevention Rule and Fraud and Corruption Control Plan have been communicated to all staff and are available on UNE's policy website.
  2. opportunities are taken in induction programs, staff development activities and team meetings to raise awareness of the risks of fraud and corruption and responsibilities of staff.
  3. employees are kept informed via email notifications of changes to UNE policies and procedures and changes affecting the public sector generally.
  4. employees have been made aware of the:
    1. Code of Conduct;
    2. Corporate Risk Management Rule;
    3. Corporate Risk Management Policy Framework and Procedures;
    4. Public Interest Disclosures Policy;
    5. Public Interest Disclosures Procedures;
    6. Gifts and Benefits Policy;
    7. Conflict of Interests Policy; and
    8. UNE financial related policies.

Student, Client and Community Awareness

(33) Students, clients and the community are made aware of UNE's attitude and strategies concerning fraud and corruption by the publication of the Fraud and Corruption Prevention Rule and Fraud and Corruption Control Plan on the UNE website and by the behaviour of employees in dealing with students, clients and the community.

(34) Through employees undertaking their daily business in accordance with the principles outlined in the code of conduct it will be made clear that UNE acts in an ethical manner and will have the effect of reducing the likelihood of those outside UNE attempting to influence those within UNE.

(35) The provision of information externally allows interested parties to be aware that UNE is active and serious about the control of fraud and corruption.

Notifications Systems

(36) The fraud and corruption control plan includes systems that allow employees, clients and the community to report suspected fraud and corruption.

Reporting by employees

(37) If an employee suspects another employee of committing a criminal offence, acting corruptly or engaging in misconduct then it is the responsibility of the employee to report such behaviour. Reports should generally be made to the employee's immediate manager or another manager in the employee's area. Managers in turn report the matter to the Director Audit and Risk. Employees are encouraged to provide a written summary of the matter.

(38) Employees may have legitimate concerns about reporting to an immediate manager or another manager, even where the matter does not involve the manager. In these cases reports may be made to the Director Audit and Risk who is also the designated Public Interest Disclosures Coordinator. Other options are a Public Interest Disclosures Officer or the Vice-Chancellor and Chief Executive Officer.

(39) Reports can also be made directly to ICAC (refer to the ICAC Act).

(40) The reporting levels are:

  1. immediate manager or manager in your area of work.
  2. Director Audit and Risk —also the designated Public Interest Disclosures Coordinator
  3. the designated Public Interest Disclosures Officers
  4. Vice-Chancellor and Chief Executive Officer
  5. ICAC
  6. Police

(41) The Director Audit and Risk will receive, record and action reports of alleged fraud and corruption. Section 11(2) of the ICAC Act 1988 requires the Vice-Chancellor and Chief Executive Officer to report to the Commission any matter where there is a reasonable suspicion that corrupt conduct has occurred or may occur. In regard to fraud, where it is considered that a criminal offence has occurred the matter is to be reported to NSW Police and the NSW Audit Office.

(42) Reports should be made as soon as there is reasonable suspicion that fraudulent or corrupt conduct has occurred.

(43) In all cases the employee who made the report will be advised of the eventual outcome of the review.

(44) All reports will be treated confidentially and employees making genuine reports will not be prejudiced in their employment.

(45) The Public Interest Disclosure Policy and Procedures explains how employees can report suspected fraud and corruption in such a way as to obtain protection under the Public Interest Disclosures Act 1994 (see section 45 below). Under the Act it is a punishable offence to take detrimental action against an employee who makes a protected disclosure.

Reporting by Students, Clients and the Community

(46) Guidelines on how to lodge a complaint can be obtained from the following UNE sources:

  1. Student Grievance Unit;
  2. AskUNE;
  3. ELIS — English Language and International students;
  4. Facilities Management Service Directorate;
  5. NSW Ombudsmen; or
  6. Human Resource Services Directorate.

(47) In addition students can refer to the UNE Student Complaint Handling and Resolution Policy on the policy webpage.

(48) Any complaints received involving fraud or corruption is to be referred to the Director Audit and Risk.

Public Interest Disclosures

(49) UNE has a clear and unequivocal commitment to supporting and protecting all employees who have acted in good faith in disclosing fraud and corruption within the University.

(50) Protected disclosures can be made to:

  1. the Vice-Chancellor and Chief Executive Officer;
  2. Disclosures Coordinator, being the Director Audit and Risk;
  3. Disclosures Officers (see Public Interest Disclosures Procedures);
  4. the ICAC;
  5. the Ombudsman; or
  6. the Auditor General.

(51) Employees are encouraged to report matters that show or tend to show incidences of fraud, corrupt conduct, maladministration or serious and substantial waste. The University will take all reasonable steps to provide protection to employees from any detrimental action in reprisal for making a protected disclosure in accordance with the Act and UNE's policy and procedures.

(52) Employees should familiarise themselves with the Public Interest Disclosures policy and procedures.

Detection System

(53) The following gives the main features of the detection system used by UNE:

  1. the Audit and Risk Committee approves the annual audit plan which is based on an risk assessed process including discussions with senior management and other key stakeholders;
  2. risk assessments are performed to identify and manage risks (see sections 26 to 29);
  3. management of risks includes development and implementation of appropriate polices and internal control systems;
  4. assurance that effective systems of internal control are operating is gained through Management supervision of those systems and assessment by internal audit;
  5. reports from the computerised system show trends and performance measures which are reviewed by Management and any abnormalities are investigated;
  6. notification systems allow for reports on suspected fraud and corruption to be made from employees, clients and the community (see section 44); and
  7. the Vice-Chancellor and Chief Executive Officer, the Audit and Risk Committee, Chief Financial Officer and the Director Audit and Risk hold discussions with the Audit Office of NSW in terms of the audit procedures that will be carried out during the annual audit. These discussions include detecting material misstatements in the financial statements.

External Notification

(54) When matters come to attention that have the potential to be investigated then UNE is required to report such matters to the appropriate external body, such as ICAC, NSW Police, Ombudsman or the NSW Audit Office.

(55) It is important that reporting takes place as soon as there are reasonable grounds to suspect fraud, corruption or a criminal offence has occurred or is about to occur.

(56) Employees may also make reports directly to these external bodies.

Independent Commission Against Corruption

(57) Under Section 11(2) of the ICAC Act 1988 the Vice-Chancellor must report to ICAC any matters that, on reasonable grounds, concerns or may concern corrupt conduct.

ICAC may be contacted at:
Independent Commission Against Corruption
GPO Box 500
Sydney NSW 2001
Telephone: (02) 8281 5999
Facsimile: (02) 9264 5364

NSW Police

(58) The Vice-Chancellor must report to NSW Police any matters that, on reasonable grounds, concerns or may concern a criminal offence. This includes fraud.

(59) Under Section 316 of the Crimes Act 1900, it can be an offence not to report a serious criminal offence to NSW Police.

NSW Police may be contacted at:
New England Local Area Command
96-98 Faulkner Street
Armidale NSW 2350
Telephone: (02) 6771 0503
Facsimile: (02) 6771 0511

Audit Office of NSW

(60) The Public Finance and Audit Act 1983, section 52D(1) concerning complaints about waste of public money provides that "A public official may complain to the Auditor ‐ General that there has been a serious and substantial waste of public money by an authority or an officer of an authority."

(61) Serious and substantial waste is any uneconomical, inefficient or ineffective use of resources which results in a significant loss or wastage of public funds. The conduct that led to the waste may be authorised or unauthorised. It includes expenditure that should not have been incurred, that exceeded what was required or had no benefit for the organisation.

(62) Audit Office of NSW may be contacted at:

The Audit Office of NSW
1 Margaret Street
Sydney NSW 2000
Telephone: (02) 92757100
Facsimile: (02) 92757200

NSW Ombudsman

(63) Under Section 12(1) of the Ombudsman Act 1974 "any person may complain to the Ombudsman about the conduct of a public authority". Conduct that will be investigated is listed under Section 26(1) of the Act as being conduct that is: contrary to law; unreasonable, unjust, oppressive or improperly discriminatory; in accordance with any law or established practice but the law or practice is, or may be, unreasonable, unjust, oppressive or improperly discriminatory; based wholly or partly on improper motives, irrelevant grounds or irrelevant consideration; based wholly or partly on a mistake of law or fact; conduct for which reasons should be given but are not given; otherwise wrong.

NSW Ombudsman may be contacted at:
Level 24
580 George Street
Sydney NSW 2000
Telephone: (02) 9286 1000
Facsimile: (02) 9283 2911

Investigation Standards

Corruption and Fraud

(64) The Director Audit and Risk is responsible for receiving and actioning reports of alleged fraud and corruption. This action will include coordinating investigations within UNE as per the Fraud and Corruption Protocol attached as Appendix 4 to this document.

(65) The initial investigation is to establish whether there is suspicion on reasonable grounds that the matter concerns or may concern corrupt conduct. If there is such suspicion then the ICAC Act Section 11(2) requires the Vice-Chancellor and Chief Executive Officer to report the matter to ICAC.

(66) ICAC have developed a checklist to assist with reporting matters under section 11 of the ICAC Act. This checklist will be utilised when reporting alleged corrupt conduct to ICAC. If during the initial investigation it appears the matter may involve fraud then the investigation is to cease and NSW Police are to be informed. Fraud is a criminal offence. It must be treated as such from the outset. ICAC and the NSW Audit Office must also be advised.

Conducting Investigations

(67) Once a matter has been reported to the appropriate external authority then that authority will advise whether they or UNE will complete the investigation. The Director Audit and Risk must remain in contact with the reporting authority to ensure the matter is dealt with in a timely manner and agree final reporting scope and timeframes.

(68) If an investigation is to be undertaken internally then options include:

  1. internal auditors;
  2. selected management and/or employees;
  3. external auditors; or
  4. external investigators.

(69) When an investigation is to be conducted the Director Audit and Risk as part of the planning process should consider:

  1. description of the alleged wrongdoing;
  2. terms of reference for the investigation;
  3. specific issues and matters to be examined in depth;
  4. details of initial inquiries;
  5. identification of functional areas and key staff to be involved;
  6. identification of specialist expertise or support required;
  7. expected costs and time period for the investigation;
  8. milestones, key review points and report ‐ back dates;
  9. possible outcome/s; or
  10. report to the person who initially raised the matter.

Rights of Individuals

(70) A UNE employee who is the subject of fraud or corruption allegations is considered innocent unless and until proven guilty.

(71) An employee has the right not to have details of the allegation disclosed to others or discussed by others not concerned with the matter.

Conduct and Disciplinary Standards

(72) UNE's Code of Conduct outlines the requirements and expected standards of behaviour of employees in their employment in UNE and provides guidance on resolving ethical issues that may occur in the workplace.

(73) A breach of the Code may lead to performance management or disciplinary action. Such action could range from counselling to dismissal.

(74) The Code applies to all persons undertaking work for UNE in either a paid or unpaid capacity.

Top of Page

Section 4 - Appendix 1: A selection of common methods and types of fraud

(75) (from the NSW Auditor ‐ General ' s Report to Parliament, Volume 2, March 1994, " Fraud Control: Developing an Effective Plan " )

  1. payment for work not performed
  2. forged endorsements
  3. altering amounts and details on documents
  4. collusive bidding
  5. overcharging
  6. writing off recoverable assets or debts
  7. unauthorised transactions
  8. selling information
  9. altering stock records
  10. altering sales records
  11. cheques made out to false persons
  12. false persons on the payroll
  13. theft of official purchasing authorities such as order books
  14. unrecorded transactions
  15. transactions (expenditure/receipts/deposits) recorded for incorrect sums
  16. cash stolen
  17. supplies or equipment stolen or borrowed without authority
  18. IOUs used in petty cash
  19. substituting old goods for new
  20. sales not recorded at all
  21. false official identification used
  22. damaging or destroying documentation
  23. using copies of records and receipts
  24. using imaging and desktop publishing technology to produce apparent original invoices
  25. charging incorrect accounts with amounts stolen
  26. transferring amounts between accounts frequently
  27. delayed terminations from payroll
  28. bribes
  29. over claiming expenses
  30. skimming odd cents and rounding
  31. running a private business with official assets
  32. using facsimile signatures
  33. false compensation and insurance claims
  34. stealing of discounts
  35. selling waste and scrap
Top of Page

Section 5 - Appendix 2: Possible indicators of the existence of fraud

(76) (from the NSW Auditor ‐ General ' s Report to Parliament, Volume 2, March 1994, " Fraud Control: Developing an Effective Plan " )

  1. missing expenditure vouchers and unavailable official records
  2. crisis management coupled with a pressured business climate
  3. excessive variations to budgets or contracts
  4. refusals to produce files, minutes or other records
  5. increased employee absences
  6. borrowing from fellow employees
  7. an easily led personality
  8. covering up inefficiencies
  9. no supervision
  10. staff turnover is excessive
  11. figures, trends or results which do not accord with expectations
  12. bank reconciliations are not maintained or can't be balanced
  13. excessive movement of cash funds
  14. multiple cash collection points
  15. remote locations
  16. unauthorised changes to systems or work practices
  17. employees with outside business interests or other jobs
  18. large outstanding bad or doubtful debts
  19. employees suffering financial hardships
  20. employees apparently living beyond their means
  21. heavy gambling habits
  22. signs of drinking or drug abuse problems
  23. conflicts of interest
  24. lowest tenders or quotes passed over with scant explanations recorded
  25. employees with an apparently excessive work situation for their position
  26. managers bypassing subordinates
  27. subordinates bypassing managers
  28. excessive generosity
  29. lack of clear financial delegations
  30. secretiveness
  31. apparent personal problems
  32. marked character changes
  33. poor morale
  34. excessive control of all records by one officer
  35. unusual working hours on a regular basis
  36. refusal to comply with normal rules and practices
  37. non taking of leave
  38. excessive overtime
  39. large backlogs in high risk areas
  40. lost assets
  41. unwarranted organisation structure
  42. absence of controls and audit trails
Top of Page

Section 6 - Appendix 3: Definition and examples of corrupt conduct

What is Corrupt Conduct?

(77) (extract from ICAC publication "What is corrupt conduct?", located at under "About Corruption")

(78) "Corrupt conduct, as defined in the Independent Commission Against Corruption Act 1988, is deliberate or intentional wrongdoing, not negligence or a mistake. It has to involve or affect a NSW public official or public sector organisation.

(79) While it can take many forms, corrupt conduct occurs when:

  1. a public official improperly uses, or tries to improperly use, the knowledge, power or resources of their position for personal gain or the advantage of others;
  2. a public official acts dishonestly or unfairly, or breaches public trust; or
  3. a member of the public influences, or tries to influence, a public official to use his or her position in a way that is dishonest, biased or breaches public trust."

(80) "If the ICAC is to consider investigating the matter, the conduct must also meet the conditions set out in section 9 of the ICAC Act. These conditions are that the conduct could constitute or involve:

  1. a criminal offence;
  2. a disciplinary offence;
  3. constitute reasonable grounds for dismissing or otherwise terminating the services of a public official; or
  4. in the case of a member of the NSW Parliament or local government councillor substantial breach of an applicable code of conduct."

(81) "The full definition of corruption which applies to the ICAC is detailed in sections 7, 8 and 9 of the ICAC Act."

(82) UNE Specific Examples of Corruption:

  1. acceptance of bribes or other benefits to show bias towards suppliers or contractors;
  2. showing favouritism in appointments or promotions;
  3. provision of submissions to management in support of an activity where you have an undisclosed financial or personal interest;
  4. use of UNE motor vehicles for private purposes;
  5. use of UNE equipment, such as photocopiers, telephones or computers, to undertake private business; or
  6. use of confidential information for private purposes.
Top of Page

Section 7 - Appendix 4: - Fraud and Corruption Protocol


(83) Currently the University has the following Policy and Procedures in place, which deal with the reporting of Fraud and Corruption, specifically corrupt conduct and maladministration:

  1. Fraud and Corruption Prevention Rule;
  2. Fraud and Corruption Control Plan;
  3. Public Interest Disclosures Policy; and
  4. Public Interest Disclosures Procedures.

(84) The Public Interest Disclosures Policy, in addition to corrupt conduct and maladministration also refers to serious and substantial waste of public money and government information contravention.

(85) The Fraud and Corruption Prevention Rule and Fraud and Corruption Control Plan require staff to report instances of corrupt conduct and maladministration to the Director Audit & Risk. The Director Audit & Risk is also the Disclosure Coordinator under the Public Interest Disclosure Policy and Procedures, which is the primary position to which Public Interest Disclosures can be made.

The Protocol

(86) Upon receipt of an allegation of fraud and corruption (corrupt conduct or maladministration) the Director Audit & Risk will:

  1. determine whether the disclosure constitutes a disclosure under the Public Interest Disclosure Act 1994;
  2. if the matter is considered a disclosure under the Public Interest Disclosure Act 1994 then advise the Vice-Chancellor as required by the Public Interest Disclosure Policy and Procedures;
  3. if not a Public Interest Disclosure then advise the Vice-Chancellor, Chief Legal and Governance Officer and Chair Audit and Risk Committee that an allegation has been made;
  4. determine the veracity of the alleged fraud. This may involve an initial investigation into the allegation to determine whether it has substance;
  5. once the investigation is completed, provide a written report to the Vice-Chancellor;
  6. where an allegation of fraud has substance notify the Police;
  7. immediately notify ICAC as required by section 11(2) of the Independent Commission against Corruption Act 1988;
  8. the NSW Audit Office should also be notified;
  9. if a public interest disclosure, advise the complainant of the outcome of the investigation;
  10. where appropriate, provide a copy of the investigation report to ICAC, NSW Audit Office and the Police;
  11. provide a copy of the report to the Audit & Risk Committee for their information, except where it is a Public Interest Disclosure; and
  12. monitor the implementation of any business process recommendations arising from the investigation through Audit Issues Register process.
Top of Page

Section 8 - Definitions

(87) Bribe - The act of paying a secret commission to another individual. It is also used to describe the secret commission itself.

(88) Code of Conduct - A document (variously referred to as a 'Code of Ethics', 'Code of Behaviour' and various other titles) broadly communicated within the entity setting out the entity's expected standards of behaviour.

(89) Control (also 'internal control') - Processes which manage risks.

(90) Corrupt Conduct - Refer to Appendix 3.

(91) Entity - A corporation, government agency, not-for-profit organisation or other entity engaged in business activity or transacting with other entities in a business-like setting.

(92) Fraud - means an intentional act by one or more individuals involving the use of deception to obtain an unjust or illegal advantage.

(93) Fraud and corruption risk assessment - The application of risk management principles and techniques in the assessment of the risk of fraud and corruption within an entity.

(94) Fraud and corruption control plan -A document summarising an entity's anti-fraud and anti-corruption strategies.

(95) Investigation - A search for evidence connecting or tending to connect a person (either a natural person or a body corporate) with conduct that infringes the criminal law or the policies and standards set by the affected entity.

(96) Risk - Circumstances which affect the achievement of objectives.

(97) Secret commission - A payment in money or in kind which will or is intended to cause a person to act in a way that is contrary to the interests of his or her principal or employer, is contrary to the principal's or employer's policy on a given issue or is against the public interest. Secret commissions, by definition, will typically be paid without the knowledge or express or implicit agreement of the principal or employer and include payments intended to influence the outcome of a specific action or event as well as the actions generally over a period of time.

(98) Senior management - Personnel associated with an entity at the senior management, Director or principal level and who have authority over the direction or management of the entity.