This archived Web page remains online for reference, research or recordkeeping purposes. This page will not be altered or updated. Web pages that are archived on the Internet are not subject to the Government of Canada Web Standards. As per the Communications Policy of the Government of Canada, you can request alternate formats of this page on the Contact Us page.
The Policy on Internal Control does not introduce new controls or require more controls; rather the policy aims to improve the consistency in how internal controls are managed
The Policy on Internal Control took effect April 1, 2009, and reaffirms the responsibility of the Deputy Head, as accounting officer, for ensuring the maintenance of effective risk-based systems of internal control in the following broad areas: effectiveness and efficiency of programs; operation and resource management; safeguarding of assets; reliability of financial reporting; compliance with legislation, regulation, policies and delegated authorities.3
The Policy on Internal Control does not introduce new controls or require more controls; rather the policy aims to improve the consistency in how internal controls are managed and supported by appropriate risk-based information.
The Policy on Internal Control seeks to:
LAC must be ready to meet the requirements of the Statement of Management Responsibility Including Internal Control over Financial Reporting for the year ending 2011–2012
In the Canadian federal government, Deputy Heads have always had the responsibility to ensure that internal controls are regularly reviewed in the context of risk, ensuring that those internal controls are balanced against and proportional to the risks they mitigate. Deputy Heads and their CFOs sign an annual letter of representation to the Auditor General and the Deputy Receiver General in support of the Public Accounts covering their responsibilities for internal control and assertions over the integrity of financial information.4
One of the requirements flowing from the Policy on Internal Control is the revised Statement of Management Responsibility Including Internal Control over Financial Reporting. This statement, signed by the Deputy Head and the CFO, will preface the departmental financial statements and will acknowledge management's responsibility for:
The Statement of Management Responsibility Including Internal Control over Financial Reporting will be implemented by departments, in clusters, over a three-year period from 2009–2010 through 2011–2012.5 LAC must be ready to meet the requirements of the Statement for the year ending 2011–2012.
Internal control over financial reporting (ICFR) is a sub-set of the broader system of internal control. Financial reporting refers to financial reports and disclosures that are both internal and external to a department. ICFR operate to provide reasonable assurance regarding the reliability of financial information and statements prepared for internal and external purposes. ICFR is intended to help ensure the integrity and usefulness of the financial statements.
ICFR helps provide management and users of financial statements with an understanding that:
The annual assessment contemplated in the Policy on Internal Control is intended to be a management self-assessment process led by the CFO and supported by senior departmental managers (i.e., managers reporting directly to the Deputy Head).6 This requires the development and execution of a risk-based multi-year assessment plan to guide the assessment of the effectiveness of the design and operation of key controls over financial reporting. The pace and scope of the multi-year assessment plans are also based on risk. Each annual assessment can be considered a component of the multi-year assessment plan that is developed based on the following:
The results of the annual assessment and action plan are to be summarized in an annex to the Statement of Management Responsibility Including Internal Control over Financial Reporting. In this summary, the Deputy Head and the CFO will provide a description of significant findings of the ICFR assessed in the given fiscal year per the assessment plan and management's plans to address any significant gaps or weaknesses identified.
3 Financial Administration Act, paragraph 16.4(1)(b)
4 Policy on Internal Control, paragraph 3.4
5 Policy on Internal Control, paragraph 1.2
6 In the context of Library and Archives Canada, this includes: ADM Corporate Management Sector, ADM Documentary Heritage Collection Sector, ADM Programs and Services Sector, Corporate Secretary, Chief Financial Officer, DG Communications, and Senior Advisor. While the Chief Audit Executive (CAE) reports to the Deputy Head, the role of the CAE in the annual assessment is to provide assurance in relation to the department's system of internal control, including as this relates to financial reporting. This is done by means of the risk-based audit work of the internal audit function and through work designed to support a more holistic view on departmental governance, risk management, and control arrangements.