Every charitable organization, regardless of size, should have clear policies and procedures that allow staff, volunteers, or clients of the organization to report suspected wrongdoing within the organization without fear of retribution. Information on these policies should be widely distributed to staff, volunteers and clients, and should be incorporated both in new employee orientations and ongoing training programs for employees and volunteers. Such policies can help boards and senior managers become aware of and address problems before serious harm is done to the organization. The policies can also assist in complying with legal provisions that protect individuals working in charitable organizations from retaliation for engaging in certain whistle-blowing activities. Violation of such provisions may subject organizations and the individuals responsible for violations to civil and criminal sanctions.

Policies that protect people who report wrong-doing—sometimes known as “Whistleblower
Protection Policies” or “Policies on Reporting of Malfeasance or Misconduct”—generally cover suspected incidents of theft; financial reporting that is intentionally misleading; improper or undocumented financial transactions; improper destruction of records; improper use of assets; violations of the organization’s conflict-of-interest policy; and any other improper occurrences regarding cash, financial procedures, or reporting.

• Every organization should have a confidential process for addressing complaints or reports of suspected illegal or unethical activities.
• Staff and volunteers need to feel safe to report unacceptable acts. 
• Retaliation against whistleblowers can be a criminal act that applies to all organizations.
• Appropriate internal controls can help alleviate the occurrence of unacceptable acts.

• The Sarbanes-Oxley Act (SOX), Section 1107, makes it a federal crime to retaliate against whistleblowers in certain circumstances.
• IRS Form 990 asks whether the organization has a written whistleblower policy.

Some states have enacted laws that provide protections for employees who report misconduct under specific conditions. Federal law prohibits employment related retaliation by all entities—including charitable organizations—against whistleblowers who provide information on certain financial crimes delineated under federal law.¹ Whistleblowers who report suspected tax fraud to the IRS are also protected from retaliation.²

¹ The Sarbanes-Oxley Act of 2002) Pub. L. No. 107-204, 18 U.S.C. 1513(e).

² Tax Relief and Health Care Act of 2006, § 406, P.L. 109-432

1. Do we have a process in place whereby individuals can report concerns without fear of retaliation? If not, what process should we implement? If so, does this process need to be strengthened? How?
2. Do our orientation and training materials include information about the process and to whom reports of suspected wrongdoing should be made? 
3. Do we understand fully what “retaliation” means?

6  Protection of Assets