Electronic Funds Management Policy
Department of Education Guidelines
- Internet (electronic) banking offers an online facility (via a website) which provides users with the ability to undertake various banking functions, such as checking account balances, transferring funds between accounts, Direct Debit/Credit and BPay.
- An important feature of dedicated internet banking software, and in particular the ability to process creditor/payroll and related payments through Direct Debit/Credit and BPay, is that the payment is directed to one creditor/payee only and the inclusion of detailed audit trails or transaction reports results in a high level of data security and validation.
- Other forms of internet banking are effectively on a ‘pay anyone’ basis, e.g. Direct Debit from the school’s Official Account, using the school level payroll as distinct from utilising dedicated payroll software from a financial institution. As robust data security and validations are absent with this type of payment method, this potentially raises the financial risk for the school in relation to:
- the setting up of payee details, and
- the transfer of funds from the Official Account to valid and accurate payee account(s).
- In order to minimise these risks, schools should be reminded of the compliance requirements in the Education Training and Reform Regulations 2007, section 37(1) Revenue and Expenditure which outlines that all cheques and negotiable instruments drawn on any account kept under the control of a school council must be authorised by the principal and a person nominated by the school council for that purpose. Payments through internet banking software are effectively just another form of payment and as such, any payments must still be authorised by two people. A single authoriser of payments via internet banking software is a clear breach of the regulations governing the payment of accounts by schools.
- Furthermore, section 4 outlines that the school Business Manager cannot be nominated as an authoriser under this regulation even if he or she is a member of the school council.
- The various internal controls that need to be considered include:
- proper authorisation and approval of both the initial setting up of account details and any subsequent transactions against the account(s)
- completeness and accuracy of details so they can be verified by a responsible officer
- security and confidentiality of data at all times
- documentation kept by the school confirming all transactions related to the account(s) such as purchase orders, payment vouchers, payroll listings, screen prints of payee(s) details, screen prints of transaction(s) confirmation details, relevant CASES21 reports
- the appropriate segregation of duties to ensure and maintain the accuracy and legitimacy of accounts and transactions
- bank imposed security issues.
- Direct Debit
- A Direct Debit facility effectively allows an external source, e.g. financial institution or supplier, to remove or ‘sweep’ funds pertaining to a pre-arranged amount and date from the school’s Official Account on a regular or ad hoc basis.
- Routine payments are regular in amount and/or due date, for example monthly operating lease or annual insurance premium payments, while ad hoc payments would occur on an ‘as needs’ basis with differing dollar amounts, e.g. payments for teacher requisites or classroom materials.
- From an internal control viewpoint, the school should ensure that it receives a tax invoice/statement from each supplier prior to the Direct Debit ‘sweep’ date each month in order to confirm the accuracy of all payment’s as well as any cash flow considerations.
- Prior to agreement with a supplier to utilise the Direct Debit payment option, the school should ensure that it receives in writing from the supplier all relevant details of the Direct Debit. These details include the actual amount, the day/date on which the payment will be processed, and the regularity of the payment. The school also needs to ensure that the supplier will continue billing the school. If the direct debit differs in amount or timing, the supplier must be contacted immediately and the issue resolved or the direct debit cancelled.
- Information required to be kept:
- All details provided by the supplier relating to the amount, date of Direct Debit and regularity of the payment
- Original payment approval usually via an Application for Direct Debit Form signed by Principal and a designated signatory of School Council
- Schedule and timing of deductions (if not included in the above)
- All related billing and statement details
- Relevant CASES21 finance reports
The school currently makes payments via BPay and the following is observed and adhered to:
- When paying accounts using BPay the school has full control of the payment date and amount of the expenditure. Schools must ensure that suppliers’/creditors’ accounts are always paid by the due date and for the correct amount.
- BPay is a secure electronic banking product identified on a supplier/creditor account with a unique biller code. The payee selects either the internet or telephone option to transfer funds from the school’s Official Account to the supplier and follows a series of steps to attach the amount owed to the creditor’s account and biller code.
- With BPay transactions the standard controls related to creating an order, setting up the commitment and determining the date and amount for the transfer can be easily maintained by schools.
- Schools will receive an invoice in the normal manner. The invoice should then be attached to the pre-approved purchase order and forwarded to the principal for approval for payment. Once payment has been made using BPay, the BPay receipt number and details of the transaction should be printed from the internet banking website. This printed receipt should then be attached to the original payment approval/invoice.
- If the phone is used to action a BPay payment, the BPay receipt number and date of transaction should be noted on the original payment approval/invoice information.
Information required to be kept:
- Original signed payment approval and creditor invoice
- Printout of BPay receipt (if processed through the internet), clearly displaying BPay receipt reference number and date of transaction
- Relevant CASES21 finance reports
- Local Policy
At Glen Waverley South Primary School, the policy for electronic funds management is based on the recommended DET guidelines detailed above.
- CommBiz will be used as the recommended internet banking facility and it will be set up to include various levels of authorisation for each transaction batch as determined by Audit requirements.
The Business Manager will be the “confirmer”
The Principal, the Assistant Principal and one delegated School Council Representative will be the “authorisers”. Every electronic funds transaction will require any two of these three “authorisers”.
- Payment batches will be prepared by the Business Manager or a delegated officer. These batches will be uploaded to the CommBiz internet banking website by the Business Manager who will check the correctness of each payment.
- Payments will be confirmed by the person registered and approved by School Council as the ‘Confirmer’ of internet banking transactions. It is the responsibility of the person authorised to confirm transactions on the CommBiz internet banking site, to ensure that all transactions are valid.
- Final approval of all transactions will be authorised by any two of the three registered School Council approved representatives. These people will in most instances be the Principal, the Assistant Principal and a School Council member.
- Existing bank-imposed restrictions or security measures will be adhered to.
- All transactions will be authorised according to DET guidelines and audit requirements.
- For payroll payments the Business Manager will:
- obtain the signature of the Principal or Assistant Principal, on the timesheets and payment voucher.
- For creditor payments the Business Manager will:
- verify that the details on the tax invoice are identical to the details on CASES21, particularly the BSB and account number details
- print the payment voucher for each creditor transaction
- attach the payment voucher to the original tax invoice and purchase order.
- Print the bank transaction report for each creditor payment batch and file for audit purposes.
- For creditor payments the Principal and Assistant Principal or School Council representative, will check the accuracy of each payment and then sign each payment voucher.
- For each transaction, the bank transaction report will be printed and retained displaying the date of the transaction, the recipient’s Account Name, BSB, account number and amount paid.
- In the event of extended absence of the Principal or Assistant Principal, the School Council nominee will act as the second “authoriser” of transactions.
- In the event of extended absence of the Business Manager, an appropriately qualified and authorised replacement will be responsible for the duties of the Business Manager.
- The principal will sign and date each internet transaction receipt which will be kept for audit purposes.
- All documentation will be safely and securely stored.
- Records presented to the Finance Committee will be as per the Finance Policy.
- Records to be kept include:
- The School Council minutes that record prior approval utilisation of the ‘pay anyone’ basis of internet banking. This will include the specific individuals it applies to with all relevant details such as BSB number, account number, payroll number, etc.
- Relevant CASES21 finance reports.
The local policy is to be read in conjunction with the DET policy. Where a conflict occurs between the two policies, the DET guidelines will take precedence.
Local Internet Banking Procedure Summary
- Internet banking transactions are prepared and recorded in CASES21 by the Business Manager, with transaction reports/vouchers printed for signature approval by any two of the three authorisers – the Principal, the Assistant Principal and the School Council nominee.
- The Business Manager then prepares the internet banking transactions for processing and authorisation and acts as the “confirmer”, using the CommBiz software and the Business Manager’s CommBiz token.
- Any two of the three “authorisers” - the Principal, Assistant Principal and School Council Nominee, then authorise the internet banking transactions using the CommBiz software and their unique, individual CommBiz token.
The school’s CommBiz token holders are:
- The Business Manager (admin, preparation and confirmation rights)
- The Principal (Authorisation rights)
- The Assistant Principal (Authorisation rights)
- A School Council Nominee (Authorisation rights)
CommBiz tokens are either kept by the token holder or in the fire safe on the school premises. The password to activate each CommBiz token is known only to the respective CommBiz token holder.
This policy will be reviewed and minuted at School Council each year.
Circular S385-2007 School Internet Banking Guidelines
Victorian Government Schools Reference Guide
Guidelines for Electronic Payment of Accounts
This policy was last ratified by School Council on: 15 February 2021