Controls

<< Click to Display Table of Contents >>

Navigation:  Payroll Module > Payroll - Further Topics >

Controls

Controls are put into any payroll system to ensure that:

only authorized personnel have access to confidential information

only authorized personnel process authorized transactions

employees are paid and receive the correct amounts for their labour

 

Physical Controls

There are a number of physical controls that can be implemented that assist in controlling the system, amongst these are limiting access:

on a standalone computer to the computer room or on a network to the server and workstations

by using Windows password protection against information being accessed on the computer directly or through the network

to data capture sheets, pay rate documentations, reports and other confidential payroll information

Backups are secured against unauthorized access

 

Care should also be taken to ensure that:

All discarded reports and papers are shredded and destroyed

Electronic copies of reports are be secured

Backups are secured against unauthorized access

 

Password Controls

Care should also be taken to ensure that:

Each user of the system uses a secure password with sufficient characters, numerics and special characters so as to make it difficult to compromise

Passwords are kept confidential and not shared

Passwords are changed regularly

Password parameters set to limit each User to specified menu options, tables and forms

Password parameters set to limit ability to view certain Transaction Codes

 

Data Controls

To protect against data loss or corruption ensure that:

you backup your payrolls every period.  We recommend that a history of backups is maintained.  This can be done on a cloud based platform, your hard disk drive as well as on other external media.  

regularly do Backups of the database (remembering to backup all payrolls).  One backup once a period has been paid, but before period end, and ideally one or more during processing during that period.

keep updating antivirus software and virus definitions on your computer

that there is sufficient free space on the hard disk drive for the software to work and store information.

do a backup after processing and printing salaries on the hard drive and on any external storage device in case your machine is stolen or the hard drive crashes

 

Data Capture - Batch Input/ Control Totals

The 'Batch Input' facility specifically has batch controls that prevent updating of records until the batch total entered prior to processing agrees with what has been entered. If 'Batch Input' is not being used, then it is possible to compute the total value of transactions from the source documents (control totals) and compare the totals with that detailed on the 'Period Journal - Transaction Codes' report.

All figures on the payroll should be rigorously supported by documents of authority e.g. employment contracts, pay rate change sheets, allowance, overtime, leave and loan forms.  

The data processed should be checked against supporting documents

Make sure that the total number of employees processed on the payroll corresponds with the number of staff employed

Always run a calculation routine before doing your bank transfer or running reports

Make sure that your journal is balancing off before printing any reports or finalizing your payroll

Print reports before doing a period end, especially your payslip summary, bank transfer report, receipts schedule, coinage analysis report.

Make sure that your total wage bill matches what you transferred to the bank or what is being printed on your receipts schedule

 

Payroll Lock

It is possible to lock the system after certain functions have been performed.

 

Control Checks

It is important to regularly perform checks on the payroll.  This keeps payroll officers alert.  It also reduces the likelihood of:

fraud

occasional error that may occur through negligence or mistake, and

may highlight repetitive error that may be occurring

 

It is especially important to select a small random sample (at least one employee) from each payroll each period for thorough checking.  Agree:

the basic to authorized pay rates,

overtime and allowances to relative authorizations,

authenticity and accuracy of deductions

every detail of the the PAYE computation.  Extract a 'Tax Display' and go through and agree each step of the computation

leave balance

loan balance

 

Control checks also include:

checking the total number of employees processed on the payroll agrees with the physical number of employees

checking the total basic pay amount paid to employees agrees to an authorized basic pay schedule

checking the total payroll overtime hours agrees to total hours approved

checking the total allowances processed agrees to approval documents

reconciling totals from one period to another e.g. basic, overtime investigating any changes

reconciling the Period Journal Control report net paid amount to total payments made to employees by cash, cheque or transfer.

examination of the Period Journal Variance report for reasonableness.  Compare totals, number of employees and percentage variances for each transaction code.

 

Reports

·

Print reports before doing a period end, especially your payslips, payslip summary, bank transfer report, receipts schedule, coinage analysis report

·

Make sure all reports are properly printed and tally with what is on the payroll

·

Print control reports like period journal control reports, and other reports which you then can check against to see if any changes have been done

View the 'Audit' report from time to time to check whether there are any unusual activities on the payroll.  The 'Audit' report shows what was actually transacted, viewed, or processed on the payrolls including who and what a user did on the system including what payrolls were opened, what employees were worked on, what tables were opened, and what routines were run.

View the 'Master File Changes' or security log report.  This report highlights the changes made to the employee masterfiles

The Period Control Journal Report can be printed as a useful means of seeing what transactions have been entered using the different processing methods.  To view this report, Go to 'View', then 'Period Journal', then 'Control' menu options.  View the report is a journal that breaks by processing method; Payslip Input, Bulk Input, Hourly Input, etc. This can assist in supervising payroll clerks.

There are also exception reports that can highlight problematic areas.  To access these reports Go to 'View' and select the 'Exceptions' menu option. This brings up options like 'Audit', 'Paye' etc

Care should also be taken to ensure that all discarded reports and papers are shredded and destroyed.

Electronic copies of reports are be secured

 

Risk Areas

'Ghost employees'

Limit the ability of unauthorized staff to restore a payroll backup

Limit unauthorized staff from being able to terminate and re-engage employees

Ensure that the net paid amount on the payroll authorized by management agrees to the actual amounts paid to employees by cash, cheque and bank transfer

Physically check the existence of employees that are on the payroll

 

Rates of Pay

Password protect the employee master pay rate field

Reconcile the total Basic Pay for a period against a schedule of authorized pay rates

Randomly check (as detailed above) the rate of pays of a sample of employees (at least one employee) each period

 

Overtime

Reconcile the overtime hours for each category of overtime against authorized overtime payment sheets

Randomly check (as detailed above) for each category of overtime the number of hours awarded.

 

Manipulation of the leave balance

 

Manipulation of loan balances and repayments