Bulletin Board - Document Comments

Bulletin Board - Review and Comment

Step 1 of 4: Comment on Document

How to make a comment?

1. Use this Protected Document to open a comment box for your chosen Section, Part, Heading or clause.

2. Type your feedback into the comments box and then click "save comment" button located in the lower-right of the comment box.

3. Do not open more than one comment box at the same time.

4. When you have finished making comments proceed to the next stage by clicking on the "Continue to Step 2" button at the very bottom of this page.

 

Important Information

During the comment process you are connected to a database. Like internet banking, the session that connects you to the database may time-out due to inactivity. If you do not have JavaScript running you will receive a message to advise you of the length of time before the time-out. If you have JavaScript enabled, the time-out is lengthy and should not cause difficulty, however you should note the following tips to avoid losing your comments or corrupting your entries:

  1. DO NOT jump between web pages/applications while logging comments.

  2. DO NOT log comments for more than one document at a time. Complete and submit all comments for one document before commenting on another.

  3. DO NOT leave your submission half way through. If you need to take a break, submit your current set of comments, take a note of where you up to and return later to make a further submission.

  4. DO NOT exit from the interface until you have completed all three stages of the submission process.

  5. If you would like a copy of the comments you made via the Bulletin Board, please email policy@rmit.edu.au and specify which document you provided feedback on and a copy of your submission will be emailed to you.

 

Fraud and Corruption Control Policy

Section 1 - Purpose

(1) The purpose of this policy is to encourage the highest level of integrity in organisational culture as an essential part of RMIT’s management and corporate governance framework.

(2) The policy aims to promote a culture of honesty, integrity and professionalism, and reinforce RMIT’s zero tolerance for fraud and corruption.

(3) The policy supports RMIT’s legislative obligations, including:

  1. Public Interest Disclosures Act 2012 (Vic)
  2. Corporations Act 2001 (Cth)
  3. Victorian Independent Broad-based Anti-corruption Commission (IBAC) Act 2011 (Vic)
  4. Crimes Legislation Amendment (Combatting Foreign Bribery) Act 2024.

(4) This policy supports RMIT’s commitment to the United Nations Sustainable Development Goals (SDG), particularly SDG 16 – Peace, Justice and Strong Institutions by reducing organisational risk and strengthening measures against fraud and corruption.

Top of Page

Section 2 - Overview 

(5) RMIT’s fraud and corruption control system aligns with the Australian Standard for Fraud and Corruption Control (AS8001:2021) and is comprised of:

  1. this policy suite, including the Fraud and Corruption Control Procedure, Whistleblower Procedure, and Fraud and Corruption Investigation Instruction
  2. Code of Conduct
  3. Conflict of Interest Policy
  4. Risk Management Policy and Framework
  5. Gifts, Benefits and Hospitality Policy
  6. Workplace Behaviour Policy
  7. Student Conduct Policy
  8. Procurement and Expenditure Policy
  9. Business Expenses Policy
  10. Delegations of Authority Policy.

(6) This policy defines the illegal or unacceptable, high risk behaviours that constitute fraud and corruption, and reinforce RMIT’s position of no tolerance for such conduct. It outlines the principles guiding the prevention, detection and management of fraud and corruption at RMIT, and lists the responsibilities of those in its scope.

Top of Page

Section 3 - Scope

(7) This policy applies to RMIT University Council members, employees, researchers, students and contractors of the RMIT Group, and any other persons working with or on behalf of the RMIT Group who are notified of the need to comply with this policy (hereafter referred to as ‘employees’ for brevity). The RMIT Group includes RMIT University and its controlled entities.

(8) The provisions in this policy take precedence over other RMIT policies when it comes to the improper conduct of employees if there is the potential that the matter may need to be investigated by the police, the Independent Broad-based Anti-corruption Commission (IBAC), or other external regulatory agency.

Top of Page

Section 4 - Policy

(9) At RMIT, corrupt conduct is any conduct that:

  1. adversely affects the honest performance of functions by employees or RMIT 
  2. constitutes or involves the dishonest performance of functions by employees or RMIT, whether directly or indirectly
  3. knowingly or recklessly causes a breach of public trust
  4. involves the misuse of information or material belonging to RMIT
  5. attempts to improperly influence a local or foreign public official through bribery
  6. is a conspiracy or attempt to engage in the above conduct.

(10) Fraud is:

  1. dishonest activity causing actual or potential financial loss to RMIT, including theft of money or other property by employees or persons external to RMIT
  2. deliberate falsification, concealment, destruction or use of falsified documentation
  3. improper use of information or position for personal financial benefit or the benefit of others.

Principles

(11) RMIT expects, encourages and supports employee ethical behaviour, and does not tolerate fraud or corruption.

(12) RMIT maintains trust with the public by exhibiting the highest standards of integrity in its operations and decision making. It recognises that fraud and corruption can create reputational and financial damage to RMIT which undermines public confidence, employee and student productivity and morale.

(13) RMIT takes a risk-based approach to managing fraud and corruption through the risk management framework which requires all risks relating to fraud and corruption to be identified, assessed, responded to and monitored on an ongoing basis.

(14) The effectiveness of the mechanisms used to control fraud and corruption risks are regularly evaluated and reported to the Audit and Risk Management Committee.

Identifying fraud and corruption risks

(15) Fraud and corruption is one of the broad risk domains in RMIT’s comprehensive risk management framework.

(16) Senior managers in high risk areas apply RMIT’s risk management tools and activities to identify potential opportunities for fraud and corruption in their area of responsibility.

(17) Identified fraud and corruption risks are recorded in the enterprise risk management system. Identified risks inform the development of prevention strategies. Examples of high risk areas and activities are included in Schedule 1 – Examples of Corrupt Conduct, Fraud, Public Interest Disclosures and High Risk Areas.

Prevention

(18) RMIT prevents fraud and corruption with:

  1. transparent, accountable and responsible decision making
  2. strong governance practices and policies
  3. training and awareness raising for employees and business areas, particularly around high risk activities
  4. effective risk management and reporting
  5. security of physical assets and facilities to protect from theft
  6. an effective information security management system.

Detection

(19) RMIT undertakes activities that recognise whether fraud or corruption has occurred or is occurring. These include:

  1. monitoring and regularly reviewing systems and accounting reports for suspicious or unusual activity
  2. post-transactional reviews
  3. monitoring and reviewing approval processes to ensure alignment with the Delegations of Authority Policy
  4. appropriately resourced internal and external audit capabilities
  5. mechanisms to enable confidential reporting of suspected fraud or corruption.

(20) Staff investigating other types of complaints, such as employee or student misconduct, are trained in recognising complaints about fraud and corruption and the need to notify Central Complaints and Investigations if there is a financial element to the misconduct they are investigating.

Response

(21) RMIT ensures procedural fairness when dealing with fraudulent or corrupt conduct allegations. Refer to the Fraud and Corruption Investigation Instruction for details on the investigation process.

(22) Investigations of potential fraud and corruption are handled by suitably qualified and trained employees or contractors, and in accordance with the relevant legislation, enterprise agreement and RMIT policies and procedures.

(23) The preliminary assessment of an allegation may determine that the matter needs immediate referral to the police or the Victorian Independent Broadbased Anti-Corruption Commission for them to conduct the investigation (see clause 29 below).

(24) The outcome for employees found to have engaged in fraud or corruption is determined:

  1. in accordance with the relevant enterprise agreement, the Managing Conduct Procedure, and any other relevant policies
  2. by the relevant executive as defined in the Delegations of Authority Schedule 3 – People Delegations.

(25) RMIT may take reasonable legal action to reclaim any resources misappropriated through fraud or corruption where appropriate and determined by RMIT’s General Counsel.

(26) RMIT complies with the laws of the countries in which it operates. Where a conflict arises between legislative requirements that apply to RMIT operations relating to fraud and corruption control and public interest disclosure, RMIT adopts the more onerous requirement.

Where to report suspected fraud or corruption

(27) RMIT’s Complaints Portal enables employees to report suspected fraud or corruption to the Central Complaints and Investigations Unit.

(28) Disclosures of suspected fraud or corruption can also be made to an independent third party, such as Stopline, Victorian Ombudsman and the Independent Broad-based Anti-corruption Commission, depending on the scale and significance of the allegation.

(29) Persons disclosing suspected fraud and corruption can request whistleblower protections in accordance with the Public Interest Dislcosures Act 2012 (Vic). Refer to the Whistleblower Procedure for details about what can be disclosed as a ‘public interest disclosure’, to whom, and the protections provided by the Public Interest Disclosures Act

Responsibilities

(30) RMIT University Council has overall accountability for controlling RMIT’s fraud and corruption risks, and receives an annual report on fraud and corruption matters through the Audit and Risk Management Committee.

(31) The Audit and Risk Management Committee is responsible for:

  1. monitoring the response to detected fraud and corruption cases
  2. overseeing the fraud and corruption prevention framework
  3. assisting internal and external auditors in understanding the fraud and corruption control framework and the importance RMIT places on fraud detection as part of an external audit.

(32) The Vice-Chancellor’s Executive is responsible for:

  1. understanding RMIT’s fraud and corruption risks
  2. demonstrating a high-level commitment to the prevention of fraud and corruption
  3. fostering a workplace culture where it is safe to disclose suspected fraud or corruption.

(33) The Chief People Officer is responsible for:

  1. ensuring pre-employment screening
  2. escalating all matters of potential fraud or corrupt conduct to Central Complaints and Investigations.

(34) The Chief Information Security Officer is the delegated information security management and system officer responsible for:

  1. ensuring RMIT has an effective information security management system to mitigate the risks of cyber fraud
  2. training and awareness raising on preventing cybercrime across the RMIT Group.

(35) The Executive Director, Governance, Legal and Strategic Operations is the delegated Whistleblower Coordinator and is responsible for:

  1. maintaining, implementing, monitoring compliance with and reviewing this policy suite to ensure currency and effectiveness
  2. determining how suspected fraud or corruption is handled, including directing people to IBAC if they wish to make a public interest disclosure
  3. receiving confidential communications that are not public interest disclosures under the Public Interest Disclosures Act
  4. internal and external mandatory reporting, as required.

(36) The Associate Director, Central Complaints and Investigations is responsible for:

  1. the proper conduct of investigations, including ensuring procedural fairness
  2. the appropriate handling of information relating to suspected fraud or corruption, regarding the requirements for reporting to law enforcement agencies, privacy, and confidentiality
  3. ensuring training and awareness-raising is regularly conducted across the RMIT Group.

(37) The Director, Risk Management is responsible for:

  1. managing the risk profiles related to fraud and corruption
  2. recording the controls and, where necessary, treatment plans for identified fraud and corruption risks
  3. improvement opportunities related to fraud and corruption prevention.

(38) The Internal Audit team are responsible for:

  1. periodically reviewing RMIT’s fraud and corruption risks and controls, and providing assurance to the Audit and Risk Management Committee as to the effectiveness of those controls in preventing, detecting and reporting fraud
  2. identifying significant fraud risks while conducting audit planning and projects.

(39) All employees are responsible for:

  1. conducting their duties with the utmost regard for the expected standards of behaviour and integrity in accordance with this policy and policies relating to people, financial management, travel, ITS, procurement and expenditure
  2. reporting any fraud or corruption concerns to their manager, or the Associate Director, Central Complaints and Investigations, or lodging a complaint via the RMIT Complaints Portal or IBAC for public interest disclosures (refer to the Whistleblower Procedure)
  3. cooperating with any investigation into possible fraud or corruption.

Compliance

(40) Members of RMIT’s senior executive are responsible for ensuring compliance with this policy within their area of responsibility.

(41) Non-compliance with this policy may result in disciplinary action, including summary termination of employment or engagement, and referral to law enforcement agencies.

Top of Page

Section 5 - Procedures and Other Policy Documents

(42) Refer to the following documents which are established in accordance with this policy:

  1. Schedule 1 – Examples of Corrupt Conduct, Fraud, Public Interest Disclosures and High Risk Areas 
  2. Fraud and Corruption Procedure
  3. Whistleblower Procedure
  4. Fraud and Corruption Investigation Instruction.
Top of Page

Section 6 - Definitions

Detrimental action (defined by the Public Interest Disclosures Act 2012) Action causing injury, loss or damage; intimidation or harassment; or discrimination, disadvantage or adverse treatment in relation to a person's employment, career, profession, trade or business, including the taking of disciplinary action. It does not include management action in relation to an employee whistleblower taken for a substantial reason other than the employee having made a public interest disclosure. See Whistleblower Procedure.
Improper conduct Conduct that is corrupt, a substantial mismanagement of public resources, or conduct involving substantial risk to public health or safety or to the environment. The conduct must be serious enough to constitute a criminal offence or reasonable grounds for dismissal, if proved.