FAC Explorer

Audit 781

FY End
2023-06-30
Total Expended
$7.44M
Findings
8
Programs
7
Organization: Toccoa Falls College, Inc. (GA)
Year: 2023 Accepted: 2023-10-18
Auditor: Capincrouse LLP

Organization Exclusion Status:

Findings

ID Ref Severity Repeat Requirement
368 2023-001 - - N
369 2023-001 - - N
370 2023-001 - - N
371 2023-001 - - N
576810 2023-001 - - N
576811 2023-001 - - N
576812 2023-001 - - N
576813 2023-001 - - N

Programs

ALN Program Spent Major Findings
84.268 Federal Direct Student Loans $4.25M Yes 1
84.063 Federal Pell Grant Program $2.09M Yes 1
84.425 Covid-19 Education Stabilization Fund Heerf - Student Aid Portion $493,263 Yes 0
84.425 Covid-19 Education Stabilization Fund Governor’s Emergency Education Relief Fund $211,826 Yes 0
84.007 Federal Supplemental Educational Opportunity Grants $164,576 Yes 1
84.033 Federal Work-Study Program $121,245 Yes 1
84.425 Covid-19 Education Stabilization Fund Heerf - Strengthening Institutions $114,718 Yes 0

Contacts

Name Title Type
M1ECX4N5PVF8 Dr. Dee Mooney Auditee
7068866831 Chris Mantegna, CPA Auditor
No contacts on file

Notes to SEFA

Title: RELATIONSHIP TO FINANCIAL STATEMENTS Accounting Policies: The accompanying schedule of expenditures of federal awards (the schedule) includes the federal grant activity of Toccoa Falls College, Inc. (College) under programs of the federal government for the year ending June 30, 2023. The information in the schedule is presented in accordance with the requirements of the Title 2 U.S. Code of Federal Regulations Part 200, Uniform Administrative Requirements, Cost Principles, and Audit Requirements for Federal Awards (Uniform Guidance). Therefore, some amounts presented in the schedule may differ from amounts presented in, or used in the preparation of, the basic financial statements. Expenditures in the schedule are reported on the accrual basis of accounting. Such expenditures are recognized following the cost principles contained in the Uniform Guidance, wherein certain types of expenditures are not allowable or are limited as to reimbursement. Negative amounts shown on the schedule represent adjustments or credits made in the normal course of business to amounts reported as expenditures in prior years. If the College is required to match certain federal assistance, as defined by the grant agreements, no such matching has been included as expenditures in the schedule. De Minimis Rate Used: N Rate Explanation: N/A See the Notes to the SEFA for chart/table
Title: SUBRECIPIENTS, NON-CASH ASSISTANCE, FEDERAL INSURANCE, LOANS, AND LOAN GUARANTEES Accounting Policies: The accompanying schedule of expenditures of federal awards (the schedule) includes the federal grant activity of Toccoa Falls College, Inc. (College) under programs of the federal government for the year ending June 30, 2023. The information in the schedule is presented in accordance with the requirements of the Title 2 U.S. Code of Federal Regulations Part 200, Uniform Administrative Requirements, Cost Principles, and Audit Requirements for Federal Awards (Uniform Guidance). Therefore, some amounts presented in the schedule may differ from amounts presented in, or used in the preparation of, the basic financial statements. Expenditures in the schedule are reported on the accrual basis of accounting. Such expenditures are recognized following the cost principles contained in the Uniform Guidance, wherein certain types of expenditures are not allowable or are limited as to reimbursement. Negative amounts shown on the schedule represent adjustments or credits made in the normal course of business to amounts reported as expenditures in prior years. If the College is required to match certain federal assistance, as defined by the grant agreements, no such matching has been included as expenditures in the schedule. De Minimis Rate Used: N Rate Explanation: N/A The College did not provide any federal funds to subrecipients nor did they receive any federal non-cash assistance, insurance, loans, or loan guarantees.

Finding Details

Finding 2023-001
Gramm-Leach-Bliley Act (GLBA) Compliance Other Matter DEPARTMENT OF EDUCATION ALN #: 84.268, 84.063, 84.007, and 84.033 Federal Award Identification #: 2022-2023 Financial Aid Year Condition: The College did not sufficiently comply with the updated requirements of GLBA. Criteria: 16 CFR 314.4(c)(5) Questioned Costs: $-0-. Context: The College has not implemented multi-factor authentication (MFA) on all systems containing personally identifiable information (PII). Cause: The College is transitioning between student information systems so had not enabled the MFA on the legacy system. Effect: The College has not adequately addressed the requirements of GLBA for the period under audit, which may lead to unintended exposure of student information to security risks. Identification as repeat finding, if applicable: Not applicable. Recommendation: We recommend the College implement MFA as soon as possible on any system containing PII. Views of Responsible Officials and Planned Corrective Action: Management agrees with the finding. See corrective action plan.
Finding 2023-001
Gramm-Leach-Bliley Act (GLBA) Compliance Other Matter DEPARTMENT OF EDUCATION ALN #: 84.268, 84.063, 84.007, and 84.033 Federal Award Identification #: 2022-2023 Financial Aid Year Condition: The College did not sufficiently comply with the updated requirements of GLBA. Criteria: 16 CFR 314.4(c)(5) Questioned Costs: $-0-. Context: The College has not implemented multi-factor authentication (MFA) on all systems containing personally identifiable information (PII). Cause: The College is transitioning between student information systems so had not enabled the MFA on the legacy system. Effect: The College has not adequately addressed the requirements of GLBA for the period under audit, which may lead to unintended exposure of student information to security risks. Identification as repeat finding, if applicable: Not applicable. Recommendation: We recommend the College implement MFA as soon as possible on any system containing PII. Views of Responsible Officials and Planned Corrective Action: Management agrees with the finding. See corrective action plan.
Finding 2023-001
Gramm-Leach-Bliley Act (GLBA) Compliance Other Matter DEPARTMENT OF EDUCATION ALN #: 84.268, 84.063, 84.007, and 84.033 Federal Award Identification #: 2022-2023 Financial Aid Year Condition: The College did not sufficiently comply with the updated requirements of GLBA. Criteria: 16 CFR 314.4(c)(5) Questioned Costs: $-0-. Context: The College has not implemented multi-factor authentication (MFA) on all systems containing personally identifiable information (PII). Cause: The College is transitioning between student information systems so had not enabled the MFA on the legacy system. Effect: The College has not adequately addressed the requirements of GLBA for the period under audit, which may lead to unintended exposure of student information to security risks. Identification as repeat finding, if applicable: Not applicable. Recommendation: We recommend the College implement MFA as soon as possible on any system containing PII. Views of Responsible Officials and Planned Corrective Action: Management agrees with the finding. See corrective action plan.
Finding 2023-001
Gramm-Leach-Bliley Act (GLBA) Compliance Other Matter DEPARTMENT OF EDUCATION ALN #: 84.268, 84.063, 84.007, and 84.033 Federal Award Identification #: 2022-2023 Financial Aid Year Condition: The College did not sufficiently comply with the updated requirements of GLBA. Criteria: 16 CFR 314.4(c)(5) Questioned Costs: $-0-. Context: The College has not implemented multi-factor authentication (MFA) on all systems containing personally identifiable information (PII). Cause: The College is transitioning between student information systems so had not enabled the MFA on the legacy system. Effect: The College has not adequately addressed the requirements of GLBA for the period under audit, which may lead to unintended exposure of student information to security risks. Identification as repeat finding, if applicable: Not applicable. Recommendation: We recommend the College implement MFA as soon as possible on any system containing PII. Views of Responsible Officials and Planned Corrective Action: Management agrees with the finding. See corrective action plan.
Finding 2023-001
Gramm-Leach-Bliley Act (GLBA) Compliance Other Matter DEPARTMENT OF EDUCATION ALN #: 84.268, 84.063, 84.007, and 84.033 Federal Award Identification #: 2022-2023 Financial Aid Year Condition: The College did not sufficiently comply with the updated requirements of GLBA. Criteria: 16 CFR 314.4(c)(5) Questioned Costs: $-0-. Context: The College has not implemented multi-factor authentication (MFA) on all systems containing personally identifiable information (PII). Cause: The College is transitioning between student information systems so had not enabled the MFA on the legacy system. Effect: The College has not adequately addressed the requirements of GLBA for the period under audit, which may lead to unintended exposure of student information to security risks. Identification as repeat finding, if applicable: Not applicable. Recommendation: We recommend the College implement MFA as soon as possible on any system containing PII. Views of Responsible Officials and Planned Corrective Action: Management agrees with the finding. See corrective action plan.
Finding 2023-001
Gramm-Leach-Bliley Act (GLBA) Compliance Other Matter DEPARTMENT OF EDUCATION ALN #: 84.268, 84.063, 84.007, and 84.033 Federal Award Identification #: 2022-2023 Financial Aid Year Condition: The College did not sufficiently comply with the updated requirements of GLBA. Criteria: 16 CFR 314.4(c)(5) Questioned Costs: $-0-. Context: The College has not implemented multi-factor authentication (MFA) on all systems containing personally identifiable information (PII). Cause: The College is transitioning between student information systems so had not enabled the MFA on the legacy system. Effect: The College has not adequately addressed the requirements of GLBA for the period under audit, which may lead to unintended exposure of student information to security risks. Identification as repeat finding, if applicable: Not applicable. Recommendation: We recommend the College implement MFA as soon as possible on any system containing PII. Views of Responsible Officials and Planned Corrective Action: Management agrees with the finding. See corrective action plan.
Finding 2023-001
Gramm-Leach-Bliley Act (GLBA) Compliance Other Matter DEPARTMENT OF EDUCATION ALN #: 84.268, 84.063, 84.007, and 84.033 Federal Award Identification #: 2022-2023 Financial Aid Year Condition: The College did not sufficiently comply with the updated requirements of GLBA. Criteria: 16 CFR 314.4(c)(5) Questioned Costs: $-0-. Context: The College has not implemented multi-factor authentication (MFA) on all systems containing personally identifiable information (PII). Cause: The College is transitioning between student information systems so had not enabled the MFA on the legacy system. Effect: The College has not adequately addressed the requirements of GLBA for the period under audit, which may lead to unintended exposure of student information to security risks. Identification as repeat finding, if applicable: Not applicable. Recommendation: We recommend the College implement MFA as soon as possible on any system containing PII. Views of Responsible Officials and Planned Corrective Action: Management agrees with the finding. See corrective action plan.
Finding 2023-001
Gramm-Leach-Bliley Act (GLBA) Compliance Other Matter DEPARTMENT OF EDUCATION ALN #: 84.268, 84.063, 84.007, and 84.033 Federal Award Identification #: 2022-2023 Financial Aid Year Condition: The College did not sufficiently comply with the updated requirements of GLBA. Criteria: 16 CFR 314.4(c)(5) Questioned Costs: $-0-. Context: The College has not implemented multi-factor authentication (MFA) on all systems containing personally identifiable information (PII). Cause: The College is transitioning between student information systems so had not enabled the MFA on the legacy system. Effect: The College has not adequately addressed the requirements of GLBA for the period under audit, which may lead to unintended exposure of student information to security risks. Identification as repeat finding, if applicable: Not applicable. Recommendation: We recommend the College implement MFA as soon as possible on any system containing PII. Views of Responsible Officials and Planned Corrective Action: Management agrees with the finding. See corrective action plan.