← Back to Blog

Nonprofit Conflict of Interest Policy: What to Include, Why the IRS Cares, and How to Enforce It

Ian Wylie Hedrick··Governance

Most Nonprofits Have a Conflict of Interest Policy. Most Don't Use It.

Here's something I see constantly: a nonprofit adopts a conflict of interest policy during formation because the IRS asks for one on the 501(c)(3) application. The policy gets filed with the bylaws, maybe uploaded to a shared drive, and then nobody looks at it again. No annual disclosures. No recusal procedures. No documentation when conflicts actually come up.

Then one of two things happens. Either the organization runs into a real conflict — a board member's company gets a contract, an executive director's spouse gets hired, a major donor's business gets favorable terms — and nobody knows what process to follow. Or the IRS flags the issue on a Form 990 review and the organization can't demonstrate it has functional procedures in place.

A conflict of interest policy isn't a formation checkbox. It's an active governance tool that protects your organization, your board members, and the public trust in your tax-exempt status. And getting it right is less about the document itself and more about the procedures you build around it.

Why the IRS Cares About Your Conflict of Interest Policy

The IRS doesn't technically require every 501(c)(3) to have a conflict of interest policy. But they strongly expect one, and they ask about it in multiple places.

Form 1023 (full application): Part V asks whether the organization has adopted a conflict of interest policy consistent with the sample policy in Appendix A of the Form 1023 instructions. If you answer no, you need to explain why not. This isn't a dealbreaker for approval, but it raises questions.

Form 1023-EZ: The checklist requires you to confirm your organization has adopted a conflict of interest policy.

Form 990 (annual return): Part VI, Section B, Line 12a asks: "Does the organization have a written conflict of interest policy?" Lines 12b and 12c ask whether officers, directors, and key employees are required to disclose interests that could give rise to conflicts, and whether the organization regularly and consistently monitors and enforces compliance with the policy.

That third question — Line 12c — is the one that trips up most organizations. The IRS isn't just asking whether you have a policy on paper. They want to know whether you actually enforce it. And if you answer "yes" but can't produce annual disclosure forms or meeting minutes showing recusal procedures, you have a credibility problem.

The IRS cares about this because conflicts of interest are the gateway to private inurement and excess benefit transactions. When insiders benefit from their position at the expense of the organization, the tax-exempt purpose is undermined. A functioning conflict of interest policy is the organization's primary defense against these problems.

What Your Conflict of Interest Policy Must Cover

The IRS provides a sample conflict of interest policy in Appendix A of the Form 1023 instructions. You don't have to use it word-for-word, but your policy should address the same core elements. Here's what each section needs to accomplish.

1. Purpose Statement

State why the policy exists: to protect the organization's tax-exempt status by ensuring that transactions involving potential conflicts are handled transparently and in the organization's best interest. This grounds everything that follows.

2. Who the Policy Covers

Define clearly who is subject to the policy. At minimum, this includes all directors (board members), officers, and key employees. Many organizations also extend coverage to committee members with board-delegated authority and, in some cases, family members of covered individuals.

"Key employee" has a specific meaning for Form 990 reporting purposes, but your policy doesn't need to mirror that technical definition exactly. The principle is simple: anyone in a position to influence organizational decisions should be covered.

3. What Constitutes a Conflict of Interest

This is where most template policies fall short. They define conflicts too narrowly (only financial interests) or too broadly (any conceivable connection). You need a definition that's practical enough for board members to apply in real situations.

A conflict of interest exists when a covered person has a direct or indirect financial interest that could influence — or could appear to influence — their judgment on a matter before the organization. This includes situations where the covered person, or a family member or business associate of the covered person, stands to benefit financially from a transaction or arrangement the organization is considering.

Common examples to reference in your policy or training materials:

  • A board member's company bidding on a contract with the organization
  • An executive director hiring a family member
  • A board member with a financial stake in a vendor the organization uses
  • A director serving on the board of an organization that competes for the same grants
  • Compensation decisions involving the person whose compensation is being set

Your policy should also address the concept of a "duality of interest" — situations where a board member has a fiduciary obligation to another organization involved in the transaction, even without a personal financial benefit.

4. Disclosure Requirements

This is the operational heart of the policy. Every covered person should be required to disclose any actual or potential conflicts of interest. The policy should specify two types of disclosure:

Annual disclosure. Once a year, every covered person completes a written disclosure form listing their financial interests, board memberships, business relationships, and family relationships that could create a conflict. These forms get reviewed by a designated person (usually the board chair or a governance committee) and kept on file.

Transaction-specific disclosure. When a specific matter comes before the board that involves a potential conflict, the affected person must disclose the conflict before any discussion or vote on the matter. This obligation exists regardless of whether the person completed the annual form.

Annual disclosures are important because they create a baseline record. When a conflict arises, you can check whether it was already disclosed — and if it wasn't, that's a governance red flag that needs to be addressed.

5. Recusal and Decision-Making Procedures

Having a disclosure requirement isn't enough. Your policy needs to spell out what happens after a conflict is disclosed:

Step 1: The interested person discloses the conflict and provides all relevant facts.

Step 2: The interested person leaves the room during deliberation and voting on the matter. They do not participate in the discussion (unless the board specifically asks them to present factual information) and they do not vote.

Step 3: The remaining board members — those without a conflict — determine whether a conflict of interest exists and whether the proposed transaction or arrangement is in the organization's best interest.

Step 4: The disinterested board members may investigate alternatives. If the transaction involves a financial arrangement, they should obtain comparable data (what would the organization pay on the open market?).

Step 5: The disinterested board members vote on whether to approve the transaction. A majority of disinterested directors must approve it.

Step 6: The entire process — the disclosure, the recusal, the deliberation, the comparability data, and the vote — gets documented in the meeting minutes.

That last step is critical. Documentation is what transforms your conflict of interest policy from a piece of paper into evidence of functioning governance. If the IRS ever questions a transaction, your minutes are your defense.

6. What Happens When Someone Violates the Policy

Your policy should address noncompliance. If a covered person fails to disclose a conflict, what are the consequences? Options include a formal warning, removal from the board, termination of employment, or unwinding the transaction. The specific remedies matter less than having the conversation documented in your policy so everyone understands the expectations.

7. Annual Statements and Record Keeping

Each covered person should sign an annual statement confirming they've received, read, and understand the conflict of interest policy, and agreeing to comply with it. These signed statements — along with the annual disclosure forms — should be kept in the organization's permanent records. They demonstrate to the IRS (and to anyone else who asks) that your policy is actively implemented, not just adopted.

The Intermediate Sanctions Connection

For public charities, conflict of interest procedures connect directly to IRC §4958 — the intermediate sanctions rules. When a "disqualified person" (insider) receives an "excess benefit" from the organization, the IRS can impose excise taxes of 25% on the person who received the benefit, plus 10% on organization managers who knowingly approved it.

Here's the critical governance detail: if the organization follows the "rebuttable presumption of reasonableness" procedure for compensation and financial arrangements, the burden of proof shifts to the IRS. To qualify for this presumption, three conditions must be met:

  1. The arrangement is approved by an authorized body made up entirely of individuals without a conflict of interest
  2. The authorized body obtained and relied on appropriate comparability data
  3. The authorized body documented the basis for its decision concurrently

Your conflict of interest policy is what ensures condition #1 can be met. Without functioning recusal procedures, your compensation decisions don't get the benefit of the presumption — and that exposes both the organization and individual board members to significant financial penalties.

Private Foundations: Even Higher Stakes

If you're running a private foundation, conflicts of interest carry additional weight. The self-dealing rules under IRC §4941 are far stricter than the public charity rules. Virtually all financial transactions between the foundation and its "disqualified persons" (directors, officers, substantial contributors, and their family members) are prohibited — regardless of whether the transaction is at fair market value and regardless of whether the foundation benefits.

The penalties are severe: a 10% initial tax on the self-dealer and a 5% tax on any foundation manager who knowingly participates. If the self-dealing isn't corrected, taxes escalate to 200% on the self-dealer and 50% on the manager.

A strong conflict of interest policy won't make prohibited self-dealing transactions legal. But it serves two essential functions for foundations: it creates a culture of disclosure that catches potential self-dealing before it happens, and it demonstrates to the IRS that foundation managers are taking their oversight responsibilities seriously. The foundation manager tax only applies to managers who "knowingly" participated — and having a functioning conflict of interest policy with active disclosures is evidence that the organization had systems in place to prevent violations.

Building the Annual Disclosure Process

The policy is only as good as the procedures behind it. Here's how to implement annual disclosures effectively.

Timing. Pick a consistent time each year. Many organizations tie disclosures to their annual meeting or the beginning of the fiscal year. What matters is consistency — every covered person, every year, same time.

The form itself. Keep it straightforward. The disclosure form should ask each covered person to list:

  • All organizations where they serve as a board member, officer, or key employee
  • All businesses where they or a family member have a financial interest (ownership, employment, contractual relationship)
  • Any financial transactions they or a family member have had with the organization in the past year
  • Any relationships with organizations that do business with or compete with the organization

Include a signature line and a statement confirming the person has received, read, and agrees to comply with the conflict of interest policy.

Review process. Someone needs to actually review the completed forms. This is typically the board chair, a governance committee, or the executive director (for staff forms). The reviewer should compare disclosures against the organization's vendor list, upcoming agenda items, and known transactions. Flag anything that looks like it could create a conflict in the coming year.

Follow-up. If a disclosure reveals a potential conflict, have a conversation about it proactively — before a transaction comes to a vote. It's much easier to manage a conflict when everyone knows about it in advance than when it surfaces unexpectedly during a board meeting.

Storage. Keep completed forms and signed annual statements in a designated governance file. These are permanent records. If the IRS asks about your conflict of interest procedures on audit, these forms are what you'll produce.

Common Mistakes to Avoid

Adopting the policy and never enforcing it. This is by far the most common failure. A policy you adopted in 2019 but haven't actually used since then isn't protecting anyone. If you answer "yes" to Form 990 Line 12c (do you regularly monitor and enforce the policy?), you need evidence to back that up.

Not collecting annual disclosures. The annual disclosure is the minimum viable enforcement. If you do nothing else, do this. It takes 30 minutes per year and creates a paper trail that demonstrates active compliance.

Letting conflicted board members stay in the room. Recusal means leaving the room, not just abstaining from the vote. If a conflicted board member stays during discussion, they can still influence the outcome — and your minutes will reflect that they were present, undermining the independence of the decision.

Failing to document the process in minutes. Every time a conflict arises and is managed — disclosure, recusal, deliberation, vote — it should appear in the board meeting minutes. Generic language like "the board discussed the matter" isn't enough. Name the person who disclosed, state the nature of the conflict, note that they left the room, and record the vote of the disinterested board members.

Using a policy that doesn't match your organization. Template policies often reference structures your organization doesn't have (like an audit committee or compensation committee). If your policy references a committee that doesn't exist, the IRS will notice. Tailor the policy to your actual governance structure.

When to Review and Update Your Policy

Your conflict of interest policy should be reviewed at least every three years, or whenever there's a significant change in board composition, organizational structure, or activities. Triggers for an immediate review include:

  • A new board member joins who has significant outside business interests
  • The organization starts a new program that involves vendor relationships
  • A conflict arises that the current policy doesn't clearly address
  • The organization grows to a size where committees should be handling certain decisions

This review doesn't need to be a major project. Read through the policy, check whether it reflects your current governance structure, confirm the disclosure process is happening annually, and update any outdated references.

Getting Your Policy Right

A conflict of interest policy is one of those governance tools that works quietly in the background when it's done well — and creates real problems when it's neglected. The document itself isn't complicated. What matters is the commitment to actually implementing it: collecting disclosures, following recusal procedures, documenting decisions, and reviewing the policy periodically to make sure it still fits.

If you're not sure whether your current policy covers what it should, or if you know it's been sitting in a drawer since formation, a governance review is the fastest way to find out where you stand. We look at your conflict of interest policy alongside your bylaws, board practices, compliance filings, and financial oversight to identify gaps before they become problems.

Need to adopt a conflict of interest policy for the first time, or update one that's outdated? That's exactly what our governance remediation menu is designed for — individual policy development at a fixed price, tailored to your organization's actual structure and operations.

And if you just want to talk through a specific situation — a board member with a potential conflict, a transaction that needs to be handled properly — an advisory call is the quickest way to get specific guidance for your organization.

Have questions about this?

If you're not sure what applies to your situation, an Advisory Call can help. We'll talk through your specific circumstances and you'll leave with clear next steps.

Book a Call — $125/hr

Ian Wylie Hedrick

· Founder, Wylie Advisory

Ian has spent over a decade in the nonprofit sector — from serving as an AmeriCorps member to founding a fiscally sponsored urban farming program through the Public Health Institute of Metropolitan Chicago to consulting a private foundation with eight-figure assets on new program creation. He started Wylie Advisory to make nonprofit formation and operations expertise accessible to every founder.

More about Ian →

Enjoyed this article?

Subscribe for more nonprofit insights, compliance tips, and operational advice delivered to your inbox.

Related Articles

How to File Form 990: A Public Charity's Complete Guide

Every 501(c)(3) public charity files some version of Form 990 each year. Which one you file depends on your gross receipts and assets. Here's how to determine your filing, what the return covers, when it's due, and the mistakes that most often trigger IRS follow-up or loss of tax-exempt status.

Expenditure Responsibility: How Private Foundations Grant to Non-501(c)(3) Organizations

Private foundations can legally grant to organizations that aren't 501(c)(3) public charities — but only if they follow a specific IRS procedure called expenditure responsibility. Here's what the rules actually require, when you need them, and the five steps to do it right.

How Long Does It Take to Start a Nonprofit? A Realistic Timeline

Starting a nonprofit takes 2 to 12 months depending on your state, IRS form choice, and how prepared you are. Here's a realistic week-by-week breakdown of state incorporation, EIN, bylaws, and 501(c)(3) approval — plus what you can do to avoid the most common delays.