Under SEC rules, internal controls over financial reporting (ICFR) are processes that provide reasonable assurance that financial reports are reliable. Which of the following is not assured by ICFR? A. Financial reports, records, and data are accurately maintained. B. Transactions are prepared according to GAAP rules and are properly recorded. C. Unauthorized acquisition or use of data or assets that could affect financial statements will be prevented or detected in a timely manner. D. IT controls that contain financial data are maintained.

Internal Control Financial Reporting is a framework designed to help companies manage their financial reporting and achieve the greater goals of risk assessment, control, information and communication, as well as monitoring. One of the weaknesses that could characterize ICFR is its inability to assure timely prevention and detection of unauthorized acquisition or use of data.

The scheme however ensures that financial records are maintained and that transactions are prepared according to GAAP rules. ICFR ensures that misstatements are detected in financial reporting.