Data443 Risk Mitigation Inc (ATDS)

[Bubae]

Another note on this subject that I found in my ATDS file.

Note From Q2 2021 filing

https://sec.report/Document/0001493152-21-018448/

Management’s Report of Internal Control over Financial Reporting

Jason Remillard, as our Principal Executive Officer and Principal Financial Officer, is responsible for establishing and maintaining adequate internal control over financial reporting as such term is defined in Rule 13a-15(f) under the Exchange Act. An evaluation was performed of the effectiveness of the Company’s internal control over financial reporting. The evaluation was based on the framework in 2013 Internal Control — Integrated Framework issued by the Committee of Sponsoring Organizations of the Treadway Commission (“COSO”).

Because of its inherent limitations, internal control over financial reporting may not prevent or detect misstatements. Also, projections of any evaluation of effectiveness to future periods are subject to the risk that controls may become inadequate because of changes in conditions, or that the degree of compliance with the policies or procedures may deteriorate.

Based on our evaluation under the criteria set forth in 2013 Internal Control — Integrated Framework, our management concluded that, as of June 30, 2021 our internal control over financial reporting was not effective because of the identification of material weaknesses described as follows:

> We did not have controls designed to validate the completeness and accuracy of underlying data used in the determination of accounting transactions. Accordingly, we believe we have a material weakness because there is a reasonable possibility that a material misstatement to the interim or annual consolidated financial statements would not be prevented or detected on a timely basis.

> We do not have written documentation of our internal control policies and procedures. Written documentation of key internal controls over financial reporting is a requirement of Section 404 of the Sarbanes-Oxley Act which is applicable to us. Management evaluated the impact of our failure to have written documentation of our internal controls and procedures on our assessment of our disclosure controls and procedures and has concluded that the control deficiency that resulted represented a material weakness.

> We do not have sufficient segregation of duties within accounting functions, which is a basic internal control. Due to our size and nature, segregation of all conflicting duties may not always be possible and may not be economically feasible. However, to the extent possible, the initiation of transactions, the custody of assets and the recording of transactions should be performed by separate individuals. Management evaluated the impact of our failure to have segregation of duties on our assessment of our disclosure controls and procedures and has concluded that the control deficiency that resulted represented a material weakness.