CPA Exam Ethics, Professional Responsibilities, and General Principles

Last updated: May 2, 2026

Ethics, Professional Responsibilities, and General Principles questions are one of the highest-leverage areas to study for the CPA Exam. This guide breaks down the rule, the elements you need to recognize, the named traps that catch most students, and a memory aid that scales to test day. Read it once, then practice the same sub-topic adaptively in the app.

The rule

Under the AICPA Code of Professional Conduct (ET §1.200), a member in public practice must be independent in both fact and appearance when performing any attest engagement (audit, review, examination, or agreed-upon procedures). Independence is evaluated using the Conceptual Framework (ET §1.210.010): identify threats, evaluate their significance, and apply safeguards to reduce them to an acceptable level. Certain financial, employment, and business relationships involving a 'covered member' are flat prohibitions — no safeguards can cure them. For SEC issuers, the SEC and PCAOB independence rules (Rule 2-01 of Reg S-X) apply and are generally stricter than AICPA rules.

Elements breakdown

Covered Member

The set of individuals and entities whose relationships are tested for independence with respect to an attest client.

  • Individual on the attest engagement team
  • Individual who can influence the engagement
  • Partner or manager providing >10 hours of nonattest services
  • Partner in the office where lead engagement partner practices
  • The firm itself, including its employee benefit plans
  • Entity controlled by any covered member above

The Seven Threats

Categories of risk to independence identified by the Conceptual Framework that must be evaluated for every relationship.

  • Self-review threat — auditing your own work
  • Advocacy threat — promoting client's position
  • Adverse interest threat — opposing positions (litigation)
  • Familiarity threat — long or close relationship
  • Undue influence threat — pressure from client
  • Self-interest threat — financial stake in client
  • Management participation threat — acting as management

Categories of Safeguards

Actions that mitigate identified threats; effectiveness is evaluated qualitatively, not by checklist.

  • Safeguards created by profession, legislation, or regulation
  • Safeguards implemented by the attest client
  • Safeguards implemented by the firm (policies, rotation, review)
  • Removing the individual from the engagement
  • Declining or terminating the engagement

Common examples:

  • Engagement quality review by uninvolved partner
  • Rotating the lead audit partner every five years (SEC issuers)
  • Disclosing a relationship to those charged with governance

Per-Se Prohibitions (No Safeguard Cures)

Relationships that automatically impair independence regardless of materiality or safeguards.

  • Direct financial interest in attest client (any amount)
  • Material indirect financial interest in attest client
  • Loan to or from attest client (with narrow exceptions)
  • Joint closely held investment with client or its officers
  • Covered member's immediate family employed in key position
  • Performing management functions for the client
  • Bookkeeping or preparing source documents for issuer clients

Nonattest Services Framework

Performing nonattest services for an attest client is permitted only if the client accepts management responsibility and the service does not create self-review or management-participation threats that exceed safeguards.

  • Client must designate a competent individual to oversee
  • Client must evaluate adequacy and results of services
  • Client must accept responsibility for results
  • Firm must document the understanding in writing
  • Prohibited services for issuers: bookkeeping, valuation, internal audit outsourcing, legal, actuarial, IT design

Common patterns and traps

The Direct-vs-Indirect Materiality Trap

The exam frequently tests whether a candidate confuses the 'any amount' standard for direct financial interests with the 'material' standard for indirect interests. A direct interest — owning even one share of client stock, or being a beneficiary of a trust that holds client stock — impairs independence regardless of dollar size. An indirect interest — such as owning shares of a diversified mutual fund that happens to hold the client — impairs only if material to the covered member.

A choice that asks whether a $200 holding impairs independence and offers 'No, because the amount is immaterial' as a tempting wrong answer when the holding is direct.

The Safeguards-Cure-Everything Fallacy

Candidates who overlearn the Conceptual Framework start applying it to per-se prohibitions, reasoning that disclosure to the audit committee or rotation of the partner can cure any threat. In reality, certain relationships — direct financial interests, loans (outside narrow grandfathered exceptions), joint closely held investments, immediate-family key-position employment — are flat prohibitions. No safeguard, no matter how robust, restores independence.

A choice that says 'Independence is not impaired because the firm rotated the partner and disclosed the relationship to those charged with governance' when the underlying relationship is a direct financial interest or other per-se violation.

The Covered-Member Boundary Problem

Candidates often misidentify who is a covered member. The set extends beyond the engagement team to include any partner in the lead engagement partner's office, partners and managers providing more than 10 hours of nonattest services to the client, and the firm itself. A staff accountant in a different office who has no connection to the client is generally not a covered member; a partner in the same office is.

A choice describing a partner in a different office holding client stock and concluding independence is impaired, when in fact that partner is not a covered member (assuming no other connection).

The Management-Participation Slippage

When firms perform nonattest services such as bookkeeping or tax provision work for nonissuer attest clients, the line between 'helping' and 'making management decisions' is the test. The client must designate a competent person to oversee the service, evaluate the results, and accept responsibility. If the firm selects accounting policies, signs documents on the client's behalf, or hires/fires client personnel, the management-participation threat cannot be safeguarded away.

A scenario in which the firm posts adjusting journal entries that the client's CFO never reviews or approves, and a choice claiming independence is preserved because the work was 'routine.'

The Issuer-vs-Nonissuer Standards Swap

AICPA rules permit certain nonattest services (like bookkeeping) for nonissuer clients with proper safeguards, but the SEC and PCAOB prohibit those same services outright for issuer clients. Candidates who memorize one ruleset and apply it across the board miss this distinction.

A choice that allows the auditor to prepare the client's financial statements when the client is a publicly traded SEC registrant.

How it works

Start every independence question by asking 'Is this person a covered member?' If a senior tax partner in the Denver office holds 50 shares of Reyes Manufacturing stock, and the Denver office is where the lead audit partner on Reyes practices, that partner is a covered member and any direct financial interest — even a single share — impairs independence. There is no materiality test for direct interests; the 'any amount' rule is per se. Now contrast that with an indirect interest: the same partner's diversified mutual fund holds 0.02% of its assets in Reyes. That is an indirect interest, and only a material indirect interest impairs. If the fund weighting is trivial and the partner does not control the fund's investment choices, independence is preserved. The exam loves to test the line between direct and indirect, between material and immaterial, and between the firm performing a permitted nonattest service (with proper management oversight) versus actually making management decisions.

Worked examples

Worked Example 1

Under the AICPA Code of Professional Conduct, what is the effect of Sandra Park's stock holding on Liu & Associates' independence with respect to the Reyes audit?

  • A Independence is not impaired because the $850 holding is clearly immaterial to Sandra's net worth.
  • B Independence is not impaired because Sandra is not on the engagement team and performs no services for Reyes.
  • C Independence is impaired because Sandra is a covered member and holds a direct financial interest in the attest client. ✓ Correct
  • D Independence is impaired, but the firm can cure the impairment by having Sandra disclose the holding to those charged with governance and recusing herself from any future Reyes matters.

Why C is correct: Under ET §1.240, a direct financial interest in an attest client held by a covered member impairs independence in any amount; materiality is irrelevant for direct interests. Sandra is a covered member because she is a partner in the same office as the lead engagement partner (ET §0.400.12). The 100 shares are a direct financial interest, not an indirect one (she owns the stock outright, not through a fund). The only cure is disposal of the stock before she becomes a covered member or before the firm issues the report; safeguards alone cannot restore independence.

Why each wrong choice fails:

  • A: The 'material' standard applies only to indirect financial interests. For a direct financial interest, any amount — even a single share — impairs independence. Sandra's $850 holding is direct, so the materiality argument fails. (The Direct-vs-Indirect Materiality Trap)
  • B: Covered-member status extends beyond the engagement team to all partners in the lead engagement partner's office under ET §0.400.12. Because Sandra and Marcus both practice in the Phoenix office, Sandra is a covered member regardless of whether she does Reyes work. (The Covered-Member Boundary Problem)
  • D: A direct financial interest held by a covered member is a per-se prohibition. Disclosure and recusal are not safeguards that can cure this category of impairment — Sandra must dispose of the stock to restore independence. (The Safeguards-Cure-Everything Fallacy)
Worked Example 2

Under the AICPA Code of Professional Conduct, may Okonkwo CPAs perform the requested bookkeeping and financial statement preparation services without impairing independence?

  • A No, because preparing financial statements that the firm will subsequently audit always creates an unsafeguardable self-review threat.
  • B No, because the SEC and PCAOB prohibit auditors from performing bookkeeping services for any audit client.
  • C Yes, provided the controller designated by Tidewater oversees the services, evaluates the results, and accepts management responsibility, and the understanding is documented. ✓ Correct
  • D Yes, but only if Okonkwo's engagement quality reviewer is a partner from a different office who was not involved in the bookkeeping work.

Why C is correct: Under ET §1.295, a firm may perform nonattest services such as bookkeeping for a nonissuer attest client provided the client (1) designates a competent individual to oversee the service, (2) evaluates the adequacy and results, (3) accepts responsibility for the results, and (4) the understanding is documented in writing. Tidewater's controller has the experience to qualify as competent, and the engagement letter documents the arrangement. Self-review threats exist but are reduced to an acceptable level by the client's oversight.

Why each wrong choice fails:

  • A: The AICPA Code expressly permits bookkeeping for nonissuer attest clients when proper safeguards are in place. The blanket statement that such services 'always' impair independence ignores the conceptual framework and the §1.295 requirements that, when met, reduce the self-review threat to an acceptable level. (The Safeguards-Cure-Everything Fallacy)
  • B: SEC and PCAOB rules prohibit bookkeeping for issuer audit clients, but Tidewater is a privately held nonissuer. AICPA rules — not SEC rules — govern, and they permit the service with safeguards. The candidate who applies issuer rules to a nonissuer engagement gets this wrong. (The Issuer-vs-Nonissuer Standards Swap)
  • D: While an engagement quality review may be a useful additional safeguard, it is not the §1.295 condition for performing nonattest services. The required safeguards center on the client's acceptance of management responsibility and competent oversight, not on the firm's internal review structure. The choice imposes a requirement that the Code does not.
Worked Example 3

Under SEC Rule 2-01 of Regulation S-X and PCAOB independence rules, what is the effect on Bhatti & Vance's independence with respect to the Coastal audit?

  • A Independence is not impaired because the audit committee pre-approved the nonaudit service as required by Sarbanes-Oxley §202.
  • B Independence is not impaired because the implementation team is staffed from a different office and the fee is not material to the firm.
  • C Independence is impaired because designing and implementing financial information systems for an issuer audit client is a prohibited nonaudit service. ✓ Correct
  • D Independence is impaired only if Bhatti & Vance's audit team relies on the new system without performing independent testing of its outputs.

Why C is correct: SEC Rule 2-01(c)(4)(ii) and Sarbanes-Oxley §201 expressly prohibit a registered public accounting firm from providing financial information systems design and implementation services to its issuer audit clients. This prohibition is per se: no safeguards, audit committee approval, or office separation can restore independence. The service creates a self-review threat that the SEC and PCAOB have determined is incompatible with auditor independence for issuers.

Why each wrong choice fails:

  • A: Sarbanes-Oxley §202 requires audit committee pre-approval of permitted nonaudit services, but pre-approval cannot authorize a service that §201 outright prohibits. Audit committee approval is necessary but not sufficient; it cannot cure a flat prohibition. (The Safeguards-Cure-Everything Fallacy)
  • B: Office separation and fee immateriality are factors in evaluating threats under the AICPA Conceptual Framework, but they do not override SEC and PCAOB per-se prohibitions for issuer clients. Applying nonissuer-style threat analysis to an SEC issuer engagement is the trap. (The Issuer-vs-Nonissuer Standards Swap)
  • D: Independent testing of system outputs cannot cure a per-se prohibited service. The prohibition exists precisely because the firm should not be in a position of auditing systems it designed, regardless of how rigorous the subsequent testing is. (The Safeguards-Cure-Everything Fallacy)

Memory aid

SAFAUSM — the seven threats: Self-review, Advocacy, Familiarity, Adverse interest, Undue influence, Self-interest, Management participation. For prohibited interests, remember 'Direct = any amount; Indirect = material only.'

Key distinction

A direct financial interest in an attest client impairs independence in any amount and cannot be cured by safeguards; an indirect financial interest impairs only if material, and even then may sometimes be addressed by disposing of the interest or removing the individual from the engagement.

Summary

Independence under the AICPA Code requires applying the Conceptual Framework to identify threats and safeguards, but certain financial and management relationships involving a covered member are absolute prohibitions that no safeguard can fix.

Practice ethics, professional responsibilities, and general principles adaptively

Reading the rule is the start. Working CPA Exam-format questions on this sub-topic with adaptive selection, watching your mastery score climb in real time, and seeing the items you missed return on a spaced-repetition schedule — that's where score lift actually happens. Free for seven days. No credit card required.

Start your free 7-day trial

Frequently asked questions

What is ethics, professional responsibilities, and general principles on the CPA Exam?

Under the AICPA Code of Professional Conduct (ET §1.200), a member in public practice must be independent in both fact and appearance when performing any attest engagement (audit, review, examination, or agreed-upon procedures). Independence is evaluated using the Conceptual Framework (ET §1.210.010): identify threats, evaluate their significance, and apply safeguards to reduce them to an acceptable level. Certain financial, employment, and business relationships involving a 'covered member' are flat prohibitions — no safeguards can cure them. For SEC issuers, the SEC and PCAOB independence rules (Rule 2-01 of Reg S-X) apply and are generally stricter than AICPA rules.

How do I practice ethics, professional responsibilities, and general principles questions?

The fastest way to improve on ethics, professional responsibilities, and general principles is targeted, adaptive practice — working questions that focus on your specific weak spots within this sub-topic, getting immediate feedback, and revisiting items you missed on a spaced-repetition schedule. Neureto's adaptive engine does this automatically across the CPA Exam; start a free 7-day trial to see your sub-topic mastery climb in real time.

What's the most important distinction to remember for ethics, professional responsibilities, and general principles?

A direct financial interest in an attest client impairs independence in any amount and cannot be cured by safeguards; an indirect financial interest impairs only if material, and even then may sometimes be addressed by disposing of the interest or removing the individual from the engagement.

Is there a memory aid for ethics, professional responsibilities, and general principles questions?

SAFAUSM — the seven threats: Self-review, Advocacy, Familiarity, Adverse interest, Undue influence, Self-interest, Management participation. For prohibited interests, remember 'Direct = any amount; Indirect = material only.'

What's a common trap on ethics, professional responsibilities, and general principles questions?

Confusing 'material' standard for indirect interests with 'any amount' rule for direct interests

What's a common trap on ethics, professional responsibilities, and general principles questions?

Assuming safeguards can cure a per-se prohibition

Related CPA Exam sub-topics

Ready to drill these patterns?

Take a free CPA Exam assessment — about 25 minutes and Neureto will route more ethics, professional responsibilities, and general principles questions your way until your sub-topic mastery score reflects real improvement, not luck. Free for seven days. No credit card required.

Start your free 7-day trial