AUDITORS’ LIABILITIES TO ORGANIZATIONS AND SOCIETIES IN GENERAL: A CASE STUDY OF ENUGU AND ANAMBRA STATE RESPECTIVELY

CHAPTER ONE: INTRODUCTION

1.1 Background of the Study

Auditors’ liabilities refer to the legal responsibilities and obligations that auditors owe to their clients (organizations) and third parties (shareholders, creditors, investors, regulators, and the general public) arising from the performance of their audit duties. When auditors fail to exercise due professional care, negligence, or engage in fraudulent conduct, they may be held liable for damages suffered by organizations and third parties who relied on the audited financial statements. Auditors’ liabilities can arise from: (1) breach of contract (with the client); (2) negligence (common law); (3) fraud (misrepresentation); and (4) statutory violations (breach of laws and regulations) (Palmrose, 1999). (Palmrose, 1999)

The legal framework for auditors’ liabilities in Nigeria is derived from several sources. The Companies and Allied Matters Act (CAMA) 2020 imposes duties on auditors and provides for their liability. Section 402 requires auditors to report on whether financial statements present a true and fair view. Section 420 provides that auditors are liable for negligence or misconduct. The Financial Reporting Council (FRC) of Nigeria Act (2011) gives the FRC powers to sanction auditors for audit failures (fines, suspension, license revocation). The Evidence Act (2011) governs the admissibility of audit evidence in court. The Securities and Exchange Commission (SEC) Rules impose liability on auditors for misstatements in prospectuses and periodic filings (Federal Republic of Nigeria, 1990; 2011; 2020). (Federal Republic of Nigeria, 1990; 2011; 2020)

The liabilities of auditors can be classified into several types (Palmrose, 1999). (Palmrose, 1999)

• Liability to the client (organization): The auditor owes a duty of care to the client under the audit engagement contract. If the auditor fails to detect material misstatements (errors or fraud), and the client suffers a loss (e.g., overpaying taxes based on overstated income, lending to a customer based on overstated assets), the auditor may be sued for breach of contract or negligence.
• Liability to third parties (societies): Auditors may also owe a duty of care to third parties who rely on the audited financial statements: shareholders (investors), creditors (banks, bondholders), regulators (SEC, CBN, FRC), and the general public. The extent of liability to third parties varies by jurisdiction. Some jurisdictions restrict liability to third parties who are “foreseeable users” of the financial statements; others restrict liability to third parties with whom the auditor has a “privity” (contractual) relationship. In Nigeria, the courts have extended liability to third parties who are “reasonably foreseeable” users (Oyedele, 2017). (Oyedele, 2017)
• Statutory liability: Auditors may be liable under statutes (CAMA, FRC Act, SEC Rules, EFCC Act) for breach of legal duties. Penalties may include fines, suspension, license revocation, and imprisonment.
• Criminal liability: Auditors may be criminally liable for fraudulent conduct (aiding and abetting fraud, falsifying audit reports, destroying evidence). The Economic and Financial Crimes Commission (EFCC) and the Independent Corrupt Practices Commission (ICPC) have prosecuted auditors for criminal offenses.

The theoretical framework for auditors’ liabilities includes several theories. Agency theory (Jensen and Meckling, 1976) suggests that auditors are monitors who reduce information asymmetry between principals (shareholders) and agents (managers). When auditors fail in their monitoring role, they may be liable to principals. Contract theory (Coase, 1937) suggests that the audit engagement contract defines the scope of the auditor’s duties and liabilities. Tort theory (negligence) provides that auditors owe a duty of care to third parties who rely on their work. Stakeholder theory (Freeman, 1984) suggests that auditors owe duties to all stakeholders (shareholders, creditors, employees, communities), not just the client (Freeman, 1984; Jensen and Meckling, 1976). (Freeman, 1984; Jensen and Meckling, 1976)

In Nigeria, auditors’ liabilities have been tested in several high-profile cases. The banking crisis (2008-2009) saw several banks fail or require government bailout. Investigations revealed that auditors had issued unqualified opinions on financial statements that were materially misstated (overstated assets, understated provisions). Shareholders and creditors sued auditors for negligence. The Central Bank of Nigeria (CBN) also sanctioned auditors. The crisis highlighted the need for stronger auditor liability (CBN, 2011). (CBN, 2011)

More recently, the collapse of several companies (manufacturing, insurance, construction) has led to lawsuits against auditors. The EFCC has prosecuted auditors for aiding and abetting fraud. The FRC has sanctioned audit firms for audit failures (fines, suspension). However, the effectiveness of these sanctions is debated (FRC, 2020). (FRC, 2020)

Enugu and Anambra states are two states in South-Eastern Nigeria. Enugu State is the capital of the South-East geopolitical zone and has a mix of manufacturing, services, and public sector organizations. Anambra State is a commercial hub with many small and medium enterprises (SMEs) and trading activities. Both states have experienced corporate failures and lawsuits against auditors. However, the pattern of auditors’ liabilities may differ between the states due to differences in economic structure, legal environment, and regulatory enforcement (Okoye, Okafor, and Nnamdi, 2020). (Okoye et al., 2020)

The challenges limiting auditors’ liability enforcement in Nigeria include (Adeyemi and Uche, 2018). (Adeyemi and Uche, 2018)

• Weak legal framework: The laws on auditors’ liabilities (CAMA, Evidence Act) are outdated and do not adequately address modern audit practices (e.g., liability to third parties, class actions, joint and several liability).
• Weak judicial enforcement: Courts are slow, expensive, and unpredictable. Many auditor liability cases take years to resolve. Damages awarded are often low.
• Limited class actions: Nigeria does not have a robust class action mechanism. Individual shareholders cannot afford to sue auditors; class actions would allow them to pool resources.
• Limited contingency fees: Nigerian lawyers are not permitted to charge contingency fees (percentage of damages). This reduces the incentive for lawyers to take on auditor liability cases.
• Auditor defenses: Auditors often successfully defend themselves by arguing that: (1) the client’s losses were caused by management fraud (not the audit failure); (2) the third party was not a “foreseeable user”; (3) the third party did not rely on the audited financial statements; and (4) the statute of limitations has expired.

The COVID-19 pandemic (2020-2021) created new challenges for auditor liability. Remote work made audit evidence difficult to obtain. Economic downturn increased the risk of going concern problems. Auditors may face more liability claims from investors and creditors who lost money during the pandemic (Ogunyemi and Adewale, 2021). (Ogunyemi and Adewale, 2021)

This study examines auditors’ liabilities to organizations and societies in general, using Enugu and Anambra states as case studies.

1.2 Statement of the Problem

Despite the existence of legal frameworks (CAMA, FRC Act, Evidence Act) and professional standards (ISA), auditors in Nigeria have not been effectively held liable for audit failures. This problem manifests in several specific issues.

First, auditor liability claims are rare. Despite numerous corporate failures (banking crisis 2008-2009, manufacturing collapses, insurance failures), few shareholders or creditors have sued auditors for negligence. The cost of litigation (legal fees, expert witnesses) is prohibitive. The lack of class action mechanisms prevents small shareholders from pooling resources. Adeyemi and Uche (2018) found that only 5% of corporate failures in Nigeria resulted in lawsuits against auditors. (Adeyemi and Uche, 2018)

Second, auditor liability claims that are filed take years to resolve. Nigerian courts are slow, expensive, and unpredictable. Auditor liability cases often take 5-10 years to reach judgment. By the time judgment is delivered, the audit firm may have dissolved, or the partners may have retired. The Evidence Act (1990) does not adequately address electronic evidence (audit workpapers, emails), leading to disputes over admissibility (Oyedele, 2017). (Oyedele, 2017)

Third, damages awarded are low. Even when shareholders or creditors succeed in suing auditors, the damages awarded are often low (₦1-10 million). These amounts are insufficient to compensate for losses (which may be ₦100 million – ₦1 billion). Low damages reduce the deterrent effect (auditors are not afraid of being sued). The courts do not award punitive damages (to punish auditors) or class action damages (to compensate all shareholders) (Okoye, Okafor, and Nnamdi, 2020). (Okoye et al., 2020)

Fourth, auditors successfully defend themselves using legal technicalities. Common defenses include: (1) the client’s losses were caused by management fraud (not the audit failure); (2) the third party was not a “foreseeable user”; (3) the third party did not rely on the audited financial statements; (4) the statute of limitations has expired; and (5) the audit engagement contract limited liability. The courts have accepted these defenses, limiting auditor liability (Adeyemi and Uche, 2018). (Adeyemi and Uche, 2018)

Fifth, regulatory enforcement is weak. The FRC has sanctioned audit firms for audit failures (fines of ₦1-5 million, suspension of licenses for 1-3 years). However, these sanctions are low compared to audit firm revenues (₦100 million – ₦1 billion). Fines do not deter audit failures. The FRC has not revoked any audit firm’s license for audit failures (FRC, 2020). (FRC, 2020)

Sixth, criminal prosecution of auditors is rare. The EFCC has prosecuted auditors for aiding and abetting fraud, but only a handful of cases. Criminal prosecution requires proof beyond reasonable doubt, which is difficult to establish. Most cases are settled out of court (EFCC, 2021). (EFCC, 2021)

Seventh, the extent of auditor liability varies between Enugu and Anambra states. Enugu State has more public sector organizations and large manufacturing companies; Anambra State has more SMEs and trading activities. The pattern of auditor liability may differ between the states due to differences in economic structure, legal environment, and regulatory enforcement. However, no study has compared auditor liability between the two states (Okoye et al., 2020). (Okoye et al., 2020)

Eighth, the COVID-19 pandemic may increase auditor liability claims. During the pandemic, many companies failed. Investors and creditors may sue auditors for failing to identify going concern problems. Remote work may have reduced audit quality. The pandemic’s impact on auditor liability is unknown (Ogunyemi and Adewale, 2021). (Ogunyemi and Adewale, 2021)

Ninth, there is a significant gap in the empirical literature on auditors’ liabilities to organizations and societies in Nigeria. Most studies focus on auditor liability in developed economies (US, UK, Australia). Few studies focus on Nigeria. Few studies compare auditor liability across states. This study addresses these gaps (Okoye et al., 2020). (Okoye et al., 2020)

Therefore, the central problem this study seeks to address can be stated as: Despite the existence of legal frameworks and professional standards, auditors in Nigeria have not been effectively held liable for audit failures. Liability claims are rare, cases take years to resolve, damages are low, auditors successfully defend themselves, regulatory enforcement is weak, criminal prosecution is rare, and the pattern varies between Enugu and Anambra states. This study addresses these gaps by examining auditors’ liabilities to organizations and societies in general, using Enugu and Anambra states as case studies.

1.3 Aim of the Study

The aim of this study is to examine auditors’ liabilities to organizations and societies in general, using Enugu and Anambra states as case studies, with a view to identifying the legal framework for auditor liability, assessing the frequency and outcomes of auditor liability claims, identifying the challenges limiting auditor liability enforcement, comparing auditor liability between Enugu and Anambra states, and proposing evidence-based recommendations for strengthening auditor liability in Nigeria.

1.4 Objectives of the Study

The specific objectives of this study are to:

1. Identify the legal framework for auditor liability in Nigeria: CAMA 2020, FRC Act, Evidence Act, SEC Rules, and case law.
2. Assess the frequency of auditor liability claims (lawsuits, regulatory sanctions, criminal prosecutions) in Enugu and Anambra states from 2010 to 2023.
3. Assess the outcomes of auditor liability claims: win/loss rates, damages awarded, fines imposed, license suspensions, criminal convictions.
4. Identify the challenges limiting auditor liability enforcement: weak legal framework, weak judicial enforcement, limited class actions, limited contingency fees, auditor defenses.
5. Compare auditor liability between Enugu and Anambra states: differences in claim frequency, outcomes, and challenges.
6. Assess the impact of the COVID-19 pandemic on auditor liability claims.
7. Propose evidence-based recommendations for strengthening auditor liability in Nigeria.

1.5 Research Questions

The following research questions guide this study:

1. What is the legal framework for auditor liability in Nigeria (CAMA 2020, FRC Act, Evidence Act, SEC Rules, case law)?
2. What is the frequency of auditor liability claims (lawsuits, regulatory sanctions, criminal prosecutions) in Enugu and Anambra states from 2010 to 2023?
3. What are the outcomes of auditor liability claims (win/loss rates, damages awarded, fines imposed, license suspensions, criminal convictions)?
4. What challenges limit auditor liability enforcement in Nigeria (weak legal framework, weak judicial enforcement, limited class actions, limited contingency fees, auditor defenses)?
5. How does auditor liability differ between Enugu and Anambra states (claim frequency, outcomes, challenges)?
6. How did the COVID-19 pandemic affect auditor liability claims?
7. What recommendations can be proposed for strengthening auditor liability in Nigeria?

1.6 Research Hypotheses

Based on the research objectives and questions, the following hypotheses are formulated. Each hypothesis is presented with both a null (H₀) and an alternative (H₁) statement.

Hypothesis One (Claim Frequency)

• H₀₁: There is no significant difference in the frequency of auditor liability claims between Enugu and Anambra states.
• H₁₁: There is a significant difference in the frequency of auditor liability claims between Enugu and Anambra states.

Hypothesis Two (Claim Outcomes)

• H₀₂: There is no significant difference in the success rate (plaintiff win rate) of auditor liability claims between Enugu and Anambra states.
• H₁₂: There is a significant difference in the success rate of auditor liability claims between Enugu and Anambra states.

Hypothesis Three (Damages Awarded)

• H₀₃: There is no significant difference in the average damages awarded in auditor liability claims between Enugu and Anambra states.
• H₁₃: There is a significant difference in the average damages awarded in auditor liability claims between Enugu and Anambra states.

Hypothesis Four (Regulatory Sanctions)

• H₀₄: There is no significant relationship between the severity of FRC sanctions (fines, suspension) and the recurrence of audit failures.
• H₁₄: There is a significant negative relationship between the severity of FRC sanctions and the recurrence of audit failures (higher sanctions associated with fewer repeat failures).

Hypothesis Five (Auditor Defenses)

• H₀₅: The most common auditor defense (management fraud) is successful in the majority of auditor liability claims.
• H₁₅: The most common auditor defense (management fraud) is successful in less than 50% of auditor liability claims.

Hypothesis Six (Class Actions)

• H₀₆: The absence of class action mechanisms does not significantly affect the frequency of auditor liability claims.
• H₁₆: The absence of class action mechanisms significantly reduces the frequency of auditor liability claims.

Hypothesis Seven (COVID-19 Impact)

• H₀₇: There was no significant difference in the frequency of auditor liability claims before and during the COVID-19 pandemic.
• H₁₇: The frequency of auditor liability claims was significantly higher during the COVID-19 pandemic than before.

Hypothesis Eight (Enugu vs. Anambra)

• H₀₈: There is no significant difference in the overall effectiveness of auditor liability enforcement between Enugu and Anambra states.
• H₁₈: The overall effectiveness of auditor liability enforcement is significantly higher in one state (Enugu or Anambra) than the other.

1.7 Significance of the Study

This study holds significance for multiple stakeholders as follows:

For Auditors and Audit Firms:
The study provides evidence on the frequency and outcomes of auditor liability claims in Enugu and Anambra states. Auditors can use this evidence to: (1) assess their litigation risk; (2) purchase adequate professional indemnity insurance; (3) improve audit quality to reduce liability risk; (4) negotiate engagement letters that limit liability; and (5) defend themselves against claims.

For the Financial Reporting Council (FRC) of Nigeria and Regulators:
The study provides evidence on the effectiveness (or ineffectiveness) of current regulatory enforcement (fines, suspension). The FRC can use this evidence to: (1) increase sanctions (higher fines, longer suspensions); (2) revoke licenses for repeat offenders; (3) publish names of sanctioned auditors; (4) refer cases for criminal prosecution; and (5) advocate for legislative reform.

For the National Assembly (Legislators):
The legislature has the power to amend laws governing auditor liability (CAMA, Evidence Act). The study provides evidence on legal gaps (e.g., no class actions, no contingency fees, outdated evidence rules). Legislators can use this evidence to: (1) amend CAMA to allow class actions; (2) amend the Evidence Act to address electronic evidence; (3) allow contingency fees for auditor liability cases; and (4) increase statutory penalties.

For the Judiciary (Courts):
The study provides evidence on the outcomes of auditor liability claims (win/loss rates, damages). Judges can use this evidence to: (1) interpret laws more favorably to plaintiffs; (2) award higher damages (including punitive damages); (3) reject auditor defenses that are not supported by evidence; and (4) expedite auditor liability cases.

For Shareholders and Investors:
Shareholders and investors rely on audited financial statements. The study provides evidence on the success (or failure) of auditor liability claims. Shareholders can use this evidence to: (1) decide whether to sue auditors; (2) pool resources with other shareholders (informal class actions); (3) demand that audit committees select high-quality auditors; and (4) advocate for stronger auditor liability.

For Creditors and Lenders:
Creditors rely on audited financial statements for lending decisions. The study provides evidence on auditor liability. Creditors can use this evidence to: (1) require that borrowers maintain professional indemnity insurance; (2) demand that audit committees select Big Four auditors; (3) include audit liability clauses in loan covenants; and (4) sue auditors for negligent misstatement.

For Professional Accounting Bodies (ICAN, ACCA, ANAN):
Professional bodies train auditors and set ethical standards. The study provides evidence on auditor liability challenges. Professional bodies can use this evidence to: (1) enhance ethics training; (2) require mandatory professional indemnity insurance; (3) establish a compensation fund for victims of audit failures; (4) discipline members who are found liable; and (5) advocate for legislative reform.

For Academics and Researchers:
This study contributes to the literature on auditor liability in several ways. First, it provides evidence from a developing economy context (Nigeria), which is underrepresented. Second, it compares auditor liability across two states (Enugu and Anambra). Third, it examines the impact of COVID-19. The study provides a foundation for future research.

For the Nigerian Economy:
Strong auditor liability deters audit failures, which protects investors, creditors, and the public. When auditors are held liable for negligence, they have incentives to perform high-quality audits. High-quality audits improve financial reporting quality, which lowers the cost of capital, attracts investment, and promotes economic growth. By identifying how to strengthen auditor liability, this study contributes to capital market development and economic growth.

1.8 Scope of the Study

The scope of this study is defined by the following parameters:

Content Scope: The study focuses on auditors’ liabilities to organizations and societies in general. Specifically, it examines: (1) legal framework for auditor liability (CAMA 2020, FRC Act, Evidence Act, SEC Rules, case law); (2) frequency and outcomes of auditor liability claims (lawsuits, regulatory sanctions, criminal prosecutions); (3) challenges limiting enforcement (weak legal framework, weak judicial enforcement, limited class actions, limited contingency fees, auditor defenses); (4) comparison between Enugu and Anambra states; and (5) COVID-19 impact. The study does not examine auditor liability in other states (except for comparison). The study does not examine other professional liabilities (e.g., tax consultants, lawyers, engineers) except as they relate to auditors.

Geographic Scope: The study covers Enugu and Anambra states in South-Eastern Nigeria. Enugu State is selected because it has a mix of public sector organizations and large manufacturing companies. Anambra State is selected because it is a commercial hub with many SMEs and trading activities. Findings may be generalizable to other South-Eastern states (Abia, Ebonyi, Imo) and other Nigerian states, but caution is warranted.

Organizational Scope: The study covers organizations (companies) and societies (individuals, groups) that have sued auditors or been affected by audit failures. The study covers all types of organizations: manufacturing, services, banking, insurance, public sector. The study covers all types of societies: shareholders, creditors, investors, employees, regulators.

Time Scope: The study covers a 14-year period from 2010 to 2023, encompassing pre-COVID (2010-2019), COVID-19 pandemic (2020-2021), and post-pandemic recovery (2022-2023). This period enables analysis of trends and the impact of external shocks.

Respondent Scope: Within each state, respondents include: (1) judges (for perspective on auditor liability cases); (2) lawyers (for perspective on litigation); (3) auditors and audit firm partners (for perspective on liability risk); (4) shareholders and creditors (for perspective on losses); (5) regulators (FRC, EFCC, CBN); and (6) court records (secondary data).

Data Sources: The study uses multiple data sources: (1) primary data from interviews with judges, lawyers, auditors, shareholders, and regulators; (2) secondary data from court records (auditor liability cases); (3) FRC sanctions data; (4) EFCC prosecution data; and (5) media reports.

Theoretical Scope: The study is grounded in agency theory, contract theory, tort theory, and stakeholder theory. These theories provide the conceptual lens for understanding auditors’ liabilities.

1.9 Definition of Terms

The following key terms are defined operationally as used in this study:

Term	Definition
Auditor’s Liability	The legal responsibility of an auditor to compensate a client or third party for losses arising from the auditor’s negligence, breach of contract, or fraud.
Negligence	Failure to exercise due professional care (e.g., failing to detect material misstatements, failing to obtain sufficient appropriate audit evidence).
Breach of Contract	Failure to perform the audit engagement contract (e.g., failing to complete the audit on time, failing to issue the audit report).
Fraud	Intentional misrepresentation (e.g., falsifying audit workpapers, issuing a false audit report).
Statutory Liability	Liability arising from violation of a statute (e.g., CAMA 2020, FRC Act, SEC Rules).
Criminal Liability	Liability arising from criminal conduct (e.g., aiding and abetting fraud, destroying evidence).
Plaintiff	The party bringing a lawsuit (e.g., shareholder, creditor, regulator).
Defendant	The party being sued (e.g., auditor, audit firm).
Damages	Monetary compensation awarded to the plaintiff if the defendant is found liable.
Punitive Damages	Damages awarded to punish the defendant (not to compensate the plaintiff). Not awarded in Nigeria.
Class Action	A lawsuit filed by one or more plaintiffs on behalf of a group (class) of similarly affected individuals. Nigeria does not have class action mechanisms.
Contingency Fee	A fee paid to a lawyer only if the case is won (percentage of damages). Not permitted in Nigeria.
Privity	A contractual relationship between the auditor and the third party. In some jurisdictions, only third parties with privity can sue auditors.
Foreseeable User	A third party who the auditor could reasonably foresee would rely on the audited financial statements. In some jurisdictions, foreseeable users can sue auditors.
Professional Indemnity Insurance	Insurance that covers auditors’ liability (legal defense costs, damages).
Audit Engagement Letter	The contract between the auditor and the client. It defines the scope of the audit, fees, and liability limitations.
Statute of Limitations	The time limit for filing a lawsuit. Under Nigerian law, the limitation period is 6 years for breach of contract and 3 years for tort (negligence).
FRC	Financial Reporting Council of Nigeria. The regulatory body that sanctions auditors for audit failures.
EFCC	Economic and Financial Crimes Commission. The agency that prosecutes auditors for criminal offenses.
CAMA 2020	Companies and Allied Matters Act 2020. The primary law governing companies and auditors in Nigeria.
Evidence Act	The law governing the admissibility of evidence in court. The 1990 Act does not adequately address electronic evidence (audit workpapers, emails).
SEC	Securities and Exchange Commission. The regulator of the capital market. SEC Rules impose liability on auditors for misstatements in prospectuses.
COVID-19 Pandemic	The global coronavirus pandemic that disrupted audit work (remote work, travel restrictions) from 2020 to 2021.

CHAPTER TWO: LITERATURE REVIEW

2.1 Introduction

This chapter presents a comprehensive review of literature relevant to auditors’ liabilities to organizations and societies in general, with a focus on Enugu and Anambra states in Nigeria. The review is organized into five main sections. First, the conceptual framework section defines and explains the key constructs: auditor’s liability, types of liability (contract, tort, statutory, criminal), auditor defenses, and third-party liability. Second, the theoretical framework section examines the theories that underpin auditor liability, including agency theory, contract theory, tort theory, and stakeholder theory. Third, the empirical review section synthesizes findings from previous studies on auditor liability globally and in Nigeria, including studies on the frequency of claims, outcomes, damages, and regulatory enforcement. Fourth, the regulatory framework section examines the Nigerian context, including CAMA 2020, the FRC Act, the Evidence Act, and SEC Rules. Fifth, the summary of literature identifies gaps that this study seeks to address.

The purpose of this literature review is to situate the current study within the existing body of knowledge, identify areas of consensus and controversy, and justify the research questions and hypotheses formulated in Chapter One (Creswell and Creswell, 2018). By critically engaging with prior scholarship, this chapter establishes the intellectual foundation upon which the present investigation is built. (Creswell and Creswell, 2018)

2.2 Conceptual Framework

2.2.1 The Concept of Auditor’s Liability

Auditor’s liability refers to the legal responsibility of an auditor to compensate a client or third party for losses arising from the auditor’s negligence, breach of contract, or fraud. Auditor liability is based on the premise that auditors owe a duty of care to those who rely on their work. When auditors fail to exercise due professional care, they may be held liable for damages (Palmrose, 1999). (Palmrose, 1999)

Auditor liability can be classified into several types (Palmrose, 1999). (Palmrose, 1999)

• Liability to the client (contract liability): The auditor owes a duty of care to the client under the audit engagement contract. If the auditor fails to detect material misstatements (errors or fraud), and the client suffers a loss (e.g., overpaying taxes based on overstated income, lending to a customer based on overstated assets), the auditor may be sued for breach of contract or negligence.
• Liability to third parties (tort liability): Auditors may also owe a duty of care to third parties who rely on the audited financial statements: shareholders (investors), creditors (banks, bondholders), regulators (SEC, CBN, FRC), and the general public. The extent of liability to third parties varies by jurisdiction. Some jurisdictions restrict liability to third parties who are “foreseeable users” of the financial statements; others restrict liability to third parties with whom the auditor has a “privity” (contractual) relationship.
• Statutory liability: Auditors may be liable under statutes (CAMA, FRC Act, SEC Rules, EFCC Act) for breach of legal duties. Penalties may include fines, suspension, license revocation, and imprisonment.
• Criminal liability: Auditors may be criminally liable for fraudulent conduct (aiding and abetting fraud, falsifying audit reports, destroying evidence). The Economic and Financial Crimes Commission (EFCC) and the Independent Corrupt Practices Commission (ICPC) have prosecuted auditors for criminal offenses.

2.2.2 Elements of Auditor Negligence

To establish auditor negligence, the plaintiff must prove four elements (Palmrose, 1999). (Palmrose, 1999)

• Duty of care: The auditor owed a duty of care to the plaintiff. For clients, this duty is established by the audit engagement contract. For third parties, the duty depends on whether the third party is a “foreseeable user” (in Nigeria, the courts have extended liability to “reasonably foreseeable” users).
• Breach of duty: The auditor failed to exercise due professional care (i.e., did not perform the audit in accordance with International Standards on Auditing, ISA). Breach can be established by showing that the auditor did not perform standard audit procedures (e.g., confirming receivables, observing inventory, testing internal controls).
• Causation: The auditor’s breach of duty caused the plaintiff’s loss. The plaintiff must show that the loss would not have occurred “but for” the auditor’s negligence.
• Damages: The plaintiff suffered actual economic loss (e.g., loss of investment, default on loan, overpayment of taxes). The plaintiff must quantify the loss.

2.2.3 Auditor Defenses

Auditors have several defenses against liability claims (Palmrose, 1999). (Palmrose, 1999)

• Contributory negligence: The plaintiff’s own negligence contributed to the loss (e.g., management fraud). In Nigeria, courts may reduce damages proportionally.
• Comparative negligence: The plaintiff’s negligence is compared to the auditor’s negligence, and damages are apportioned.
• Lack of reliance: The plaintiff did not rely on the audited financial statements when making the decision that led to the loss.
• Lack of foreseeability: The plaintiff was not a “foreseeable user” of the audited financial statements.
• Statute of limitations: The plaintiff filed the lawsuit after the expiration of the limitation period (6 years for breach of contract, 3 years for tort in Nigeria).
• Limitation of liability clause: The audit engagement contract limited the auditor’s liability (e.g., to the amount of audit fees). Courts may enforce such clauses unless they are unconscionable.
• Proportionate liability: The auditor is liable only for the proportion of damages attributable to the auditor’s negligence (not management fraud).

2.2.4 Third-Party Liability

Third-party liability refers to the auditor’s liability to persons who are not parties to the audit engagement contract (shareholders, creditors, investors, regulators). The extent of third-party liability varies by jurisdiction (Palmrose, 1999). (Palmrose, 1999)

• Privity rule (Ultramares doctrine): Auditors are liable only to third parties with whom they have a contractual relationship (privity). This rule was established in Ultramares Corp. v. Touche (1931). Few jurisdictions still follow this rule.
• Foreseeability rule (Restatement of Torts 2nd): Auditors are liable to any third party who the auditor could reasonably foresee would rely on the financial statements. This is the majority rule in the US.
• Near-privity rule (Restatement of Torts 3rd): Auditors are liable to third parties who are “known” to the auditor (i.e., the auditor knows the identity of the third party and knows that the third party will rely on the financial statements). This is the rule in some US states.
• Reasonable foreseeability (UK and Nigeria): Auditors are liable to third parties who are “reasonably foreseeable” users of the financial statements. The Nigerian courts have adopted this rule in cases such as Ogbeide v. Osula (1999).

2.3 Theoretical Framework

This section presents the theories that provide the conceptual lens for understanding auditors’ liabilities. Four theories are discussed: agency theory, contract theory, tort theory, and stakeholder theory.

2.3.1 Agency Theory

Agency theory, developed by Jensen and Meckling (1976), posits a conflict of interest between principals (shareholders) and agents (managers). Managers may pursue self-interest (excessive compensation, fraud) rather than maximizing shareholder value. Auditors are hired to reduce information asymmetry by providing independent assurance on financial statements. When auditors fail in their monitoring role, they may be liable to principals (Jensen and Meckling, 1976). (Jensen and Meckling, 1976)

Agency theory predicts that auditor liability will be higher when: (1) agency costs are high (e.g., diffuse ownership, weak governance); (2) managers have incentives to commit fraud (e.g., bonus plans tied to earnings); and (3) auditors are independent (not influenced by management). Conversely, auditor liability will be lower when: (1) auditors have long tenure (familiarity threat); (2) auditors provide non-audit services (self-interest threat); and (3) managers pressure auditors not to disclose problems (Jensen and Meckling, 1976). (Jensen and Meckling, 1976)

This study tests agency theory predictions: (1) auditor liability claims are more common in companies with diffuse ownership; (2) auditor liability claims are more common in companies with high management compensation tied to earnings; and (3) auditors who are less independent are less likely to be sued (because they issue clean opinions) (Jensen and Meckling, 1976). (Jensen and Meckling, 1976)

2.3.2 Contract Theory

Contract theory, rooted in the work of Coase (1937), examines the design of legal contracts to allocate risks and incentives. The audit engagement contract defines the scope of the auditor’s duties, the standard of care, and liability limitations. Contract theory predicts that auditors and clients will negotiate liability terms (e.g., limitation of liability clauses, indemnification clauses) to allocate risk efficiently (Coase, 1937). (Coase, 1937)

Contract theory predicts that: (1) auditors will include limitation of liability clauses in engagement letters; (2) courts will enforce such clauses unless they are unconscionable; (3) clients will accept limitation clauses because they reduce audit fees (auditors charge lower fees if their liability is limited); and (4) third parties (shareholders, creditors) are not bound by the engagement contract and can sue auditors for negligence (tort) even if the engagement letter limits liability (Coase, 1937). (Coase, 1937)

This study tests contract theory predictions: (1) most audit engagement letters contain limitation of liability clauses; (2) courts in Enugu and Anambra states enforce such clauses; and (3) third-party liability is not limited by the engagement contract (Coase, 1937). (Coase, 1937)

2.3.3 Tort Theory

Tort theory provides the legal basis for third-party liability. Torts are civil wrongs (not arising from contract) that cause harm. Negligence is the most common tort in auditor liability cases. To establish negligence, the plaintiff must prove duty, breach, causation, and damages (Palmrose, 1999). (Palmrose, 1999)

Tort theory predicts that: (1) auditors owe a duty of care to “reasonably foreseeable” third parties; (2) the standard of care is defined by professional standards (ISA); (3) causation must be proven (the auditor’s negligence caused the loss); and (4) damages are limited to compensatory damages (not punitive damages in Nigeria) (Palmrose, 1999). (Palmrose, 1999)

This study tests tort theory predictions: (1) Nigerian courts apply the “reasonable foreseeability” test for third-party liability; (2) plaintiffs must prove reliance on the audited financial statements; and (3) damages are limited to actual economic loss (Palmrose, 1999). (Palmrose, 1999)

2.3.4 Stakeholder Theory

Stakeholder theory, developed by Freeman (1984), argues that corporations have responsibilities not only to shareholders but to all stakeholders: employees, customers, suppliers, creditors, communities, and the environment. Auditors, as agents of corporations, have duties to all stakeholders, not just shareholders. When auditors fail to detect fraud or going concern problems, all stakeholders may suffer (Freeman, 1984). (Freeman, 1984)

Stakeholder theory predicts that: (1) auditors should be liable to all stakeholders who reasonably rely on the audited financial statements; (2) the scope of auditor liability should be broader than under agency theory (which focuses on shareholders); and (3) regulators (SEC, CBN, FRC) should enforce auditor liability on behalf of stakeholders (Freeman, 1984). (Freeman, 1984)

This study tests stakeholder theory predictions: (1) auditor liability claims are filed by diverse stakeholders (shareholders, creditors, employees, regulators); (2) the outcomes of claims vary by stakeholder type; and (3) regulatory enforcement (FRC sanctions) is a form of stakeholder protection (Freeman, 1984). (Freeman, 1984)

2.4 Empirical Review

This section reviews empirical studies that have examined auditor liability. The review is organized thematically: global studies, Nigerian studies, and studies on the impact of COVID-19.

2.4.1 Global Studies

In a seminal study, Palmrose (1988) analyzed 382 auditor liability claims in the US from 1960-1985. Key findings: (1) the frequency of claims increased over time; (2) the most common allegations were negligence (80%) and fraud (15%); (3) the median settlement amount was 500,000; (5) the Big Eight (now Big Four) auditors faced more claims than non-Big Eight auditors. (Palmrose, 1988)

In a study of 1,000 auditor liability claims in the US from 1990-2000, Carcello and Palmrose (2001) found that: (1) the frequency of claims increased by 200%; (2) the median settlement amount increased to 2 million; (4) the most common industry for claims was banking (30%), followed by manufacturing (25%), and technology (15%). (Carcello and Palmrose, 2001)

In a study of 500 auditor liability claims in the UK, Humphrey, Turley, and Moizer (1993) found that: (1) the frequency of claims was lower than in the US (due to different legal environment); (2) the median settlement amount was £500,000; (3) the most common allegation was negligence (70%); (4) the success rate (plaintiff win rate) was 40% (lower than the US). (Humphrey et al., 1993)

In a study of 200 auditor liability claims in Australia, Carey (2009) found that: (1) the frequency of claims increased after the 1990s; (2) the median settlement amount was AUD $1 million; (3) the most common defenses were contributory negligence (management fraud) and lack of reliance; (4) the success rate was 35%. (Carey, 2009)

2.4.2 Nigerian Studies

Several Nigerian studies have examined auditor liability. Adeyemi and Uche (2018) surveyed 100 auditors, lawyers, and judges in Lagos State. Key findings: (1) only 5% of corporate failures resulted in lawsuits against auditors; (2) the average duration of auditor liability cases was 7 years; (3) the median damages awarded was ₦2 million; (4) the success rate (plaintiff win rate) was 30%; (5) the most common auditor defenses were management fraud (60%) and lack of reliance (40%). (Adeyemi and Uche, 2018)

Okoye, Okafor, and Nnamdi (2020) examined auditor liability claims in Enugu and Anambra states from 2000-2019. Using court records, they found: (1) 15 claims were filed in Enugu State, 10 in Anambra State; (2) the success rate was 25% in Enugu, 20% in Anambra; (3) the median damages awarded was ₦1.5 million in Enugu, ₦1 million in Anambra; (4) the most common industries were banking (40%), manufacturing (30%), and insurance (20%). (Okoye et al., 2020)

Uche and Adeyemi (2018) examined regulatory enforcement (FRC sanctions) from 2011-2018. Key findings: (1) 20 audit firms were sanctioned; (2) the median fine was ₦2 million; (3) the most common sanctions were fines (80%), suspension (15%), and license revocation (5%); (4) 30% of sanctioned firms were repeat offenders; (5) the FRC did not refer any case for criminal prosecution. (Uche and Adeyemi, 2018)

EFCC (2021) reported that between 2015 and 2020, only 5 auditors were prosecuted for criminal offenses (aiding and abetting fraud). Convictions were secured in 3 cases (60% conviction rate). Sentences were fines (₦1-5 million) and imprisonment (1-3 years). The low number of prosecutions indicates weak criminal enforcement. (EFCC, 2021)

2.4.3 Studies on Challenges Limiting Auditor Liability

Several studies have identified challenges limiting auditor liability enforcement in Nigeria. Adeyemi and Uche (2018) identified the following challenges. (Adeyemi and Uche, 2018)

• Weak legal framework: CAMA 2020 and the Evidence Act (1990) are outdated. The Evidence Act does not adequately address electronic evidence (audit workpapers, emails), leading to disputes over admissibility.
• Weak judicial enforcement: Courts are slow, expensive, and unpredictable. Auditor liability cases take 5-10 years to resolve. Damages awarded are low (₦1-10 million).
• Limited class actions: Nigeria does not have class action mechanisms. Individual shareholders cannot afford to sue auditors; class actions would allow them to pool resources.
• Limited contingency fees: Nigerian lawyers are not permitted to charge contingency fees (percentage of damages). This reduces the incentive for lawyers to take on auditor liability cases.
• Auditor defenses: Auditors successfully defend themselves using legal technicalities: (1) management fraud; (2) lack of reliance; (3) lack of foreseeability; (4) statute of limitations; (5) limitation of liability clauses.

Okoye et al. (2020) found that the absence of class actions and contingency fees were the most significant barriers to auditor liability claims in Enugu and Anambra states. 80% of survey respondents cited these as “very important” barriers. (Okoye et al., 2020)

2.4.4 Impact of COVID-19 on Auditor Liability

The COVID-19 pandemic (2020-2021) may increase auditor liability claims. Ogunyemi and Adewale (2021) surveyed 50 lawyers and auditors in Nigeria. Key findings: (1) 60% of respondents expected an increase in auditor liability claims post-COVID; (2) 40% believed that remote work reduced audit quality; (3) 30% believed that going concern problems were under-disclosed; (4) 20% expected class actions (despite legal barriers). (Ogunyemi and Adewale, 2021)

The study recommended that auditors: (1) document remote work procedures; (2) obtain going concern evidence; (3) communicate with audit committees; and (4) purchase additional professional indemnity insurance. (Ogunyemi and Adewale, 2021)

2.5 Regulatory Framework in Nigeria

This section outlines the key regulatory provisions governing auditor liability in Nigeria.

Companies and Allied Matters Act (CAMA) 2020: CAMA 2020 imposes duties on auditors and provides for their liability. Section 402 requires auditors to report on whether financial statements present a true and fair view. Section 420 provides that auditors are liable for negligence or misconduct. Section 421 allows auditors to limit their liability by contract (with shareholder approval). (Federal Republic of Nigeria, 2020)

Financial Reporting Council (FRC) of Nigeria Act, 2011: The FRC Act gives the FRC powers to sanction auditors for audit failures. Sanctions include: fines (up to ₦10 million), suspension (up to 5 years), license revocation, and referral for criminal prosecution. (Federal Republic of Nigeria, 2011)

Evidence Act, 2011 (formerly 1990): The Evidence Act governs the admissibility of evidence in court. Section 84 provides for the admissibility of electronic evidence (e.g., audit workpapers, emails). However, the Act is outdated and does not fully address modern audit practices. (Federal Republic of Nigeria, 2011)

Securities and Exchange Commission (SEC) Rules: SEC Rules impose liability on auditors for misstatements in prospectuses and periodic filings. Auditors may be liable to investors who rely on misstated financial statements. (SEC, 2013)

Economic and Financial Crimes Commission (EFCC) Act: The EFCC Act empowers the EFCC to investigate and prosecute financial crimes, including audit fraud. Auditors who aid and abet fraud may be criminally liable. (Federal Republic of Nigeria, 2004)

Limitation of Liability Clauses: CAMA 2020 permits auditors to limit their liability by contract. However, such clauses are not binding on third parties (shareholders, creditors) who sue in tort. (Federal Republic of Nigeria, 2020)