This Audit Committee Charter (the "Charter") governs the operations of the Audit Committee of the Board of Directors (the "Audit Committee") of O'Reilly Automotive, Inc. (the "Company"). The Audit Committee is appointed by the Board to assist the Board in monitoring (1) the integrity of the financial statements of the Company, and the Company's accounting and financial reporting process and financial statement audits, (2) the independent auditors qualifications and independence, (3) the performance of the Company's internal audit function and independent auditors, (4) the compliance by the Company with legal and regulatory requirements, and (5) overseeing the Company's system of disclosure controls and procedures, internal controls over financial reporting and compliance with ethical standards adopted by the company.
The Audit Committee shall prepare the report required by the rules of the Securities and Exchange Commission to be included in the Company's annual proxy statement.
The Audit Committee shall consist of no fewer than three members. The members of the Audit Committee shall meet the independence, financial literacy and expertise and other qualification requirements of the federal securities laws and the applicable rules and regulations of the Securities and Exchange Commission and the NASDAQ National Market.
The members of the Audit Committee shall be appointed by the Board on the recommendation of the Corporate Governance/Nominating Committee. Audit Committee members may be replaced by the Board.
The Audit Committee shall have the sole authority to appoint or replace the independent auditor, and shall approve, in advance, all audit engagement fees and terms and all non-audit engagements with the independent auditors permitted under applicable law, rules and regulations.
In addition, the Audit Committee shall approve all related party transactions. The Audit Committee may consult with management, but shall not delegate these responsibilities.
The Audit Committee shall have the authority, to the extent it deems necessary or appropriate, to conduct investigations into any matters within the scope of its responsibility and to retain special legal, accounting or other consultants to advise the Committee.
The Audit Committee shall establish procedures for the receipt, retention and treatment of complaints regarding the Company's accounting, financial reporting, internal accounting controls and auditing matters. The Audit Committee shall also establish procedures for the confidential, anonymous submission by the Company's employees regarding questionable accounting or auditing matters. The Audit Committee may form and delegate authority to subcommittees when appropriate.
The Audit Committee shall meet as often as it determines, but not less frequently than quarterly.
The Audit Committee shall meet with management, the internal auditors and the independent auditor in separate executive sessions at least quarterly.
The Audit Committee shall make regular reports to the Board and shall annually review its own performance.
The company will provide appropriate funding, as determined by the Audit Committee, for compensation to the independent auditor, to any advisers that the Audit Committee chooses to engage and for payment of ordinary administrative expenses of the Audit Committee that are necessary or appropriate in carrying out its duties.
The Audit Committee, to the extent it deems necessary or appropriate, shall:
Financial Statement and Disclosure Matters
1. Review and discuss with management and the independent auditor the annual audited financial statements, including disclosures made in management's discussion and analysis, and recommend to the Board whether the audited financial statements should be included in the Company's Annual Report on Form 10-K.
2. Review and discuss with management and the independent auditor the Company's quarterly financial statements prior to the filing of its Quarterly Reports on Form 10-Q, including the results of the independent auditors' reviews of the quarterly financial statements.
3. Discuss with management and the independent auditor significant financial reporting issues and judgments made in connection with the preparation of the Company's financial statements, including any significant changes in the Company's selection or application of accounting principles, any major issues as to the adequacy of the Company's internal controls, the development, selection and disclosure of critical accounting estimates, and analyses of the effect of alternative assumptions, estimates or GAAP methods on the Company's financial statements.
4. Discuss with management the Company's earnings press releases, including the use of "pro forma" or "adjusted" non-GAAP information, as well as financial information and earnings guidance provided to analysts and rating agencies.
5. Discuss with management and the independent auditor the effect of regulatory and accounting initiatives as well as off-balance sheet structures on the Company's financial statements.
6. Discuss with management the Company's major financial risk exposures and the steps management has taken to monitor and control such exposures, including the Company's risk assessment and risk management policies.
7. Review any disclosures made by CEO and CFO during the Forms 10-K and 10-Q certification process about significant deficiencies in the design or operation of internal controls or any fraud that involves management or other employees who have a significant role in the company's internal controls.
8. Discuss with the independent auditor the matters relating to the conduct of the audit. In particular, discuss:
(a) The adoption of, or changes to, the Company's significant auditing and accounting principles and practices as suggested by the independent auditor, internal auditors or management.
(b) The management letter provided by the independent auditor and the Company's response to that letter.
(c) Any difficulties encountered in the course of the audit work, including any restrictions on the scope of activities or access to requested information, and any significant disagreements with management.
9. Review and approve the "Report of the Audit Committee" to be included in the Company's Annual Report on Form 10K and in the Annual Proxy Statement.
10. Review significant new accounting, financial, external reporting and asset-safeguarding policies and practices.
Oversight of the Company's Relationship with the Independent Auditor
11. Review the experience and qualifications of the senior members of the independent auditor team.
12. Obtain and review a formal, written report from the independent auditor at least annually regarding (a) the auditors' internal quality-control procedures, (b) any material issues raised by the most recent quality-control review, or peer review, of the firm, or by any inquiry or investigation by governmental or professional authorities within the preceding five years respecting one or more independent audits carried out by the firm, (c) any steps taken to deal with any such issues, and (d) all relationships between the independent auditor and the Company (consistent with auditor professional responsibility standards, I.S.B. No. 1). Evaluate the qualifications, performance and independence of the independent auditor, including considering whether the auditor's quality controls are adequate and the provision of non-audit services is compatible with maintaining the auditor's independence, and taking into account the opinions of management and the internal auditor. The Audit Committee shall present its conclusions to the Board and, if so determined by the Audit Committee, recommend that the Board take additional action to satisfy itself of the qualifications, performance and independence of the auditor.
13. Require the rotation of the lead audit partner and the concurring audit partner every five years in order to assure continuing auditor independence. The Audit Committee shall consider whether it is appropriate to adopt a policy of rotating the independent auditing firm itself on a regular basis.
14. Recommend to the Board policies for the Company's hiring of employees or former employees of the independent auditor who were engaged on the Company's account. The Audit Committee shall require a one year "cooling off" period before a member of the independent auditor team can begin working for the Company in certain key positions such as chief executive officer, controller, chief financial officer, chief accounting officer or any equivalent position.
15. Discuss with management, the internal auditors and the independent auditors any accounting adjustments that were noted or proposed by the independent auditor, but were not adopted or reflected.
Oversight of the Company's Internal Audit Function
16. Review with management and internal audit the charter, plans, activities, staffing, and organizational structure of the internal audit function.
17. Review the appointment and replacement of the senior internal auditing executive.
18. Discuss with the independent auditor the internal audit department responsibilities, budget and staffing and any recommended changes in the planned scope of the internal audit.
Internal Control Matters
19. Understand the scope of internal and external auditors' review of internal control over financial reporting, and obtain reports on significant findings and recommendations, together with management's responses.
Compliance Oversight Responsibilities
20. Obtain from the independent auditor assurance that Section 10A of the Securities Exchange Act of 1934 has not been implicated.
21. Obtain reports from management, the Company's senior internal audit executive and the independent auditor that the Company is in conformity with applicable legal requirements and the Company's Code of Business Conduct and Ethics. Review reports and disclosures of insider and affiliated party transactions.
22. Discuss with management and the independent auditor any correspondence with regulators or governmental agencies and any employee complaints or published reports which raise material issues regarding the Company's financial statements or accounting policies.
23. Discuss with the Company's General Counsel legal matters that may have a material impact on the financial statements or the Company's compliance policies.
IT Information Security Oversight
24. Obtain and review timely reports on the status of the IT information security program including status, initiatives and test results, business continuity planning, PCI compliance status, and significant cybersecurity risks, including cybersecurity incidents, the impact on the Company of any significant cybersecurity incident, and any disclosure obligations arising from any such incident.
The Audit Committee, with the assistance of counsel, internal audit and/or the Company's independent accountants, shall reassess the adequacy of its Charter at least annually to ensure consistency with changing needs and compliance with all legal and regulatory requirements, and recommend any proposed changes to the Board for approval.
While the Audit Committee has the responsibilities and powers set forth in this Charter, it is not the duty of the Audit Committee to plan or conduct audits or to determine that the Company's financial statements and disclosures are complete and accurate and are in accordance with generally accepted accounting principles and applicable rules and regulations. These are the responsibilities of management and the independent auditor.