This Audit Committee Charter (the “Charter”) governs the operations of the Audit Committee of the Board of Directors (the “Audit Committee”) of O’Reilly Automotive, Inc. (the “Company”). The Audit Committee is appointed by the Board to assist the Board in monitoring (1) the integrity of the financial statements of the Company, and the Company’s accounting and financial reporting process and financial statement audits, (2) the independent auditor’s qualifications and independence, (3) the performance of the Company’s internal audit function and independent auditors, (4) the compliance by the Company with legal and regulatory requirements, and (5) overseeing the Company’s system of disclosure controls and procedures, internal controls over financial reporting and compliance with ethical standards adopted by the Company.
The Audit Committee shall prepare the report required by the rules of the Securities and Exchange Commission to be included in the Company’s annual proxy statement.
The Audit Committee shall consist of no fewer than three members. The members of the Audit Committee shall meet the independence, financial literacy and expertise and other qualification requirements of the federal securities laws and the applicable rules and regulations of the Securities and Exchange Commission and the Nasdaq National Market. In addition, at least one member of the Committee must be designated by the Board to be an “audit committee financial expert,” as defined by Item 407(d) of Regulation S-K of the Securities and Exchange Commission.
The members of the Audit Committee shall be appointed by the Board. The Corporate Governance/Nominating Committee, in consultation with the Chairman of the Board, will recommend to the Board, and the Board shall designate, one member of the Committee to serve as Chairperson. If the Chairperson is absent from a meeting, another member of the Committee may act as Chairperson. Audit Committee members may be replaced by the Board. Members of the Committee will be appointed for a one-year term and shall serve until their resignation, retirement, or removal by the Board or until their successors shall be appointed. The Board may fill vacancies on the Committee and remove a member of the Committee at any time with or without cause. No member of the Committee shall be removed except by majority vote of the Board, provided that a member that no longer serves as a director of the Company shall be deemed automatically removed without any further action by the Board.
The Audit Committee shall have the sole authority to appoint or replace the independent auditor, and shall approve, in advance, all audit engagement fees and terms and all non-audit engagements with the independent auditors permitted under applicable law, rules and regulations.
In addition, the Audit Committee shall approve all related party transactions. The Audit Committee may consult with management, but shall not delegate these responsibilities.
The Audit Committee shall have the authority, to the extent it deems necessary or appropriate, to conduct investigations into any matters within the scope of its responsibility and to retain special legal, accounting or other consultants to advise the Audit Committee.
The Audit Committee shall establish procedures for the receipt, retention and treatment of complaints regarding the Company’s accounting, financial reporting, internal accounting controls and auditing matters. The Audit Committee shall also establish procedures for the confidential, anonymous submission by the Company’s employees regarding questionable accounting or auditing matters.
The Audit Committee shall make regular reports to the Board and shall annually review its own performance.
The Company will provide appropriate funding, as determined by the Audit Committee, for compensation to the independent auditor, to any advisers that the Audit Committee chooses to engage and for payment of ordinary administrative expenses of the Audit Committee that are necessary or appropriate in carrying out its duties.
The Audit Committee shall:
Financial Statement and Disclosure Matters
1. Review and discuss with management and the independent auditor the annual audited financial statements, including disclosures made in management’s discussion and analysis, and recommend to the Board whether the audited financial statements should be included in the Company’s Annual Report on Form 10-K.
2. Review and discuss with management and the independent auditor the Company’s quarterly financial statements prior to the filing of its Quarterly Reports on Form 10-Q, including the results of the independent auditors’ reviews of the quarterly financial statements.
3. Discuss with management and the independent auditor significant financial reporting issues and judgments made in connection with the preparation of the Company’s financial statements, including any significant changes in the Company’s selection or application of accounting principles, any major issues as to the adequacy of the Company’s internal controls, the development, selection and disclosure of critical accounting estimates, and analyses of the effect of alternative assumptions, estimates or GAAP methods on the Company’s financial statements.
4. Discuss with management the Company’s earnings press releases, including the use of “pro forma” or “adjusted” non-GAAP information, as well as financial information and earnings guidance provided to analysts and rating agencies.
5. Discuss with management and the independent auditor the effect of regulatory and accounting initiatives as well as off-balance sheet structures on the Company’s financial statements.
6. Discuss with management the Company’s major financial risk exposures and the steps management has taken to monitor and control such exposures, including the Company’s risk assessment and risk management policies.
7. Review any disclosures made by CEO and CFO during the Forms 10-K and 10-Q certification process about significant deficiencies in the design or operation of internal controls or any fraud that involves management or other employees who have a significant role in the Company’s internal controls.
8. Discuss with the independent auditor the matters relating to the conduct of the audit. In particular, discuss:
(a) The adoption of, or changes to, the Company’s significant auditing and accounting principles and practices as suggested by the independent auditor, internal auditors or management.
(b) The management letter provided by the independent auditor and the Company’s response to that letter.
(c) Any difficulties encountered in the course of the audit work, including any restrictions on the scope of activities or access to requested information, and any significant disagreements with management.
9. Review and approve the “Report of the Audit Committee” to be included in the Company’s Annual Proxy Statement.
10. Review significant new accounting, financial, external reporting and asset-safeguarding policies and practices.
Oversight of the Company’s Relationship with the Independent Auditor
11. Review the experience and qualifications of the senior members of the independent auditor team.
12. Obtain and review a formal, written report from the independent auditor at least annually regarding (a) the auditors’ internal quality-control procedures, (b) any material issues raised by the most recent quality-control review, or peer review, of the firm, or by any inquiry or investigation by governmental or professional authorities within the preceding five years respecting one or more independent audits carried out by the firm, (c) any steps taken to deal with any such issues, and (d) all relationships between the independent auditor and the Company (consistent with applicable auditor professional responsibility standards).
13. Obtain and review from the independent auditor all written statements and communications relating to relationships between the independent auditor and the Company required by applicable auditing standards of the Public Company Accounting Oversight Board and Securities and Exchange Commission rules.
14. Evaluate the qualifications, performance and independence of the independent auditor, including considering whether the auditor’s quality controls are adequate and the provision of non-audit services is compatible with maintaining the auditor’s independence, and taking into account the opinions of management and the internal auditor. The Audit Committee shall present its conclusions to the Board and, if so determined by the Audit Committee, recommend that the Board take additional action to satisfy itself of the qualifications, performance and independence of the auditor.
15. Require the rotation of the lead audit partner and the concurring audit partner every five years in order to assure continuing auditor independence. The Audit Committee shall consider whether it is appropriate to adopt a policy of rotating the independent auditing firm itself on a regular basis.
16. Recommend to the Board policies for the Company’s hiring of employees or former employees of the independent auditor who were engaged on the Company’s account. The Audit Committee shall require a one year “cooling off” period before a member of the independent auditor team can begin working for the Company in certain key positions such as chief executive officer, controller, chief financial officer, chief accounting officer or any equivalent position.
17. Discuss with management, the internal auditors and the independent auditors any accounting adjustments that were noted or proposed by the independent auditor, but were not adopted or reflected.
18. Review and discuss with the independent auditor its annual audit plan, including the timing and scope of audit activities, and monitor such plan’s progress and results during the year.
19. Review with management, the independent auditor and the director of the Company’s internal auditing department, the following:
(a) All critical accounting policies and practices to be used.
(b) Any critical audit matters arising from the current period audit.
(c) All alternative treatments of financial information that the independent auditor has discussed with management, ramifications of the use of such alternative disclosures and treatments, and the treatment preferred by the independent auditor.
(d) All other material written communications between the independent auditor and management, such as any management letter and any schedule of unadjusted differences.
Oversight of the Company’s Internal Audit Function
20. Review with management and internal audit the charter, plans, activities, staffing, and organizational structure of the internal audit function.
21. Review the appointment and replacement of the senior internal auditing director.
22. Discuss with the independent auditor the internal audit department responsibilities, budget and staffing and any recommended changes in the planned scope of the internal audit.
23. Review the adequacy and effectiveness of the Company’s accounting and internal control policies and procedures on a regular basis, including the responsibilities, budget, compensation and staffing of the Company’s internal audit function, through inquiry and discussions with the independent auditor, management and director of the Company’s internal auditing department.
Internal Control Matters
24. Understand the scope of internal and external auditors’ review of internal control over financial reporting, and obtain reports on significant findings and recommendations, together with management’s responses.
25. Review the yearly report prepared by management, and attested to by the independent auditor, assessing the effectiveness of the Company’s internal control over financial reporting and stating management’s responsibility for establishing and maintaining adequate internal control over financial reporting prior to its inclusion in the Company’s Annual Report on Form 10-K.
Compliance Oversight Responsibilities
26. Obtain from the independent auditor assurance that Section 10A of the Securities Exchange Act of 1934 has not been implicated.
27. Obtain reports from management, the Company’s senior internal audit director and the independent auditor that the Company is in conformity with applicable legal requirements and the Company’s Code of Business Conduct and Ethics. Review reports and disclosures of insider and affiliated party transactions.
28. Discuss with management and the independent auditor any correspondence with regulators or governmental agencies and any employee complaints or published reports which raise material issues regarding the Company’s financial statements or accounting policies.
29. Discuss with the Company’s General Counsel legal matters that may have a material impact on the financial statements or the Company’s compliance policies.
30. Meet periodically with the Company’s General Counsel to review legal and regulatory matters, including (i) any matters that may have a material impact on the financial statements of the Company and (ii) any matters involving potential or ongoing material violations of law or breaches of fiduciary duty by the Company or any of its directors, officers, employees or agents or breaches of fiduciary duty to the Company.
IT Information Security Oversight
31. Obtain and review timely reports on a quarterly basis on the status of the IT information security program including status, initiatives and test results, business continuity planning, PCI compliance status, and significant cybersecurity risks, including cybersecurity incidents, the impact on the Company of any significant cybersecurity incident, and any disclosure obligations arising from any such incident.
The Audit Committee shall meet as often as it may deem necessary and appropriate in its judgment, but not less frequently than quarterly.
A majority of the members of the Audit Committee shall constitute a quorum. The Audit Committee may ask members of management or others to attend its meetings (or portions thereof) and to provide pertinent information as necessary. The Audit Committee shall meet with management, the internal auditors and the independent auditor in separate executive sessions at least quarterly.
The Audit Committee shall fix its own rules of procedure, which shall be consistent with the Amended and Restated Bylaws of the Company and this Charter. The Audit Committee shall keep written minutes of Audit Committee meetings, which minutes shall be maintained with the books and records of the Company. The Audit Committee may form and delegate authority to subcommittees when appropriate, but no such delegation shall be permitted if the authority is required by law, regulation or listing standard to be exercised by the Audit Committee as a whole.
The Audit Committee, with the assistance of counsel, internal audit and/or the Company’s independent accountants, shall reassess the adequacy of its Charter at least annually to ensure consistency with changing needs and compliance with all legal and regulatory requirements, and recommend any proposed changes to the Board for approval.
While the Audit Committee has the responsibilities and powers set forth in this Charter, it is not the duty of the Audit Committee to plan or conduct audits or to determine that the Company’s financial statements and disclosures are complete and accurate and are in accordance with generally accepted accounting principles and applicable rules and regulations. These are the responsibilities of management and the independent auditor.