Learning from governance failures
Nobody wants to be a cautionary tale. Yet the nonprofit sector has produced enough governance failures over the past two decades to fill a textbook -- and the lessons those failures offer are too valuable to ignore.
When a nonprofit's governance fails publicly, the consequences ripple outward. Donors lose confidence. Beneficiaries are harmed. Staff lose their livelihoods. Regulators tighten oversight for the entire sector. And the public's trust in mission-driven organizations erodes a little further.
The purpose of examining these failures is not to assign blame or to suggest that governance mistakes are inevitable. It is to identify the common patterns that underlie governance breakdowns so that boards can recognize warning signs in their own organizations before they escalate into crises.
This article examines the most common governance failure patterns observed across well-documented nonprofit scandals, distills the lessons each pattern teaches, and provides practical guidance for boards seeking to strengthen their governance practices. No organization is named for the purpose of singling it out; instead, the focus is on recurring governance dynamics that any board could fall prey to without adequate safeguards.
For foundational governance concepts, see our complete guide to nonprofit board governance.
Pattern one: the imperial CEO and the passive board
How it happens
One of the most common governance failure patterns involves an executive who gradually accumulates unchecked authority while the board becomes increasingly passive and deferential. This pattern is especially common in organizations led by charismatic founders who built the organization from the ground up.
The dynamic typically unfolds gradually. The executive delivers strong programmatic results, which builds board confidence. Board meetings become perfunctory -- rubber-stamping management decisions rather than providing genuine oversight. Directors who raise questions are dismissed as obstructionist or uninformed. Information flows become controlled, with the board receiving only the data the executive chooses to share. And over time, the line between governance and management disappears entirely, with the executive effectively governing the organization unchecked.
The governance failures
Several specific governance breakdowns characterize this pattern.
Inadequate financial oversight. When a board trusts the executive implicitly, it may stop scrutinizing financial reports, approving budgets without meaningful review, or delegating financial authority without adequate controls. In several well-documented cases, this led to executive compensation that was wildly disproportionate to the organization's size, undisclosed personal expenditures charged to the organization, and financial mismanagement that was not detected for years.
Failure to evaluate the executive. Boards that are deferential to the CEO often stop conducting meaningful performance evaluations. Without regular evaluation, problematic behavior goes unchecked, performance expectations are unclear, and the board loses the governance mechanism most directly designed to hold the executive accountable.
Conflict-of-interest tolerance. In organizations where the executive dominates, conflicts of interest may be tolerated or overlooked because challenging them feels disloyal to a leader who has done so much for the organization.
The lessons
Maintain the governance-management boundary. The board governs; the executive manages. This distinction must be maintained regardless of how talented or trusted the executive is. No individual should be above governance oversight. Our article on board governance basics covers this fundamental principle.
Ensure independent information flows. The board should have access to financial data, programmatic reports, and organizational information independently of the executive. This does not mean going around the executive -- it means ensuring governance structures that provide the board with the information it needs to fulfill its oversight role.
Conduct regular executive evaluations. Annual performance evaluations of the chief executive are a governance essential, not an optional best practice. The evaluation should be based on clear, pre-established criteria and should include input from multiple sources.
Rotate board leadership. Boards where the chair and CEO have a close personal relationship or where the same chair serves indefinitely are more susceptible to this pattern. Regular rotation of board leadership introduces fresh perspectives and reduces the risk of co-dependency.
Pattern two: financial mismanagement and fraud
How it happens
Financial governance failures range from deliberate fraud by individuals to systemic failures of financial oversight by the board. Both types have devastated nonprofit organizations.
In cases of deliberate fraud, a trusted individual -- often the executive director, CFO, or bookkeeper -- exploits weak financial controls to divert organizational funds for personal use. These cases frequently share common features: a single individual with excessive control over financial processes, inadequate separation of duties, infrequent or superficial audits, and a board that does not review financial statements with sufficient rigor.
In cases of systemic financial mismanagement, the failure is not deliberate theft but rather incompetent or negligent financial governance. This may include operating without adequate reserves, taking on unsustainable financial commitments, failing to comply with grant restrictions, or misrepresenting the organization's financial position to donors and regulators.
The governance failures
Lack of financial controls. Basic financial controls -- separation of duties, dual signatures on large transactions, independent bank statement reviews, regular reconciliations -- are the first line of defense against fraud. Boards that fail to ensure these controls are in place are neglecting a core fiduciary responsibility.
Inadequate audit oversight. Independent financial audits provide an external check on the organization's financial practices. Boards that treat audits as formalities, fail to meet privately with auditors, or do not read and discuss audit findings are missing critical governance opportunities.
Financial illiteracy. Some boards lack directors with sufficient financial expertise to provide meaningful oversight of the organization's finances. When no one on the board can read a balance sheet, interpret cash flow statements, or evaluate the reasonableness of budget assumptions, financial oversight becomes superficial.
Over-reliance on a single individual. When one person controls all financial processes -- writing checks, recording transactions, reconciling accounts, and reporting to the board -- the opportunity for fraud is significant. This is particularly common in small nonprofits with limited staff.
The lessons
Implement robust financial controls. Ensure separation of duties in financial processes, require dual authorization for significant transactions, and establish clear policies for expense reimbursement, credit card use, and procurement.
Invest in financial literacy. Recruit board members with financial expertise and provide financial literacy training for all directors. Every board member should be able to read and understand the organization's basic financial statements.
Take audits seriously. The board or its audit committee should meet privately with external auditors, discuss audit findings and management responses, and monitor the implementation of auditor recommendations. Ensure the audit is conducted by an independent firm with nonprofit experience.
Review financial statements regularly. Financial reports should be a standing item on every board meeting agenda, included in every board pack, and discussed with enough depth to identify trends, anomalies, and concerns.
Pattern three: mission drift and strategic failure
How it happens
Mission drift occurs when an organization gradually moves away from its core purpose, often in pursuit of revenue, growth, or organizational prestige. While each incremental step may seem reasonable in isolation, the cumulative effect can leave an organization operating in ways that its founders, its donors, and its beneficiaries would not recognize.
This pattern is particularly insidious because it often involves well-intentioned decisions. The organization accepts a grant that is slightly outside its mission area because the funding is needed. It launches a revenue-generating program that diverts resources from mission-critical activities. It grows its administrative infrastructure faster than its programmatic capacity. Over time, the mission becomes a slogan rather than a strategic compass.
The governance failures
Failure to use the mission as a decision filter. Boards that do not regularly reference the organization's mission when making strategic decisions are vulnerable to drift. Every significant decision -- new programs, partnerships, revenue strategies, organizational changes -- should be evaluated against the mission.
Inadequate strategic planning. Organizations without clear strategic plans and regular strategic reviews are more susceptible to drift because there is no framework for evaluating whether current activities align with long-term direction.
Revenue-driven decision-making. When financial pressures dominate board discussions, mission considerations can be marginalized. Boards must balance financial sustainability with mission fidelity, and when these objectives conflict, the mission should generally prevail.
The lessons
Reaffirm the mission regularly. The board should periodically review the organization's mission statement and assess whether current activities and strategic direction remain aligned. This does not mean the mission can never evolve, but any evolution should be intentional, deliberate, and documented.
Use strategic planning as a governance tool. A well-developed strategic plan provides a framework for evaluating opportunities and making decisions. The board should lead the strategic planning process, monitor implementation, and use the plan as a reference point for governance decisions.
Evaluate new opportunities against the mission. When management proposes new programs, partnerships, or revenue strategies, the board should explicitly ask: Does this advance our mission? If not, is the trade-off justified? What will we stop doing to make room for this?
Pattern four: conflicts of interest and self-dealing
How it happens
Conflict-of-interest violations range from overt self-dealing -- directors steering contracts to their own businesses -- to subtler dynamics where personal relationships or financial interests influence governance decisions without adequate disclosure.
In several high-profile cases, board members have approved transactions that personally benefited them or their associates: real estate deals, consulting contracts, employment arrangements for family members, or vendor relationships with businesses they owned.
The governance failures
Absent or unenforced conflict-of-interest policies. Some boards lack formal conflict-of-interest policies entirely. Others have policies on paper but do not enforce them in practice -- directors are not required to complete annual disclosure forms, conflicts are not discussed when they arise, and recusal is not enforced.
Culture of politeness over accountability. In many nonprofit boards, there is a strong cultural norm against challenging fellow directors. When a conflict of interest arises, other board members may feel uncomfortable raising it, particularly if the conflicted director is a major donor, a founder, or a respected community figure.
Inadequate documentation. Even when conflicts are disclosed and directors recuse themselves, inadequate documentation creates governance risk. If meeting minutes do not record the disclosure, recusal, and the board's deliberation, the organization cannot demonstrate that the conflict was properly managed.
The lessons
Adopt and enforce a conflict-of-interest policy. Every board should have a written conflict-of-interest policy that requires annual disclosure, mandates recusal from discussion and voting on conflicted matters, and defines the process for managing conflicts when they arise. Our article on nonprofit board compliance covers this in detail.
Create a culture of disclosure. Normalize conflict disclosure so that it is seen as a sign of integrity rather than an accusation of wrongdoing. Board chairs should model this behavior by proactively disclosing their own potential conflicts.
Document everything. Conflict disclosures, recusals, and the board's reasoning for decisions involving potential conflicts should be thoroughly documented in meeting minutes. This documentation protects both the organization and the individual directors.
Pattern five: inadequate risk oversight
How it happens
Boards that fail to identify and mitigate significant risks leave their organizations exposed to preventable harm. This pattern encompasses a wide range of failures: ignoring cybersecurity risks that lead to data breaches, failing to maintain adequate insurance coverage, overlooking compliance requirements, neglecting facility safety, or ignoring warning signs of organizational dysfunction.
The common thread is a board that is not asking "what could go wrong?" with sufficient rigor or frequency.
The governance failures
No formal risk management process. Many nonprofit boards lack a structured approach to identifying, assessing, and mitigating organizational risks. Without a risk register and regular risk reviews, risks are managed reactively -- after they materialize -- rather than proactively.
Ignoring warning signs. In many governance failures, warning signs were present long before the crisis. Staff turnover, audit findings, compliance concerns, donor complaints, and programmatic underperformance can all signal underlying problems. Boards that dismiss these signals as noise rather than investigating them are failing in their oversight role.
Inadequate compliance monitoring. Nonprofit organizations face a complex web of regulatory requirements. Boards that do not systematically monitor compliance risk fines, penalties, loss of tax-exempt status, and reputational damage.
The lessons
Establish a risk management framework. The board should maintain a risk register that identifies significant organizational risks, assesses their likelihood and impact, and documents mitigation strategies. This register should be reviewed at least quarterly.
Pay attention to warning signs. Boards should develop the discipline of treating anomalies as signals rather than noise. High staff turnover, unexplained financial variances, recurring audit findings, and stakeholder complaints all warrant investigation.
Monitor compliance systematically. Use compliance tracking tools to maintain visibility into regulatory requirements and filing deadlines. Ensure compliance status is reported regularly to the board. Do not wait for a regulator to tell you that a filing was missed.
Invest in cybersecurity governance. Cyber risk is one of the fastest-growing threats to nonprofit organizations. Our article on cybersecurity governance for board members provides a practical framework for board oversight of this critical risk area.
Pattern six: governance captured by a small group
How it happens
In some organizations, effective governance power becomes concentrated in a small subset of the board -- an executive committee, a group of long-tenured directors, or an informal inner circle. The full board meets, discusses, and votes, but the real decisions have already been made in smaller, less transparent settings.
This pattern can develop organically. Experienced directors take on more responsibility because newer members are still learning. The executive committee begins making decisions that should be reserved for the full board because convening the full board is inconvenient. Key relationships between the chair, the executive, and a few influential directors create an informal decision-making structure that bypasses formal governance processes.
The governance failures
Executive committee overreach. Executive committees that exceed their charter authority can effectively disenfranchise the broader board. When important decisions are made by a small committee rather than the full board, governance accountability is diminished.
Information asymmetry. When a small group has access to information that the rest of the board does not, governance is compromised. Directors cannot provide meaningful oversight if they are making decisions based on incomplete information.
Marginalization of dissent. When power is concentrated, dissenting voices are more easily silenced. Directors who challenge the consensus of the inner group may be marginalized, excluded from informal discussions, or encouraged to step down.
The lessons
Define and enforce committee authority. Committee charters should clearly define the scope of each committee's authority and specify which decisions require full board approval. Executive committees should be limited to genuinely urgent matters between board meetings, with a requirement to report their decisions to the full board for ratification.
Ensure equal information access. All board members should receive the same information at the same time. Digital platforms like nfphub centralize board packs and documents so that every director has access to the same materials, reducing information asymmetry.
Protect dissent. Healthy governance requires the ability to disagree constructively. Boards should establish norms that protect and encourage dissenting viewpoints, and the chair should actively invite diverse perspectives during discussions.
Implement term limits. Term limits prevent the entrenchment of long-serving directors who may accumulate disproportionate influence. Our article on board member term limits provides practical guidance.
Applying these lessons to your board
Conducting a governance vulnerability assessment
Every board should periodically assess its vulnerability to the governance failure patterns described in this article. This is not a theoretical exercise -- it is a practical governance tool that can identify weaknesses before they lead to crises.
A governance vulnerability assessment involves examining each failure pattern and asking: Could this happen here? Be honest in your assessment. The organizations that experienced these failures were not populated by bad people. They were populated by well-intentioned directors who did not recognize the governance dynamics that were unfolding.
Strengthening governance infrastructure
The common thread across all governance failures is inadequate governance infrastructure -- the structures, policies, processes, and tools that support effective oversight.
Meeting management. Well-structured meetings with clear agendas, adequate preparation time, and thorough documentation are governance fundamentals. Using an agenda builder to structure meetings, distributing board packs in advance, and recording accurate meeting minutes are practical steps that strengthen governance infrastructure.
Policy framework. Essential governance policies -- conflict of interest, whistleblower protection, financial controls, executive authority, document retention -- should be documented, adopted by the board, reviewed regularly, and accessible to all directors.
Accountability mechanisms. Regular executive evaluation, board self-assessment, financial audits, compliance monitoring, and risk reviews are the mechanisms through which boards exercise accountability. None of them should be optional.
Technology platform. A board management platform like nfphub provides the infrastructure that supports all of these governance functions. Centralizing governance workflows in a purpose-built platform creates efficiency, transparency, and accountability that paper-based or email-driven governance cannot match.
Building a governance culture
Ultimately, governance effectiveness depends on culture as much as structure. The boards that avoid governance failures tend to share several cultural characteristics.
Curiosity. Directors ask questions not because they distrust management but because understanding is a prerequisite for effective oversight.
Accountability. Directors hold themselves, each other, and the executive accountable for performance, ethics, and fiduciary obligations.
Transparency. Information flows openly, dissent is welcomed, and governance processes are documented and accessible.
Continuous improvement. The board regularly assesses its own effectiveness and seeks to improve its governance practices.
These cultural attributes do not develop spontaneously. They are cultivated through intentional leadership, reinforced through governance structures and norms, and sustained through ongoing attention and effort.
The governance failures described in this article were painful for the organizations involved and damaging for the sector as a whole. But they need not be repeated. The lessons are clear, the tools are available, and the path to stronger governance is well-marked. The question is whether your board has the commitment to walk it.