When you join a nonprofit board, you take on more than a title. You take on a set of legal obligations known collectively as fiduciary duties. These duties are not suggestions or aspirational principles. They are enforceable legal standards that define how you must behave as a director, and they carry real consequences when they are breached.
Many board members, especially volunteers who joined because they care about the mission, never receive a clear explanation of what fiduciary duty actually requires of them. This guide fills that gap. It covers the three core fiduciary duties, how they apply in practice, what happens when they are breached, and how directors can protect themselves while fulfilling their obligations.
What Is Fiduciary Duty
A fiduciary is someone who is entrusted with the responsibility to act in the best interest of another party. In the nonprofit context, each board member is a fiduciary of the organization. The organization's assets, its mission, its reputation, and the interests of those it serves are entrusted to the board's care.
Fiduciary duty is the legal obligation that flows from this relationship. It requires board members to exercise their authority in good faith, with the care that a reasonably prudent person would exercise, and in a manner they reasonably believe to be in the best interest of the organization.
Fiduciary duty is not unique to nonprofits. Corporate directors, trustees, attorneys, and financial advisors all have fiduciary obligations. But in the nonprofit world, fiduciary duty takes on particular significance because there are no shareholders to hold the board accountable. The board is often the only meaningful check on the organization's management.
The Three Core Duties
Fiduciary duty in the nonprofit context is typically broken into three components: the duty of care, the duty of loyalty, and the duty of obedience. Each addresses a different dimension of the board member's responsibility.
Duty of Care
The duty of care requires board members to make informed decisions. It does not require perfection. It requires diligence.
In practical terms, the duty of care means:
Preparing for meetings. Directors should read the board pack before every meeting. A director who consistently shows up without having reviewed the materials is not exercising the care that the law requires.
Attending meetings. Regular attendance is expected. A director who misses most meetings cannot claim to be exercising due care over the organization's affairs. If personal circumstances prevent regular attendance, the responsible course is to resign rather than hold a seat that requires attention you cannot give.
Asking questions. The duty of care is not passive. Directors should ask questions when they do not understand something, request additional information when the materials provided are insufficient, and challenge assumptions when something does not seem right.
Exercising independent judgment. Each director must form their own view on matters before the board. Deferring to the executive director on every issue, rubber-stamping the chair's recommendations, or voting with the majority without consideration is not independent judgment.
Relying on expert advice. Directors are not expected to be experts in law, accounting, or every aspect of the organization's operations. They are expected to seek expert advice when the situation calls for it and to evaluate that advice critically before relying on it.
Overseeing management. The board does not manage the organization day to day, but it is responsible for hiring, evaluating, and if necessary replacing the chief executive. It is also responsible for ensuring that management has adequate systems and controls in place.
The Business Judgment Rule
The business judgment rule is a legal principle that protects directors from liability for decisions that turn out badly, as long as the decision was made in good faith, with the care an ordinarily prudent person would exercise, and in a manner the director reasonably believed was in the organization's best interest.
The business judgment rule does not protect decisions that were made:
- Without adequate information.
- In the presence of a conflict of interest.
- In bad faith.
- With reckless disregard for the organization's welfare.
The key takeaway is that the law does not punish directors for honest mistakes. It punishes them for failing to do their homework.
Duty of Loyalty
The duty of loyalty requires board members to put the organization's interests ahead of their own personal, professional, or financial interests. When there is a conflict between what benefits the director and what benefits the organization, the organization must come first.
In practical terms, the duty of loyalty means:
Disclosing conflicts of interest. Whenever a director has a personal interest in a matter before the board, they must disclose it. This applies to financial interests, relationships, and competing obligations. A robust conflict of interest policy operationalizes this requirement.
Recusing from conflicted decisions. Disclosure alone is not sufficient. The interested director should also recuse themselves from the discussion and vote on the matter in which they have a conflict.
Maintaining confidentiality. Board discussions often involve sensitive information about finances, personnel, strategy, and legal matters. Directors must keep this information confidential and not use it for personal advantage.
Not usurping corporate opportunities. If a director becomes aware of a business opportunity that would benefit the organization, they must present it to the organization before pursuing it personally.
Avoiding self-dealing. Directors should not enter into transactions with the organization without full disclosure, board approval, and a determination that the transaction is fair and in the organization's best interest.
Conflicts That Are Not Obvious
The duty of loyalty extends beyond blatant self-dealing. Consider these scenarios:
- A director who sits on the board of two organizations that are applying for the same grant has a conflict of loyalty even if no money flows to them personally.
- A director whose employer has a business relationship with the nonprofit faces a loyalty conflict even if they do not personally benefit.
- A director who has access to confidential information from another board about a shared funder faces a loyalty dilemma.
The duty of loyalty requires directors to recognize these situations and handle them transparently.
Duty of Obedience
The duty of obedience requires board members to ensure that the organization operates in accordance with its stated mission, its governing documents, and all applicable laws and regulations.
In practical terms, the duty of obedience means:
Mission adherence. The board must ensure that the organization's activities are consistent with its mission as stated in its articles of incorporation and communicated to donors, the IRS, and the public. Mission drift, the gradual expansion into activities that are not related to the organization's stated purpose, is a breach of the duty of obedience.
Legal compliance. Directors must ensure that the organization complies with all applicable federal, state, and local laws. This includes tax filings, employment law, charitable solicitation requirements, and any industry-specific regulations. Our essential guide to nonprofit board compliance covers these obligations in detail.
Adherence to governing documents. The organization's bylaws, articles of incorporation, and board-adopted policies define how the organization operates. Directors must follow these documents and ensure that management follows them as well.
Proper use of restricted funds. When donors give money for a specific purpose, the organization is legally obligated to use those funds for that purpose. The board must ensure that restricted funds are tracked separately and spent in accordance with donor intent.
How Fiduciary Duties Apply in Common Board Scenarios
Approving the Annual Budget
All three duties come into play. The duty of care requires directors to review the budget thoroughly, understand the assumptions behind revenue projections and expense allocations, and ask questions about anything that is unclear. The duty of loyalty requires directors to ensure the budget prioritizes organizational needs over personal preferences or departmental politics. The duty of obedience requires directors to ensure the budget supports the organization's mission and complies with legal requirements, including restrictions on the use of specific funds.
Hiring and Evaluating the Executive Director
The duty of care requires directors to conduct a thorough search, check references, and evaluate candidates on merit. The duty of loyalty requires directors to disclose any personal relationships with candidates and recuse themselves if necessary. The duty of obedience requires directors to ensure the executive director's compensation is reasonable and compliant with IRS guidelines on excess benefit transactions.
Entering into Contracts
Before approving a significant contract, the board should understand the terms, evaluate whether the arrangement serves the organization's interests, consider alternatives, and ensure the organization has the capacity to fulfill its obligations. If a board member has a relationship with the other party to the contract, the conflict must be disclosed and managed.
Responding to Legal or Financial Crises
When the organization faces a lawsuit, a financial shortfall, or a regulatory inquiry, the duty of care requires directors to engage actively in understanding the situation, seeking expert advice, and making informed decisions about how to respond. Ignoring a crisis or deferring entirely to the executive director does not meet the standard of care.
Overseeing Financial Audits
The duty of care requires the board to ensure that an independent audit is conducted when appropriate, to review the audit findings, and to address any material weaknesses or management letter comments. The board's audit oversight role is discussed in detail in our guide to board oversight of financial audits.
What Happens When Fiduciary Duties Are Breached
Personal Liability
Board members who breach their fiduciary duties can be held personally liable for losses to the organization. This means they could be required to pay money out of their own pocket to compensate the organization for harm caused by their actions or inaction.
Personal liability is not theoretical. Courts have held nonprofit directors liable for:
- Approving unreasonable executive compensation.
- Failing to oversee financial management, resulting in undetected fraud.
- Authorizing transactions that benefited insiders at the organization's expense.
- Ignoring obvious warning signs of financial distress.
Regulatory Action
State attorneys general have the authority to investigate and take action against nonprofit directors who breach their fiduciary duties. This can include removal from the board, prohibition from serving on other nonprofit boards, and civil penalties. The IRS can impose intermediate sanctions on directors who approve excess benefit transactions.
Reputational Consequences
Even when a breach does not result in legal action, it can damage the organization's reputation. News of a conflict of interest scandal or financial mismanagement can drive away donors, deter potential board members, and undermine the organization's credibility with the communities it serves.
Protections Available to Board Members
The Business Judgment Rule
As discussed above, the business judgment rule protects directors who make decisions in good faith, with due care, and in the organization's best interest. The rule does not protect gross negligence or intentional misconduct.
Statutory Protections
The Volunteer Protection Act of 1997 provides limited protection to volunteers (including volunteer board members) from personal liability for actions taken within the scope of their responsibilities, as long as they were acting in good faith and the harm was not caused by willful or criminal misconduct, gross negligence, or reckless misconduct.
Many states have their own volunteer protection statutes that provide similar or additional protections. However, these protections have significant limitations and should not be relied upon as a substitute for proper governance.
Indemnification
Most nonprofit bylaws include indemnification provisions that obligate the organization to cover the legal costs and liabilities of directors who are sued in connection with their board service, provided they acted in good faith. Indemnification provisions should be reviewed regularly to ensure they are current and adequate.
Directors and Officers Insurance
D&O insurance provides a financial backstop for both the organization and individual directors. It typically covers legal defense costs, settlements, and judgments arising from claims against directors and officers. D&O insurance is discussed in detail in our guide to board member liability and protection.
Practical Steps for Fulfilling Your Fiduciary Duties
Before Meetings
- Read the board pack thoroughly. If materials are incomplete or arrive too late, ask for them to be sent earlier or request a postponement.
- Review the agenda and identify items that require your particular attention or expertise.
- Prepare questions you want to raise during the meeting.
During Meetings
- Participate actively in discussions. Silence is not dissent; if you have concerns, voice them.
- Disclose any conflicts of interest at the start of the meeting.
- Request additional information if you do not feel adequately informed to vote on a matter.
- Ensure that your votes are recorded accurately in the meeting minutes.
Between Meetings
- Follow up on action items assigned to you.
- Stay informed about the organization's activities, finances, and external environment.
- Report any new conflicts of interest that arise.
- Attend committee meetings and fulfill committee responsibilities.
Annually
- Complete your conflict of interest disclosure form.
- Participate in the board's self-evaluation process.
- Review the organization's Form 990 before it is filed.
- Review and update organizational policies.
- Ensure D&O insurance is in place and adequate.
The Role of Technology in Supporting Fiduciary Duties
Meeting your fiduciary duties is easier when the right infrastructure supports you. A board management platform like NFPHub can help directors fulfill their obligations by:
- Ensuring board packs are distributed well in advance of meetings, giving directors adequate time to prepare.
- Providing a structured agenda builder that ensures compliance and governance items are always on the agenda.
- Creating comprehensive meeting minutes that document decisions, votes, and conflict disclosures.
- Tracking actions between meetings so that follow-through is visible and accountable.
- Managing compliance obligations including disclosure forms and policy acknowledgments.
- Recording votes electronically with a clear audit trail.
When directors have access to good information, delivered on time, through reliable systems, fulfilling the duty of care becomes straightforward rather than burdensome.
Conclusion
Fiduciary duty is not an abstract legal concept. It is the practical standard by which every board member's conduct is measured. The duty of care demands diligence and informed decision-making. The duty of loyalty demands integrity and transparency about conflicts. The duty of obedience demands adherence to the organization's mission and the law.
These duties are not onerous for directors who take their role seriously. They are fulfilled through the everyday practices of good governance: reading materials, attending meetings, asking questions, disclosing conflicts, and staying informed. The directors who face liability are not the ones who make honest mistakes. They are the ones who do not show up, do not pay attention, or do not put the organization first.
If you are a board member, understand your duties and take them seriously. If you are a board chair or governance committee member, ensure that every director receives the orientation, information, and support they need to meet these standards. The organization's mission, and the people it serves, depend on it.
For more on the broader compliance landscape, see our essential guide to nonprofit board compliance. To explore how the right tools can support your board's governance, visit NFPHub.