With all the nonprofit fraud these days, do board members still have to obey duty of care, duty of obedience and duty of loyalty?

In the USA in 2026, a nonprofit board member who violates the fiduciary duties of care, loyalty, or obedience faces potential legal, regulatory, and reputational consequences, but realistic outcomes are often limited—especially for unpaid volunteers acting in good faith without personal gain or gross misconduct. These duties are enshrined in state nonprofit corporation laws (with variations by state) and enforced primarily through civil actions, not routine criminal prosecution. Enforcement is selective, resource-constrained, and heavily influenced by insurance protections.

The Duties (Quick Refresher)

• Duty of Care: Reasonable prudence and oversight (e.g., reviewing financials, attending meetings, informed decision-making).
• Duty of Loyalty: Prioritize the nonprofit’s interests; avoid conflicts/self-dealing.
• Duty of Obedience: Comply with laws, mission, bylaws, and governing documents.

Breaches must typically cause harm to the organization (or public trust) and involve recklessness, gross negligence, or willfulness for personal liability to attach. The business judgment rule and Volunteer Protection Act of 1997 often shield ordinary mistakes.

Realistic Outcomes in Practice

Here’s what actually happens based on enforcement patterns, recent cases, and legal realities:

1. Internal/Organizational Consequences (Most Common Starting Point)
   The board or members can remove the director. The nonprofit itself (or a receiver) may sue for damages. This is rare without a major scandal or donor pressure.
2. Civil Liability
   Personal lawsuits by the organization, donors, beneficiaries, or state AGs for restitution, removal, or dissolution of the nonprofit.
   • Outcomes: Often settled. Directors may owe repayment of misused funds or damages.
   • Protections: Directors & Officers (D&O) liability insurance—standard for most nonprofits—typically covers defense costs, settlements, and judgments for fiduciary breaches (excluding intentional fraud or self-dealing in many policies). This is the primary reason many board members face no out-of-pocket losses.
   • Example: In 2025 NASCO enforcement reports, state AGs pursued boards for oversight failures (e.g., California cases involving housing nonprofits and safety violations), seeking director removal, escrow of assets, and dissolution—but settlements frequently involved governance reforms rather than massive personal payouts.
3. Regulatory/IRS Consequences
   • State Attorneys General: Primary enforcers. They can investigate complaints, seek injunctions, civil penalties, director bans, or restitution. Recent NASCO reports (covering 2024–2025) show actions against boards for weak oversight, self-dealing, or fund misuse—e.g., Minnesota settlements requiring repayment and governance fixes; DC cases with summary judgment against treasurers for personal spending; California director bans and fees.
   • IRS: For loyalty breaches involving “excess benefit transactions” (self-dealing), intermediate sanctions impose personal excise taxes (25% initially, up to 200% if uncorrected; approving directors face 10% up to $20,000). Repeated Form 990 failures can revoke tax-exempt status (auto-revocation after 3 years).
   • Realistic frequency: Selective. AGs and IRS prioritize large-scale issues, public funds, or high-profile complaints. Small violations often go unpunished.
4. Criminal Consequences (Rare for Pure Board Violations)
   Only if the breach involves fraud, embezzlement, or knowing participation (e.g., approving kickbacks). Recent high-profile cases (Feeding Our Future, various COVID-fund scandals) led to prison sentences for executives and insiders, but board members are rarely targeted unless actively complicit. IRS-CI and DOJ focus on direct perpetrators.
5. Reputational and Practical Fallout
   Loss of board seats elsewhere, donor backlash, negative media, or difficulty in professional life. This is often the most immediate “penalty.”

Does It Even Matter Anymore, Given Exposed Nonprofit Fraud?

Yes, it matters more than in past decades—but not in a uniform or draconian way. High-profile fraud exposures (e.g., Feeding Our Future’s $250M+ scheme, various 2023–2025 charity scandals involving self-dealing or mismanagement) have increased scrutiny from media, Congress, DOJ, IRS, and state AGs. Revenue for nonprofits continues to surge amid this, but enforcement actions are up in targeted areas (e.g., Minnesota fraud crackdowns, NASCO-reported governance suits).

However:

• Many scandals involve staff/executives more than passive boards.
• D&O insurance, the Volunteer Protection Act, and the business judgment rule blunt personal risk for most volunteers.
• Resource limits mean AGs/IRS pursue the worst cases (e.g., safety failures in housing nonprofits or blatant self-dealing), not every oversight lapse.
• Result: Ethical lapses still occur, but exposed fraud has led to more civil actions, director removals/bans, and governance mandates in settlements. It “matters” for organizational survival, donor trust, and serious violators—but a board member who simply fails to attend meetings or rubber-stamps decisions without harm or malice will likely face little to nothing.

If you sit on a nonprofit board, serve with diligence and document your process (minutes, conflict disclosures, financial reviews).

Get D&O insurance confirmation. In today’s environment, the biggest real-world risks are reputational and regulatory headaches rather than personal financial ruin for typical volunteers.

If a major breach occurs, consult counsel immediately—outcomes depend heavily on facts, state law, and whether harm resulted.