How to Set Up Dual Controls on Business Accounts

Establish two-person authorization requirements on business bank accounts to prevent fraud and ensure financial oversight.

1. Set your dual control threshold. Most businesses set dual controls at $1,000-$5,000 for checks and $500-$2,500 for ACH transfers. Higher thresholds ($10,000+) work for larger operations but miss smaller theft patterns. Lower thresholds ($500 or less) create operational friction that employees bypass.
2. Configure account authorization levels. Designate 2-4 people as primary signers who can initiate transactions. Add 2-3 people as secondary approvers who can only approve, not initiate. Ensure at least one approver is available when primary signers travel or take leave.
3. Enable two-factor authentication for all users. Require separate devices for each step: initiator uses computer login, approver uses mobile app or SMS. Avoid shared devices or credentials. Set session timeouts at 15-30 minutes maximum.
4. Establish approval windows and backup procedures. Set 24-48 hour approval windows before transactions expire. Create emergency override procedures for payroll or critical vendor payments that require written documentation and after-the-fact review. Test backup procedures quarterly.
5. Monitor and audit dual control compliance. Review monthly statements for any single-signature transactions above your threshold. Track approval response times and identify bottlenecks. Audit emergency override usage every 90 days to prevent abuse.