Documente Academic
Documente Profesional
Documente Cultură
(REVISED)
SPECIAL CONSIDERATIONS—AUDITS OF FINANCIAL
STATEMENTS PREPARED IN ACCORDANCE WITH
SPECIAL PURPOSE FRAMEWORKS
(Effective for audits of financial statements for periods
ending on or after December 15, 2016)
CONTENTS
Paragraph
Introduction
Scope of this ISA .................................................................................... 1–3
Effective Date ......................................................................................... 4
Objective ................................................................................................ 5
Definitions .............................................................................................. 6–7
Requirements
Considerations When Accepting the Engagement .................................. 8
Considerations When Planning and Performing the Audit ..................... 9–10
Forming an Opinion and Reporting Considerations ............................... 11–14
Application and Other Explanatory Material
Definition of Special Purpose Framework .............................................. A1–A4
Considerations When Accepting the Engagement .................................. A5–A8
Considerations When Planning and Performing the Audit ..................... A9–A12
Forming an Opinion and Reporting Considerations ............................... A13–A21
Appendix: Illustrations of Independent Auditor’s Reports on Special Purpose
Financial Statements
Introduction
Scope of this ISA
1. The International Standards on Auditing (ISAs) in the 100–700 series apply
to an audit of financial statements. This ISA deals with special considerations
in the application of those ISAs to an audit of financial statements prepared
in accordance with a special purpose framework.
2. This ISA is written in the context of a complete set of financial statements
prepared in accordance with a special purpose framework. ISA 805
(Revised) 1 deals with special considerations relevant to an audit of a single
financial statement or of a specific element, account or item of a financial
statement.
3. This ISA does not override the requirements of the other ISAs; nor does it
purport to deal with all special considerations that may be relevant in the
circumstances of the engagement.
Effective Date
4. This ISA is effective for audits of financial statements for periods ending on
or after December 15, 2016.
Objective
5. The objective of the auditor, when applying ISAs in an audit of financial
statements prepared in accordance with a special purpose framework, is to
address appropriately the special considerations that are relevant to:
(a) The acceptance of the engagement;
(b) The planning and performance of that engagement; and
(c) Forming an opinion and reporting on the financial statements.
Definitions
6. For purposes of the ISAs, the following terms have the meanings attributed
below:
(a) Special purpose financial statements – Financial statements prepared
in accordance with a special purpose framework. (Ref: Para. A4)
(b) Special purpose framework – A financial reporting framework designed
to meet the financial information needs of specific users. The financial
1
ISA 805 (Revised), Special Considerations—Audits of Single Financial Statements and Specific
Elements, Accounts or Items of a Financial Statement
Requirements
Considerations When Accepting the Engagement
Acceptability of the Financial Reporting Framework
8. ISA 210 requires the auditor to determine the acceptability of the financial
reporting framework applied in the preparation of the financial statements. 3
In an audit of special purpose financial statements, the auditor shall obtain an
understanding of: (Ref: Para. A5–A8)
(a) The purpose for which the financial statements are prepared;
(b) The intended users; and
(c) The steps taken by management to determine that the applicable
financial reporting framework is acceptable in the circumstances.
2
ISA 200, Overall Objectives of the Independent Auditor and the Conduct of an Audit in Accordance
with International Standards on Auditing, paragraph 13(a)
3
ISA 210, Agreeing the Terms of Audit Engagements, paragraph 6(a)
4
ISA 200, paragraph 18
5
ISA 315 (Revised), Identifying and Assessing the Risks of Material Misstatement through
Understanding the Entity and Its Environment, paragraph 11(c)
Alerting Readers that the Financial Statements Are Prepared in Accordance with a
Special Purpose Framework
14. The auditor’s report on special purpose financial statements shall include an
Emphasis of Matter paragraph alerting users of the auditor’s report that the
financial statements are prepared in accordance with a special purpose
framework and that, as a result, the financial statements may not be suitable
for another purpose. (Ref: Para. A20–A21)
***
6
ISA 700 (Revised), Forming an Opinion and Reporting on Financial Statements
7
ISA 700 (Revised), paragraph 15
8
Or other term that is appropriate in the context of the legal framework in the particular jurisdiction
are designed to avoid misunderstandings about the purpose for which the
financial statements are prepared. Disclosures comprise explanatory or
descriptive information, set out as required, expressly permitted or otherwise
allowed by the applicable financial reporting framework, on the face of
financial statements, or in the notes, or incorporated therein by cross-
reference. 9
9
ISA 200, paragraph 13(f)
10
ISA 210, paragraph 18
11
ISA 200, paragraphs 14, 18, and 22–23
12
ISA 320, Materiality in Planning and Performing an Audit, paragraph 2
13
ISA 260 (Revised), Communication with Those Charged with Governance
Going Concern
A15. Special purpose financial statements may or may not be prepared in
accordance with a financial reporting framework for which the going concern
basis of accounting is relevant (e.g., the going concern basis of accounting is
not relevant for some financial statements prepared on a tax basis in particular
jurisdictions). 19 Depending on the applicable financial reporting framework
used in the preparation of the special purpose financial statements, the
description in the auditor’s report of management’s responsibilities 20 relating
to going concern may need to be adapted as necessary. The description in the
14
ISA 260 (Revised), paragraph A8
15
ISA 705 (Revised), Modifications to the Opinion in the Independent Auditor’s Report
16
ISA 570 (Revised), Going Concern
17
ISA 720 (Revised), The Auditor’s Responsibilities Relating to Other Information
18
ISA 706 (Revised), Emphasis of Matter Paragraphs and Other Matter Paragraphs in the Independent
Auditor’s Report
19
ISA 570 (Revised), paragraph 2
20
See ISA 700 (Revised), paragraphs 34(b) and A48.
Other Information
A17. ISA 720 (Revised) deals with the auditor’s responsibilities relating to other
information. In the context of this ISA, reports containing or accompanying
the special purpose financial statements—the purpose of which is to provide
owners (or similar stakeholders) with information on matters presented in the
special purpose financial statements—are considered to be annual reports for
the purpose of ISA 720 (Revised). In the case of financial statements prepared
using a special purpose framework, the term “similar stakeholders” includes
the specific users whose financial information needs are met by the design of
the special purpose framework used to prepare the special purpose financial
statements. When the auditor determines that the entity plans to issue such a
report, the requirements in ISA 720 (Revised) apply to the audit of the special
purpose financial statements.
21
See ISA 700 (Revised), paragraph 39(b)(iv).
22
ISA 701, Communicating Key Audit Matters in the Independent Auditor’s Report
23
ISA 700 (Revised), paragraph 31
24
See ISA 700 (Revised), paragraphs 45 and A56–A58
Alerting Readers that the Financial Statements Are Prepared in Accordance with a
Special Purpose Framework (Ref: Para. 14)
A20. The special purpose financial statements may be used for purposes other than
those for which they were intended. For example, a regulator may require
certain entities to place the special purpose financial statements on public
record. To avoid misunderstandings, the auditor alerts users of the auditor’s
report by including an Emphasis of Matter paragraph explaining that the
financial statements are prepared in accordance with a special purpose
framework and, therefore, may not be suitable for another purpose. ISA 706
(Revised) requires this paragraph to be included within a separate section of
the auditor’s report with an appropriate heading that includes the term
“Emphasis of Matter”. 26
25
See ISA 706 (Revised), paragraphs 10–11.
26
See paragraph 9(a) of ISA 706 (Revised)
Appendix
(Ref: Para. A14)
Opinion
We have audited the financial statements of ABC Company (the Company), which
comprise the balance sheet as at December 31, 20X1, and the income statement,
statement of changes in equity and cash flow statement for the year then ended, and
notes to the financial statements, including a summary of significant accounting
policies.
In our opinion, the accompanying financial statements of the Company for the year
ended December 31, 20X1 are prepared in all material respects, in accordance with
the financial reporting provisions of Section Z of the contract dated January 1, 20X1
between the Company and DEF Company (“the contract”).
27
Throughout these illustrative auditor’s reports, the terms management and those charged with
governance may need to be replaced by another term that is appropriate in the context of the legal
framework in the particular jurisdiction.
Those charged with governance are responsible for overseeing the Company’s
financial reporting process.
Opinion
We have audited the financial statements of ABC Partnership (the Partnership), which
comprise the balance sheet as at December 31, 20X1 and the income statement for the
year then ended, and notes to the financial statements, including a summary of
significant accounting policies.
In our opinion, the accompanying financial statements of the Partnership for the year
ended December 31, 20X1 are prepared, in all material respects, in accordance with
[describe the applicable income tax law] of Jurisdiction X.
29
Or other terms that are appropriate in the context of the legal framework in the particular jurisdiction
30
This sentence would be modified, as appropriate, in circumstances when the auditor also has
responsibility to issue an opinion on the effectiveness of internal control in conjunction with the audit
of the financial statements.
Opinion
We have audited the financial statements of ABC Company (the Company), which
comprise the balance sheet as at December 31, 20X1, and the income statement,
statement of changes in equity and cash flow statement for the year then ended, and
notes to the financial statements, including a summary of significant accounting
policies.
In our opinion, the accompanying financial statements present fairly, in all material
respects, (or give a true and fair view of) the financial position of the Company as at
December 31, 20X1, and (of) its financial performance and its cash flows for the year
then ended in accordance with the financial reporting provisions of Section Y of
Regulation Z.
section above, we have determined the matters described below to be key audit matters to
be communicated in our report.
[Description of each key audit matter in accordance with ISA 701 as applied to this audit.]
Other Matter
The Company has prepared a separate set of financial statements for the year ended
December 31, 20X1 in accordance with International Financial Reporting Standards
on which we issued a separate auditor’s report to the shareholders of the Company
dated March 31, 20X2.
31
Or other terms that are appropriate in the context of the legal framework in the particular jurisdiction
32
Where management’s responsibility is to prepare financial statements that give a true and fair view,
this may read: “Management is responsible for the preparation of a financial statements that give a
true and fair view in accordance with the financial reporting provisions of section Y of Regulation Z
and for such …”
Paragraph 41(b) of ISA 700 (Revised) explains that the shaded material below can be located in an Appendix
to the auditor’s report. Paragraph 41(c) of ISA 700 (Revised) explains that when law, regulation or national
auditing standards expressly permit, reference can be made to a website of an appropriate authority that
contains the description of the auditor’s responsibilities, rather than including this material in the auditor’s
report, provided that the description on the website addresses, and is not inconsistent with, the description
of the auditor’s responsibilities below.
33
This sentence would be modified, as appropriate, in circumstances when the auditor also has
responsibility to issue an opinion on the effectiveness of internal control in conjunction with the audit
of the financial statements.
We communicate with those charged with governance regarding, among other matters, the
planned scope and timing of the audit and significant audit findings, including any
significant deficiencies in internal control that we identify during our audit.
We also provide those charged with governance with a statement that we have complied
with relevant ethical requirements regarding independence, and to communicate with them
all relationships and other matters that may reasonably be thought to bear on our
independence, and where applicable, related safeguards.
From the matters communicated with those charged with governance, we determine
those matters that were of most significance in the audit of the financial statements of
the current period and are therefore the key audit matters. We describe these matters
in our auditor’s report unless law or regulation precludes public disclosure about the
matter or when, in extremely rare circumstances, we determine that a matter should not
be communicated in our report because the adverse consequences of doing so would
reasonably be expected to outweigh the public interest benefits of such communication.
The engagement partner on the audit resulting in this independent auditor’s report is
[name].
[Signature in the name of the audit firm, the personal name of the auditor, or both,
as appropriate for the particular jurisdiction]
[Auditor address] [Placement of date and address reversed)]
[Date]
CONTENTS
Paragraph
Introduction
Scope of this ISA .................................................................................... 1–3
Effective Date ......................................................................................... 4
Objective ................................................................................................ 5
Definitions .............................................................................................. 6
Requirements
Considerations When Accepting the Engagement .................................. 7–9
Considerations When Planning and Performing the Audit ..................... 10
Forming an Opinion and Reporting Considerations ............................... 11–17
Application and Other Explanatory Material
Scope of this ISA .................................................................................... A1–A4
Considerations When Accepting the Engagement .................................. A5–A9
Considerations When Planning and Performing the Audit ..................... A10–A15
Forming an Opinion and Reporting Considerations ............................ A16–A28
Appendix 1: Examples of Specific Elements, Accounts or Items of a
Financial Statement
Appendix 2: Illustrations of Auditor’s Reports on a Single Financial
Statement and on a Specific Element of a Financial Statement
Introduction
Scope of this ISA
1. The International Standards on Auditing (ISAs) in the 100–700 series apply
to an audit of financial statements and are to be adapted as necessary in the
circumstances when applied to audits of other historical financial
information. This ISA deals with special considerations in the application of
those ISAs to an audit of a single financial statement or of a specific element,
account or item of a financial statement. The single financial statement or the
specific element, account or item of a financial statement may be prepared in
accordance with a general or special purpose framework. If prepared in
accordance with a special purpose framework, ISA 800 (Revised) 1 also
applies to the audit. (Ref: Para. A1–A4)
2. This ISA does not apply to the report of a component auditor, issued as a
result of work performed on the financial information of a component at the
request of a group engagement team for purposes of an audit of group
financial statements (see ISA 600). 2
3. This ISA does not override the requirements of the other ISAs; nor does it
purport to deal with all special considerations that may be relevant in the
circumstances of the engagement.
Effective Date
4. This ISA is effective for audits of single financial statements or of specific
elements, accounts or items for periods ending on or after December 15,
2016. In the case of audits of single financial statements or of specific
elements, accounts or items of a financial statement as at a specific date, this
ISA is effective for audits of such information as at a date on or after
December 15, 2016.
Objective
5. The objective of the auditor, when applying ISAs in an audit of a single
financial statement or of a specific element, account or item of a financial
statement, is to address appropriately the special considerations that are
relevant to:
(a) The acceptance of the engagement;
(b) The planning and performance of that engagement; and
1
ISA 800 (Revised), Special Considerations—Audits of Financial Statements Prepared in
Accordance with Special Purpose Frameworks
2
ISA 600, Special Considerations—Audits of Group Financial Statements (Including the Work of
Component Auditors)
Definitions
6. For purposes of this ISA, reference to:
(a) “Element of a financial statement” or “element” means an “element,
account or item of a financial statement;”
(b) “International Financial Reporting Standards” means the International
Financial Reporting Standards (IFRSs) issued by the International
Accounting Standards Board; and
(c) A single financial statement or to a specific element of a financial
statement includes the related disclosures. The related disclosures
ordinarily comprise explanatory or other descriptive information
relevant to the financial statement or to the element. (Ref: Para. A2)
Requirements
Considerations When Accepting the Engagement
Application of ISAs
7. ISA 200 requires the auditor to comply with all ISAs relevant to the audit. 3
In the case of an audit of a single financial statement or of a specific element
of a financial statement, this requirement applies irrespective of whether the
auditor is also engaged to audit the entity’s complete set of financial
statements. If the auditor is not also engaged to audit the entity’s complete
set of financial statements, the auditor shall determine whether the audit of a
single financial statement or of a specific element of those financial
statements in accordance with ISAs is practicable. (Ref: Para. A5–A6)
3
ISA 200, Overall Objectives of the Independent Auditor and the Conduct of an Audit in Accordance
with International Standards on Auditing, paragraph 18
4
ISA 210, Agreeing the Terms of Audit Engagements, paragraph 6(a)
Form of Opinion
9. ISA 210 requires that the agreed terms of the audit engagement include the
expected form of any reports to be issued by the auditor. 5 In the case of an
audit of a single financial statement or of a specific element of a financial
statement, the auditor shall consider whether the expected form of opinion is
appropriate in the circumstances. (Ref: Para. A8–A9)
5
ISA 210, paragraph 10(e)
6
ISA 200, paragraph 2
7
ISA 200, paragraph 13(f), explains that the term “financial statements” ordinarily refers to a complete
set of financial statements as determined by the requirements of the applicable financial reporting
framework.
8
ISA 700 (Revised), Forming an Opinion and Reporting on Financial Statements
9
ISA 705 (Revised), Modifications to the Opinion in the Independent Auditor’s Report
10
ISA 706 (Revised), Emphasis of Matter Paragraphs and Other Matter Paragraphs in the Independent
Auditor’s Report
11
ISA 570 (Revised), Going Concern, paragraph 22
12
ISA 701, Communicating Key Audit Matters in the Independent Auditor’s Report, paragraph 13
13
ISA 720 (Revised), The Auditor’s Responsibilities Relating to Other Information, paragraph 22(e)(ii)
***
Application and Other Explanatory Material
Scope of this ISA (Ref: Para. 1, 6(c))
A1. ISA 200 defines the term “historical financial information” as information
expressed in financial terms in relation to a particular entity, derived
primarily from that entity’s accounting system, about economic events
occurring in past time periods or about economic conditions or circumstances
at points in time in the past. 15
A2. ISA 200 defines the term “financial statements” as a structured representation
of historical financial information, including disclosures, intended to
communicate an entity’s economic resources or obligations at a point in time
or the changes therein for a period of time in accordance with a financial
14
ISA 705 (Revised), paragraph 15
15
ISA 200, paragraph 13(g)
16
ISA 200, paragraph 13(f)
17
ISA 200, paragraph 2
18
ISAE 3000 (Revised), Assurance Engagements Other than Audits or Reviews of Historical Financial
Information
19
ISA 200, paragraphs 14, 18, and 22–23
20
ISA 200, paragraph 8
21
ISA 700 (Revised), paragraphs 25–26
Considerations When Planning and Performing the Audit (Ref: Para. 10)
A10. The relevance of each of the ISAs requires careful consideration. Even when
only a specific element of a financial statement is the subject of the audit,
ISAs such as ISA 240, 22 ISA 550 23 and ISA 570 (Revised) are, in principle,
relevant. This is because the element could be misstated as a result of fraud,
the effect of related party transactions, or the incorrect application of the
going concern basis of accounting under the applicable financial reporting
framework.
A11. ISA 260 (Revised) requires the auditor to determine the appropriate person(s)
within the entity’s governance structure with whom to communicate. 24 ISA
260 (Revised) notes that, in some cases, all of those charged with governance
are involved in managing the entity, and the application of communication
requirements is modified to recognize this position. 25 When a complete set
of financial statements is also prepared by the entity, those person(s)
responsible for the oversight of the preparation of the single financial
statement or the element may not be the same as those charged with
governance responsible for the oversight of the preparation of the complete
set of financial statements. A12. Furthermore, ISAs are written in the
context of an audit of financial statements; they are to be adapted as necessary
in the circumstances when applied to the audit of a single financial
statement 26 or of a specific element of a financial statement. For example,
written representations from management about the complete set of financial
statements would be replaced by written representations about the
presentation of the financial statement or the element in accordance with the
applicable financial reporting framework.A13. Matters included in
the auditor’s report on the complete set of financial statements may have
implications for the audit of a single financial statement or of an element of
a financial statement (see paragraph 14). When planning and performing an
audit of a single financial statement or a specific element of a financial
statement in conjunction with the audit of the entity’s complete set of
financial statements, the auditor may be able to use audit evidence obtained
as part of the audit of the entity’s complete set of financial statements in the
audit of the financial statement or the element. ISAs, however, require the
auditor to plan and perform the audit of the financial statement or element to
obtain sufficient appropriate audit evidence on which to base the opinion on
the financial statement or on the element.
22
ISA 240, The Auditor’s Responsibilities Relating to Fraud in an Audit of Financial Statements
23
ISA 550, Related Parties
24
ISA 260 (Revised), Communication with Those Charged with Governance, paragraph 11
25
ISA 260 (Revised), paragraph 10(b), 13, A1 (third bullet), A2 and A8.
26
ISA 200, paragraph 2
A14. The individual financial statements that comprise a complete set of financial
statements, and many of the specific elements of those financial statements,
including their related disclosures, are interrelated. Accordingly, when
auditing a single financial statement or a specific element of a financial
statement, the auditor may not be able to consider the financial statement or
the element in isolation. Consequently, the auditor may need to perform
procedures in relation to the interrelated items to meet the objective of the
audit.
A15. Furthermore, the materiality determined for a single financial statement or
for a specific element of a financial statement may be lower than the
materiality determined for the entity’s complete set of financial statements;
this will affect the nature, timing and extent of the audit procedures and the
evaluation of uncorrected misstatements.
27
ISA 700 (Revised), paragraph 13(e)
Going Concern
A19. Depending on the applicable financial reporting framework used in the
preparation of the single financial statement or the specific element of a
financial statement, the description in the auditor's report of management’s
responsibilities 28 relating to going concern may need to be adapted as
necessary. The description in the auditor’s report of the auditor’s
responsibilities 29 may also need to be adapted as necessary depending on how
ISA 570 (Revised) applies in the circumstances of the engagement.
Other Information
A21. ISA 720 (Revised) deals with the auditor’s responsibilities relating to other
information. In the context of this ISA, reports containing or accompanying
the single financial statement or specific element of a financial statement—
the purpose of which is to provide owners (or similar stakeholders) with
information on matters presented in the single financial statement or the
specific element of a financial statement—are considered to be annual reports
for purposes of ISA 720 (Revised). When the auditor determines that the
entity plans to issue such a report, the requirements in ISA 720 (Revised)
apply to the audit of the single financial statement or the element.
28
See ISA 700 (Revised), paragraphs 34(b) and A48.
29
See ISA 700 (Revised), paragraphs 39(b)(iv).
30
ISA 700 (Revised), paragraph 30
31
ISA 700 (Revised), paragraph 31
the engagement partner in the auditor’s report also applies to audits of single
financial statements of listed entities or specific elements of financial
statements of listed entities. 32 The auditor may be required by law or
regulation to include the name of the engagement partner in the auditor’s
report or may otherwise decide to do so when reporting on a single financial
statement or on an element of a financial statement of entities other than listed
entities.
32
See ISA 700 (Revised), paragraphs 46 and A61–A63.
A25. For example, in the case when there is a qualification of the auditor’s opinion
in relation to accounts receivable in the auditor’s report on the complete set
of financial statements, and the single financial statement includes accounts
receivable, or the specific element of a financial statement relates to accounts
receivable, it is likely that there would be implications for the audit. On the
other hand, if the qualification of the auditor’s opinion on the complete set of
financial statements relates to classification of long-term debt, then it is less
likely that there would be implications for an audit of the single financial
statement that is the income statement, or if the specific element of the
financial statement relates to accounts receivable.
A26. Key audit matters that are communicated in the auditor’s report on the
complete set of financial statements may have implications for an audit of a
single financial statement or the specific element of the financial statement.
The information included in the Key Audit Matters section about how the
matter was addressed in the audit of the complete set of financial statements
may be useful to the auditor’s determination of how to address the matter
when it is relevant to the audit of the single financial statement or the specific
element of the financial statement.
33
See ISA 706 (Revised), paragraphs 10–11.
34
ISA 510, Initial Audit Engagements—Opening Balances, paragraph A8, and ISA 705 (Revised), paragraph
A16
Appendix 1
(Ref: Para. A3)
Appendix 2
(Ref: Para. A17)
Opinion
We have audited the balance sheet of ABC Company (the Company) as at December
31, 20X1 and notes to the financial statement, including a summary of significant
35
Throughout these illustrative auditor’s reports, the terms management and those charged with
governance may need to be replaced by another term that is appropriate in the context of the legal
framework in the particular jurisdiction.
36
This sentence would be modified, as appropriate, in circumstances when the auditor also has
responsibility to issue an opinion on the effectiveness of internal control in conjunction with the audit
of the financial statement.
[Appropriate Addressee]
Opinion
We have audited the statement of cash receipts and disbursements of ABC Company
(the Company) for the year ended December 31, 20X1 and notes to the statement of
cash receipts and disbursements, including a summary of significant accounting
policies (together “the financial statement”).
In our opinion, the accompanying financial statement presents fairly, in all material
respects, the cash receipts and disbursements of the Company for the year ended
December 31, 20X1 in accordance with the cash receipts and disbursements basis of
accounting described in Note X. [Opinion section positioned first as required in ISA
700 (Revised)]
37
ISA 800 (Revised) contains requirements and guidance on the form and content of financial statements
prepared in accordance with a special purpose framework.
38
Or other terms that are appropriate in the context of the legal framework in the particular jurisdiction.
necessary to enable the preparation of a financial statement that is free from material
misstatement, whether due to fraud or error.
In preparing the financial statement, management is responsible for assessing the
Company’s ability to continue as a going concern, disclosing, as applicable, matters
relating to going concern and using the going concern basis of accounting unless
management either intends to liquidate the Company or to cease operations, or has no
realistic alternative but to do so.
Opinion
We have audited the accounts receivable schedule of ABC Company (the Company)
as at December 31, 20X1 (“the schedule”).
In our opinion, the financial information in the schedule of the Company as at
December 31, 20X1 is prepared, in all material respects, in accordance with [describe
the financial reporting provisions established by the regulator]. [Opinion section
positioned first as required ISA 700 (Revised)]
40
ISA 800 (Revised) contains requirements and guidance on the form and content of financial statements
prepared in accordance with a special purpose framework.
41
Or other terms that are appropriate in the context of the legal framework in the particular jurisdiction.
going concern and using the going concern basis of accounting unless management
either intends to liquidate the Company or to cease operations, or has no realistic
alternative but to do so.
Those charged with governance are responsible for overseeing the Company’s
financial reporting process.
in our auditor’s report to the related disclosures in the schedule or, if such
disclosures are inadequate, to modify our opinion. Our conclusions are based
on the audit evidence obtained up to the date of our auditor’s report. However,
future events or conditions may cause the Company to cease to continue as a
going concern.
• Evaluate the appropriateness of accounting policies used and the
reasonableness of accounting estimates, if any, and related disclosures made by
management.
We communicate with those charged with governance regarding, among other matters, the
planned scope and timing of the audit and significant audit findings, including any
significant deficiencies in internal control that we identify during our audit.
We also provide those charged with governance with a statement that we have complied
with relevant ethical requirements regarding independence, and to communicate with them
all relationships and other matters that may reasonably be thought to bear on our
independence, and where applicable, related safeguards.
The engagement partner on the audit resulting in this independent auditor’s report is
[name].
[Signature in the name of the audit firm, the personal name of the auditor, or both,
as appropriate for the particular jurisdiction]
[Auditor address] [Placement of date and address reversed)]
[Date]
CONTENTS
Paragraph
Introduction
Scope of this ISA .................................................................................... 1
Effective Date ......................................................................................... 2
Objectives ............................................................................................... 3
Definitions .............................................................................................. 4
Requirements
Engagement Acceptance ......................................................................... 5−7
Nature of Procedures .............................................................................. 8
Form of Opinion ..................................................................................... 9−11
Timing of Work and Events Subsequent to the Date of the Auditor’s
Report on the Audited Financial Statements ................................... 12−13
Information in Documents Containing Summary Financial Statements .. 14−15
Auditor’s Report on Summary Financial Statements .............................. 16−21
Restriction on Distribution or Use or Alerting Readers to the
Basis of Accounting ......................................................................... 22
Comparatives .......................................................................................... 23−24
Unaudited Supplementary Information Presented with Summary Financial
Statements ........................................................................................ 25
Auditor Association ................................................................................. 26−27
Application and Other Explanatory Material
Engagement Acceptance ......................................................................... A1−A7
Evaluating the Availability of the Audited Financial Statements ........... A8
Introduction
Scope of this ISA
1. This International Standard on Auditing (ISA) deals with the auditor’s
responsibilities relating to an engagement to report on summary financial
statements derived from financial statements audited in accordance with
ISAs by that same auditor.
Effective Date
2. This ISA is effective for engagements to report on summary financial
statements for periods ending on or after December 15, 2016.
Objectives
3. The objectives of the auditor are:
(a) To determine whether it is appropriate to accept the engagement to
report on summary financial statements; and
(b) If engaged to report on summary financial statements:
(i) To form an opinion on the summary financial statements based
on an evaluation of the conclusions drawn from the evidence
obtained; and
(ii) To express clearly that opinion through a written report that
also describes the basis for that opinion.
Definitions
4. For purposes of this ISA, the following terms have the meanings attributed
below:
(a) Applied criteria – The criteria applied by management in the
preparation of the summary financial statements.
(b) Audited financial statements – Financial statements 1 audited by the
auditor in accordance with ISAs, and from which the summary
financial statements are derived.
(c) Summary financial statements – Historical financial information that
is derived from financial statements but that contains less detail than
the financial statements, while still providing a structured
1
ISA 200, Overall Objectives of the Independent Auditor and the Conduct of an Audit in Accordance
with International Standards on Auditing, paragraph 13(f), defines the term “financial statements.”
Requirements
Engagement Acceptance
5. The auditor shall accept an engagement to report on summary financial
statements in accordance with this ISA only when the auditor has been engaged
to conduct an audit in accordance with ISAs of the financial statements from
which the summary financial statements are derived. (Ref: Para. A1)
6. Before accepting an engagement to report on summary financial statements,
the auditor shall: (Ref: Para. A2)
(a) Determine whether the applied criteria are acceptable; (Ref: Para. A3–
A7)
(b) Obtain the agreement of management that it acknowledges and
understands its responsibility:
(i) For the preparation of the summary financial statements in
accordance with the applied criteria;
(ii) To make the audited financial statements available to the
intended users of the summary financial statements without
undue difficulty (or, if law or regulation provides that the
audited financial statements need not be made available to the
intended users of the summary financial statements and
establishes the criteria for the preparation of the summary
financial statements, to describe that law or regulation in the
summary financial statements); and
(iii) To include the auditor’s report on the summary financial
statements in any document that contains the summary
financial statements and that indicates that the auditor has
reported on them.
(c) Agree with management the form of opinion to be expressed on the
summary financial statements (see paragraphs 9–11).
7. If the auditor concludes that the applied criteria are unacceptable or is unable
to obtain the agreement of management set out in paragraph 6(b), the auditor
shall not accept the engagement to report on the summary financial
2
ISA 200, paragraph 13(f)
Nature of Procedures
8. The auditor shall perform the following procedures, and any other procedures
that the auditor may consider necessary, as the basis for the auditor’s opinion on
the summary financial statements:
(a) Evaluate whether the summary financial statements adequately disclose
their summarized nature and identify the audited financial statements.
(b) When summary financial statements are not accompanied by the audited
financial statements, evaluate whether they describe clearly:
(i) From whom or where the audited financial statements are
available; or
(ii) The law or regulation that specifies that the audited financial
statements need not be made available to the intended users of the
summary financial statements and establishes the criteria for the
preparation of the summary financial statements.
(c) Evaluate whether the summary financial statements adequately disclose
the applied criteria.
(d) Compare the summary financial statements with the related information
in the audited financial statements to determine whether the summary
financial statements agree with or can be recalculated from the related
information in the audited financial statements.
(e) Evaluate whether the summary financial statements are prepared in
accordance with the applied criteria.
(f) Evaluate, in view of the purpose of the summary financial statements,
whether the summary financial statements contain the information
necessary, and are at an appropriate level of aggregation, so as not to be
misleading in the circumstances.
(g) Evaluate whether the audited financial statements are available to the
intended users of the summary financial statements without undue
difficulty, unless law or regulation provides that they need not be made
available and establishes the criteria for the preparation of the summary
financial statements. (Ref: Para. A8)
Form of Opinion
9. When the auditor has concluded that an unmodified opinion on the summary
financial statements is appropriate, the auditor’s opinion shall, unless otherwise
required by law or regulation, use one of the following phrases: (Ref: Para. A9)
(a) The accompanying summary financial statements are consistent, in all
material respects, with the audited financial statements, in accordance
with [the applied criteria]; or
(b) The accompanying summary financial statements are a fair summary of
the audited financial statements, in accordance with [the applied criteria].
10. If law or regulation prescribes the wording of the opinion on summary financial
statements in terms that are different from those described in paragraph 9, the
auditor shall:
(a) Apply the procedures described in paragraph 8 and any further procedures
necessary to enable the auditor to express the prescribed opinion; and
(b) Evaluate whether users of the summary financial statements might
misunderstand the auditor’s opinion on the summary financial statements
and, if so, whether additional explanation in the auditor’s report on the
summary financial statements can mitigate possible misunderstanding.
11. If, in the case of paragraph 10(b), the auditor concludes that additional
explanation in the auditor’s report on the summary financial statements cannot
mitigate possible misunderstanding, the auditor shall not accept the engagement,
unless required by law or regulation to do so. An engagement conducted in
accordance with such law or regulation does not comply with this ISA.
Accordingly, the auditor’s report on the summary financial statements shall not
indicate that the engagement was conducted in accordance with this ISA.
Timing of Work and Events Subsequent to the Date of the Auditor’s Report on
the Audited Financial Statements
12. The auditor’s report on the summary financial statements may be dated later than
the date of the auditor’s report on the audited financial statements. In such cases,
the auditor’s report on the summary financial statements shall state that the
summary financial statements and audited financial statements do not reflect the
effects of events that occurred subsequent to the date of the auditor’s report on
the audited financial statements. (Ref: Para. A10)
13. The auditor may become aware of facts that existed at the date of the auditor’s
report on the audited financial statements, but of which the auditor previously
was unaware. In such cases, the auditor shall not issue the auditor’s report on
the summary financial statements until the auditor’s consideration of such
3
ISA 560, Subsequent Events
4
Paragraphs 19–20, which deal with circumstances where the auditor’s report on the audited financial
statements has been modified, require additional elements to those listed in this paragraph.
Reference to the Auditor’s Report on the Audited Financial Statements (Ref: Para.
A23)
19. When the auditor’s report on the audited financial statements includes:
7
(a) A qualified opinion in accordance with ISA 705 (Revised);
5
Or other term that is appropriate in the context of the legal framework in the particular jurisdiction
6
Or other term that is appropriate in the context of the legal framework in the particular jurisdiction
7
ISA 705 (Revised), Modifications to the Opinion in the Independent Auditor's Report
8
ISA 706 (Revised), Emphasis of Matter Paragraphs and Other Matter Paragraphs in the Independent
Auditor’s Report
9
ISA 570 (Revised), Going Concern, paragraph 22
10
ISA 701, Communicating Key Audit Matters in the Independent Auditor’s Report
11
ISA 720 (Revised), The Auditor’s Responsibilities Related to Other Information
20. When the auditor’s report on the audited financial statements contains an adverse
opinion or a disclaimer of opinion, the auditor’s report on the summary financial
statements shall, in addition to the elements in paragraph 16:
(a) State that the auditor’s report on the audited financial statements
contains an adverse opinion or disclaimer of opinion;
(b) Describe the basis for that adverse opinion or disclaimer of opinion; and
(c) State that, as a result of the adverse opinion or disclaimer of opinion on
the audited financial statements, it is inappropriate to express an opinion
on the summary financial statements. (Ref: Para. A23)
Comparatives
23. If the audited financial statements contain comparatives, but the summary
financial statements do not, the auditor shall determine whether such
omission is reasonable in the circumstances of the engagement. The auditor
shall determine the effect of an unreasonable omission on the auditor’s report
on the summary financial statements. (Ref: Para. A24)
24. If the summary financial statements contain comparatives that were reported on
by another auditor, the auditor’s report on the summary financial statements shall
also contain the matters that ISA 710 requires the auditor to include in the
auditor’s report on the audited financial statements. 12 (Ref: Para. A25)
12
ISA 710, Comparative Information—Corresponding Figures and Comparative Financial Statements
Auditor Association
26. If the auditor becomes aware that the entity plans to state that the auditor has
reported on summary financial statements in a document containing the
summary financial statements, but does not plan to include the related
auditor’s report, the auditor shall request management to include the auditor’s
report in the document. If management does not do so, the auditor shall
determine and carry out other appropriate actions designed to prevent
management from inappropriately associating the auditor with the summary
financial statements in that document. (Ref: Para. A27)
27. The auditor may be engaged to report on the financial statements of an entity,
while not engaged to report on the summary financial statements. If, in this
case, the auditor becomes aware that the entity plans to make a statement in
a document that refers to the auditor and the fact that summary financial
statements are derived from the financial statements audited by the auditor,
the auditor shall be satisfied that:
(a) The reference to the auditor is made in the context of the auditor’s
report on the audited financial statements; and
(b) The statement does not give the impression that the auditor has
reported on the summary financial statements.
If (a) or (b) are not met, the auditor shall request management to change the
statement to meet them, or not to refer to the auditor in the document.
Alternatively, the entity may engage the auditor to report on the summary
financial statements and include the related auditor’s report in the document. If
management does not change the statement, delete the reference to the auditor,
or include an auditor’s report on the summary financial statements in the
document containing the summary financial statements, the auditor shall advise
management that the auditor disagrees with the reference to the auditor, and the
auditor shall determine and carry out other appropriate actions designed to
prevent management from inappropriately referring to the auditor. (Ref: Para.
A27)
***
13
ISA 210, Agreeing the Terms of Audit Engagements, paragraphs A3 and A8–A9
Evaluating the Availability of the Audited Financial Statements (Ref: Para. 8(g))
A8. The auditor’s evaluation whether the audited financial statements are
available to the intended users of the summary financial statements without
undue difficulty is affected by factors such as whether:
• The summary financial statements describe clearly from whom or
where the audited financial statements are available;
• The audited financial statements are on public record; or
• Management has established a process by which the intended users of
the summary financial statements can obtain ready access to the
audited financial statements.
Timing of Work and Events Subsequent to the Date of the Auditor’s Report on
the Audited Financial Statements (Ref: Para. 12)
A10. The procedures described in paragraph 8 are often performed during or immediately
after the audit of the financial statements. When the auditor reports on the summary
financial statements after the completion of the audit of the financial statements, the
auditor is not required to obtain additional audit evidence on the audited financial
statements, or report on the effects of events that occurred subsequent to the date of
the auditor’s report on the audited financial statements since the summary financial
statements are derived from the audited financial statements and do not update
them.
14
International Ethics Standards Board for Accountants’ Code of Ethics for Professional Accountants
(IESBA Code), paragraph 110.2
Reference to the Auditor’s Report on the Audited Financial Statements (Ref: Para.
19)
A21. Paragraph 19(i) of this ISA requires the auditor to include a statement in the
auditor’s report on the summary financial statements when the auditor’s
report on the audited financial statements includes communication of one or
more key audit matters described in accordance with ISA 701. 15 However,
the auditor is not required to describe the individual key audit matters in the
auditor’s report on the summary financial statements.
A22. The statement(s) and description(s) required by paragraph 19 are intended to
draw attention to those matters and are not a substitute for reading the
auditor’s report on the audited financial statements. The required descriptions
are intended to convey the nature of the matter(s), and need not repeat the
corresponding text in the auditor’s report on the audited financial statements
in its entirety.
15
ISA 701, paragraph 13
16
ISA 700 (Revised), Forming an Opinion and Reporting on Financial Statements, paragraphs 53–54
Appendix
(Ref: Para. A23)
Illustration 1:
Circumstances include the following:
• An unmodified opinion is expressed on the audited financial statements
of a listed entity.
• Established criteria for the preparation of summary financial
statements exist.
• The auditor’s report on the summary financial statements is dated later
than the date of the auditor’s report on the financial statements from
which the summary financial statements are derived.
• The auditor’s report on the audited financial statements includes a
Material Uncertainty Related to Going Concern section.
• The auditor’s report on the audited financial statements includes
communication of other key audit matters. 17
Opinion
The summary financial statements, which comprise the summary balance sheet as at
December 31, 20X1, the summary income statement, summary statement of changes in
equity and summary cash flow statement for the year then ended, and related notes, are
derived from the audited financial statements of ABC Company for the year ended
December 31, 20X1.
In our opinion, the accompanying summary financial statements are consistent, in all
material respects, with (or a fair summary of) the audited financial statements, in
accordance with [describe established criteria].
17
As explained in paragraph 15 of ISA 701, a material uncertainty related to going concern is, by its
nature, a key audit matter but is required to be reported in a separate section of the auditor’s report in
accordance with paragraph 22 of ISA 570 (Revised).
Auditor’s Responsibility
Our responsibility is to express an opinion on whether the summary financial statements
are consistent, in all material respects, with (or are a fair summary of) the audited financial
statements based on our procedures, which were conducted in accordance with
International Standard on Auditing (ISA) 810 (Revised), Engagements to Report on
Summary Financial Statements.
[Auditor’s signature]
[Auditor’s address]
[Date of the auditor’s report]
18
In the circumstances where there is no material uncertainty related to going concern, inclusion of the
word "other" in the statement for the communication of key audit matters would not be necessary.
19
The auditor may include additional explanation about key audit matters considered helpful to users of
the auditor’s report on the summary financial statements.
20
Or other term that is appropriate in the context of the legal framework in the particular jurisdiction
Illustration 2:
Circumstances include the following:
• An unmodified opinion is expressed on the audited financial statements.
• Criteria are developed by management and adequately disclosed in Note
X. The auditor has determined that the criteria are acceptable in the
circumstances.
• The auditor’s report on the summary financial statements is dated the
same as the date of the auditor’s report on the financial statements from
which the summary financial statements are derived.
• The auditor’s report on the audited financial statements includes a
statement that describes an uncorrected material misstatement of the
other information. The other information to which this uncorrected
material misstatement relates is also information included in a
document containing the summary financial statements and the
auditor’s report thereon.
Opinion
The summary financial statements, which comprise the summary balance sheet as at
December 31, 20X1, the summary income statement, summary statement of changes
in equity and summary cash flow statement for the year then ended, and related notes,
are derived from the audited financial statements of ABC Company for the year ended
December 31, 20X1.
In our opinion, the accompanying summary financial statements are consistent, in all
material respects, with (or a fair summary of) the audited financial statements, on the
basis described in Note X.
Auditor’s Responsibility
Our responsibility is to express an opinion on whether the summary financial statements
are consistent, in all material respects, with (or are a fair summary of) the audited financial
statements based on our procedures, which were conducted in accordance with
International Standard on Auditing (ISA) 810 (Revised), Engagements to Report on
Summary Financial Statements.
[Auditor’s signature]
[Auditor’s address]
[Date of the auditor’s report]
21
Or other term that is appropriate in the context of the legal framework in the particular jurisdiction
Illustration 3:
Circumstances include the following:
• A qualified opinion is expressed on the audited financial statements.
• Criteria are developed by management and adequately disclosed in Note
X. The auditor has determined that the criteria are acceptable in the
circumstances.
• The auditor’s report on the summary financial statements is dated the
same as the date of the auditor’s report on the financial statements from
which the summary financial statements are derived.
Opinion
The summary financial statements, which comprise the summary statement of
financial position as at December 31, 20X1, the summary statement of comprehensive
income, summary statement of changes in equity and summary statement of cash flows
for the year then ended, and related notes, are derived from the audited financial
statements of ABC Company (the Company) for the year ended December 31, 20X1.
We expressed a qualified audit opinion on those financial statements in our report
dated February 15, 20X2. 22
In our opinion, the accompanying summary financial statements are consistent, in all
material respects, with (or a fair summary of) the audited financial statements, on the
basis described in Note X. However, the summary financial statements are misstated
to the equivalent extent as the audited financial statements of ABC Company for the
year ended December 31, 20X1.
22
The positioning of this reference to the qualified opinion in the auditor’s report on the audited financial
statements in the Opinion paragraph on the summary financial statements assists users in
understanding that although the auditor has expressed an unmodified opinion on the summary financial
statements, the summary financial statements reflect audited financial statements that are materially
misstated.
Auditor’s Responsibility
Our responsibility is to express an opinion on whether the summary financial
statements are consistent, in all material respects, with (or are a fair summary of) the
audited financial statements based on our procedures, which were conducted in
accordance with International Standard on Auditing (ISA) 810 (Revised),
Engagements to Report on Summary Financial Statements.
[Auditor’s signature]
[Auditor’s address]
[Date of the auditor’s report]
23
Or other term that is appropriate in the context of the legal framework in the particular jurisdiction
Illustration 4:
Circumstances include the following:
• An adverse opinion is expressed on the audited financial statements.
• Criteria are developed by management and adequately disclosed in Note
X. The auditor has determined that the criteria are acceptable in the
circumstances.
• The auditor’s report on the summary financial statements is dated the
same as the date of the auditor’s report on the financial statements from
which the summary financial statements are derived.
Denial of Opinion
The summary financial statements, which comprise the summary balance sheet as at
December 31, 20X1, the summary income statement, summary statement of changes
in equity and summary cash flow statement for the year then ended, and related notes,
are derived from the audited financial statements of ABC Company for the year ended
December 31, 20X1.
As a result of the adverse opinion on the audited financial statements discussed in The
Audited Financial Statements and our Report Thereon section of our report, it is
inappropriate to express an opinion on the accompanying summary financial
statements.
Auditor’s Responsibility
Our responsibility is to express an opinion on whether the summary financial statements
are consistent, in all material respects, with (or are a fair summary of) the audited financial
statements based on our procedures, which were conducted in accordance with
International Standard on Auditing (ISA) 810 (Revised), Engagements to Report on
Summary Financial Statements.
[Auditor’s signature]
[Auditor’s address]
[Date of the auditor’s report]
24
Or other term that is appropriate in the context of the legal framework in the particular jurisdiction
Illustration 5:
Circumstances include the following:
• An unmodified opinion is expressed on the audited financial statements.
• Established criteria for the preparation of summary financial
statements exist.
• The auditor concludes that it is not possible to express an unmodified
opinion on the summary financial statements.
• The auditor’s report on the summary financial statements is dated the
same as the date of the auditor’s report on the financial statements from
which the summary financial statements are derived.
Adverse Opinion
The summary financial statements, which comprise the summary balance sheet as at
December 31, 20X1, the summary income statement, summary statement of changes
in equity and summary cash flow statement for the year then ended, and related notes,
are derived from the audited financial statements of ABC Company for the year ended
December 31, 20X1.
In our opinion, because of the significance of the matter described in the Basis for
Adverse Opinion section, the accompanying summary financial statements are not
consistent with (or a fair summary of) the audited financial statements of ABC
Company for the year ended December 31, 20X1, in accordance with [describe
established criteria].
Auditor’s Responsibility
Our responsibility is to express an opinion on whether the summary financial statements
are consistent, in all material respects, with (or are a fair summary of) the audited financial
statements based on our procedures, which were conducted in accordance with
International Standard on Auditing (ISA) 810 (Revised), Engagements to Report on
Summary Financial Statements.
[Auditor’s signature]
[Auditor’s address]
[Date of the auditor’s report]
25
Or other term that is appropriate in the context of the legal framework in the particular jurisdiction
Using Those with Specialized Skills and Knowledge in the Audit . 78–80
Introduction
1. Financial instruments may be used by financial and non-financial entities of all
sizes for a variety of purposes. Some entities have large holdings and
transaction volumes while other entities may only engage in a few financial
instrument transactions. Some entities may take positions in financial
instruments to assume and benefit from risk while other entities may use
financial instruments to reduce certain risks by hedging or managing
exposures. This International Auditing Practice Note (IAPN) is relevant to all
of these situations.
2. The following International Standards on Auditing (ISAs) are particularly
relevant to audits of financial instruments:
(a) ISA 540 1 deals with the auditor’s responsibilities relating to auditing
accounting estimates, including accounting estimates related to
financial instruments measured at fair value;
(b) ISA 315 (Revised) 2 and ISA 330 3 deal with identifying and assessing
risks of material misstatement and responding to those risks; and
(c) ISA 500 4 explains what constitutes audit evidence and deals with the
auditor’s responsibility to design and perform audit procedures to obtain
sufficient appropriate audit evidence to be able to draw reasonable
conclusions on which to base the auditor’s opinion.
3. The purpose of this IAPN is to provide:
(a) Background information about financial instruments (Section I); and
(b) Discussion of audit considerations relating to financial instruments
(Section II).
IAPNs provide practical assistance to auditors. They are intended to be
disseminated by those responsible for national standards, or used in developing
corresponding national material. They also provide material that firms can use
in developing their training programs and internal guidance.
4. This IAPN is relevant to entities of all sizes, as all entities may be subject to
risks of material misstatement when using financial instruments.
1
ISA 540, Auditing Accounting Estimates, Including Fair Value Accounting Estimates, and Related
Disclosures
2
ISA 315 (Revised), Identifying and Assessing the Risks of Material Misstatement through Understanding
the Entity and Its Environment
3
ISA 330, The Auditor’s Responses to Assessed Risks
4
ISA 500, Audit Evidence
5
In this IAPN, the terms “valuation” and “measurement” are used interchangeably.
6
ISA 540, paragraph 7(c)
estimation uncertainty associated with their measurement. This IAPN uses the
term “measurement uncertainty” to refer to the estimation uncertainty
associated with fair value measurements.
7
International Accounting Standard (IAS) 32, Financial Instruments: Presentation, paragraph 11
18. The principal types of risk applicable to financial instruments are listed below.
This list is not meant to be exhaustive and different terminology may be used to
describe these risks or classify the components of individual risks.
(a) Credit (or counterparty) risk is the risk that one party to a financial
instrument will cause a financial loss to another party by failing to
discharge an obligation and is often associated with default. Credit risk
includes settlement risk, which is the risk that one side of a transaction
will be settled without consideration being received from the customer
or counterparty.
(b) Market risk is the risk that the fair value or future cash flows of a
financial instrument will fluctuate because of changes in market prices.
Examples of market risk include currency risk, interest rate risk,
commodity and equity price risk.
(c) Liquidity risk includes the risk of not being able to buy or sell a
financial instrument at an appropriate price in a timely manner due to a
lack of marketability for that financial instrument.
(d) Operational risk relates to the specific processing required for financial
instruments. Operational risk may increase as the complexity of a
financial instrument increases, and poor management of operational risk
may increase other types of risk. Operational risk includes:
(i) The risk that confirmation and reconciliation controls are
inadequate resulting in incomplete or inaccurate recording of
financial instruments;
(ii) The risks that there is inappropriate documentation of
transactions and insufficient monitoring of these transactions;
(iii) The risk that transactions are incorrectly recorded, processed or
risk managed and, therefore, do not reflect the economics of the
overall trade;
(iv) The risk that undue reliance is placed by staff on the accuracy of
valuation techniques, without adequate review, and transactions
are therefore incorrectly valued or their risk is improperly
measured;
(v) The risk that the use of financial instruments is not adequately
incorporated into the entity’s risk management policies and
procedures;
(vi) The risk of loss resulting from inadequate or failed internal
processes and systems, or from external events, including the
risk of fraud from both internal and external sources;
Adjustments are not appropriate if they adjust the measurement and valuation of
the financial instrument away from fair value as defined by the applicable
financial reporting framework, for example for conservatism.
Models
47. Models may be used to value financial instruments when the price cannot be
directly observed in the market. Models can be as simple as a commonly used
bond pricing formula or involve complex, specifically developed software tools
to value financial instruments with level 3 inputs. Many models are based on
discounted cash flow calculations.
48. Models comprise a methodology, assumptions and data. The methodology
describes rules or principles governing the relationship between the variables in
the valuation. Assumptions include estimates of uncertain variables which are
used in the model. Data may comprise actual or hypothetical information about
the financial instrument, or other inputs to the financial instrument.
49. Depending on the circumstances, matters that the entity may address when
establishing or validating a model for a financial instrument include whether:
• The model is validated prior to usage, with periodic reviews to ensure it
is still suitable for its intended use. The entity’s validation process may
include evaluation of:
○ The methodology’s theoretical soundness and mathematical
integrity, including the appropriateness of parameters and
sensitivities.
○ The consistency and completeness of the model’s inputs with
market practices, and whether the appropriate inputs are
available for use in the model.
• There are appropriate change control policies, procedures and security
controls over the model.
• The model is appropriately changed or adjusted on a timely basis for
changes in market conditions.
• The model is periodically calibrated, reviewed and tested for validity by
a separate and objective function. Doing so is a means of ensuring that
the model’s output is a fair representation of the value that marketplace
participants would ascribe to a financial instrument.
• The model maximizes the use of relevant observable inputs and
minimizes the use of unobservable inputs.
• Adjustments are made to the output of the model to reflect the
assumptions marketplace participants would use in similar
circumstances.
• The model is adequately documented, including the model’s intended
applications and limitations and its key parameters, required data,
9
An asset backed security is a financial instrument which is backed by a pool of underlying assets (known
as the collateral, such as credit card receivables or vehicle loans) and derives value and income from
those underlying assets.
Pricing services
55. Pricing services provide entities with prices and price-related data for a variety
of financial instruments, often performing daily valuations of large numbers of
financial instruments. These valuations may be made by collecting market data
and prices from a wide variety of sources, including market makers, and, in
certain instances, using internal valuations techniques to derive estimated fair
values. Pricing services may combine a number of approaches to arrive at a
price. Pricing services are often used as a source of prices based on level 2
inputs. Pricing services may have strong controls around how prices are
developed and their customers often include a wide variety of parties, including
buy and sell side investors, back and middle office functions, auditors and
others.
56. Pricing services often have a formalized process for customers to challenge the
prices received from the pricing services. These challenge processes usually
require the customer to provide evidence to support an alternative price, with
challenges categorized based on the quality of evidence provided. For example,
a challenge based on a recent sale of that instrument that the pricing service
was not aware of may be upheld, whereas a challenge based on a customer’s
own valuation technique may be more heavily scrutinized. In this way, a
pricing service with a large number of leading participants, both buy and sell
side, may be able to constantly correct prices to more fully reflect the
information available to market participants.
often will differ depending on whether the broker also holds the same security
in its own portfolio. Broker quotes are often used for securities with level 3
inputs and sometimes may be the only external information available.
Categories of Disclosures
67. Disclosure requirements include:
(a) Quantitative disclosures that are derived from the amounts included in
the financial statements―for example, categories of financial assets and
liabilities;
(b) Quantitative disclosures that require significant judgment―for
example, sensitivity analysis for each type of market risk to which the
entity is exposed; and
(c) Qualitative disclosures―for example, those that describe the entity’s
governance over financial instruments; objectives; controls, policies and
processes for managing each type of risk arising from financial
instruments; and the methods used to measure the risks.
68. The more sensitive the valuation is to movements in a particular variable, the
more likely it is that disclosure will be necessary to indicate the uncertainties
surrounding the valuation. Certain financial reporting frameworks may also
require disclosure of sensitivity analyses, including the effects of changes in
assumptions used in the entity’s valuation techniques. For example, the
additional disclosures required for financial instruments with fair value
measurements that are categorized within level 3 inputs of the fair value
10
Own credit risk is the amount of change in fair value that is not attributable to changes in market
conditions.
hierarchy are aimed at informing users of financial statements about the effects
of those fair value measurements that use the most subjective inputs.
69. Some financial reporting frameworks require disclosure of information that enables
users of the financial statements to evaluate the nature and extent of the risks
arising from financial instruments to which the entity is exposed at the reporting
date. This disclosure may be contained in the notes to the financial statements, or in
management’s discussion and analysis within its annual report cross-referenced
from the audited financial statements. The extent of disclosure depends on the
extent of the entity’s exposure to risks arising from financial instruments. This
includes qualitative disclosures about:
• The exposures to risk and how they arise, including the possible effects
on an entity’s future liquidity and collateral requirements;
• The entity’s objectives, policies and processes for managing the risk
and the methods used to measure the risk; and
• Any changes in exposures to risk or objectives, policies or processes for
managing risk from the previous period.
These factors may cause risks and relevant facts to be obscured, which may
affect the auditor’s assessment of the risks of material misstatement, and latent
risks can emerge rapidly, especially in adverse market conditions.
Professional Skepticism 11
71. Professional skepticism is necessary to the critical assessment of audit evidence
and assists the auditor in remaining alert for possible indications of
management bias. This includes questioning contradictory audit evidence and
the reliability of documents, responses to inquiries and other information
obtained from management and those charged with governance. It also includes
being alert to conditions that may indicate possible misstatement due to error or
fraud and considering the sufficiency and appropriateness of audit evidence
obtained in light of the circumstances.
72. Application of professional skepticism is required in all circumstances, and the
need for professional skepticism increases with the complexity of financial
instruments, for example with regard to:
• Evaluating whether sufficient appropriate audit evidence has been
obtained, which can be particularly challenging when models are used
or in determining if markets are inactive.
• Evaluating management’s judgments, and the potential for management
bias, in applying the entity’s applicable financial reporting framework,
in particular management’s choice of valuation techniques, use of
assumptions in valuation techniques, and addressing circumstances in
which the auditor’s judgments and management’s judgments differ.
• Drawing conclusions based on the audit evidence obtained, for example
assessing the reasonableness of valuations prepared by management’s
experts and evaluating whether disclosures in the financial statements
achieve fair presentation.
Planning Considerations 12
73. The auditor’s focus in planning the audit is particularly on:
• Understanding the accounting and disclosure requirements;
• Understanding the financial instruments to which the entity is exposed,
and their purpose and risks;
11
ISA 200, paragraph 15
12
ISA 300, Planning an Audit of Financial Statements, deals with the auditor’s responsibility to plan an
audit of financial statements.
13
ISA 540, paragraph 8(a)
requires the engagement partner to be satisfied that the engagement team, and
any auditor’s experts who are not part of the engagement team, collectively
have the appropriate competence and capabilities to perform the audit
engagement in accordance with professional standards and applicable legal and
regulatory requirements and to enable an auditor’s report that is appropriate in
the circumstances to be issued. Further, relevant ethical requirements 16 require
the auditor to determine whether acceptance of the engagement would create
any threats to compliance with the fundamental principles, including the
professional competence and due care. Paragraph 79 below provides examples
of the types of matters that may be relevant to the auditor’s considerations in
the context of financial instruments.
79. Accordingly, auditing financial instruments may require the involvement of one
or more experts or specialists, for example, in the areas of:
• Understanding the financial instruments used by the entity and their
characteristics, including their level of complexity. Using specialized
skills and knowledge may be needed in checking whether all aspects of
the financial instrument and related considerations have been captured
in the financial statements, and evaluating whether adequate disclosure
in accordance with the applicable financial reporting framework has
been made where disclosure of risks is required.
• Understanding the applicable financial reporting framework, especially
when there are areas known to be subject to differing interpretations, or
practice is inconsistent or developing.
• Understanding the legal, regulatory, and tax implications resulting from
the financial instruments, including whether the contracts are
enforceable by the entity (for example, reviewing the underlying
contracts), may require specialized skills and knowledge.
• Assessing the risks inherent in a financial instrument.
• Assisting the engagement team gather evidence to support
management’s valuations or to develop a point estimate or range,
especially when fair value is determined by a complex model; when
markets are inactive and data and assumptions are difficult to obtain;
when unobservable inputs are used; or when management has used an
expert.
• Evaluating information technology controls, especially in entities with a
high volume of financial instruments. In such entities information
technology may be highly complex, for example when significant
information about those financial instruments is transmitted, processed,
16
IESBA Code of Ethics for Professional Accountants paragraphs 210.1 and 210.6
Understanding the Nature, Role and Activities of the Internal Audit Function
82. In many large entities, the internal audit function may perform work that
enables senior management and those charged with governance to review and
evaluate the entity’s controls relating to the use of financial instruments. The
17
ISA 220, paragraph 18(b), requires the engagement partner to be satisfied that members of the
engagement team have undertaken appropriate consultation during the course of the engagement, both
within the engagement team and between the engagement team and others at the appropriate level within
or outside the firm.
18
Work performed by functions such as the risk management function, model review functions, and
product control, may also be relevant.
19
ISA 540, paragraph 8(c)
20
ISA 540, paragraph 2
21
See ISA 240, The Auditor’s Responsibilities Relating to Fraud in an Audit of Financial Statements, for
requirements and guidance dealing with fraud risk factors.
22
ISA 330, paragraph 18
therefore the auditor may be more likely to test controls in obtaining evidence
about:
• The occurrence, completeness, accuracy, and cutoff of the transactions;
and
• The existence, rights and obligations, and completeness of account
balances.
93. In those entities with relatively few financial instrument transactions:
• Management and those charged with governance may have only a
limited understanding of financial instruments and how they affect the
business;
• The entity may only have a few different types of instruments with little
or no interaction between them;
• There is unlikely to be a complex control environment (for example, the
controls described in the Appendix may not be in place at the entity);
• Management may use pricing information from third-party pricing
sources to value their instruments; and
• Controls over the use of pricing information from third-party pricing
sources may be less sophisticated.
94. When an entity has relatively few transactions involving financial instruments,
it may be relatively easy for the auditor to obtain an understanding of the
entity’s objectives for using the financial instruments and the characteristics of
the instruments. In such circumstances, much of the audit evidence is likely to
be substantive in nature, the auditor may perform the majority of the audit work
at year-end, and third-party confirmations are likely to provide evidence in
relation to the completeness, accuracy, and existence of the transactions.
95. In reaching a decision on the nature, timing and extent of testing of controls,
the auditor may consider factors such as:
• The nature, frequency and volume of financial instrument transactions;
• The strength of controls, including whether controls are appropriately
designed to respond to the risks associated with an entity’s volume of
financial instrument transactions and whether there is a governance
framework over the entity’s financial instrument activities;
• The importance of particular controls to the overall control objectives
and processes in place at the entity, including the sophistication of the
information systems to support financial instrument transactions;
• The monitoring of controls and identified deficiencies in control
procedures;
• The issues the controls are intended to address, for example, controls
related to the exercise of judgments compared with controls over
supporting data. Substantive tests are more likely to be effective than
relying on controls related to the exercise of judgment;
• The competency of those involved in the control activities, for example
whether the entity has adequate capacity, including during periods of
stress, and ability to establish and verify valuations for the financial
instruments to which it is exposed;
• The frequency of performance of these control activities;
• The level of precision the controls are intended to achieve;
• The evidence of performance of control activities; and
• The timing of key financial instrument transactions, for example,
whether they are close to the period end.
Substantive Procedures
96. Designing substantive procedures includes consideration of:
• The use of analytical procedures 23―While analytical procedures
undertaken by the auditor can be effective as risk assessment
procedures to provide the auditor with information about an entity’s
business, they may be less effective as substantive procedures when
performed alone. This is because the complex interplay of the drivers of
the valuation often mask any unusual trends that might arise.
• Non-routine transactions―Many financial transactions are negotiated
contracts between an entity and its counterparty (often known as “over
the counter” or OTC.) To the extent that financial instrument
transactions are not routine and outside an entity’s normal activities, a
substantive audit approach may be the most effective means of
achieving the planned audit objectives. In instances where financial
instrument transactions are not undertaken routinely, the auditor’s
responses to assessed risk, including designing and performing audit
procedures, have regard to the entity’s possible lack of experience in
this area.
23
ISA 315 (Revised), paragraph 6(b), requires the auditor to apply analytical procedures as risk assessment
procedures to assist in assessing the risks of material misstatement in order to provide a basis for
designing and implementing responses to the assessed risks. ISA 520, Analytical Procedures, paragraph
6, requires the auditor to use analytical procedures in forming an overall conclusion on the financial
statements. Analytical procedures may also be applied at other stages of the audit.
Dual-Purpose Tests
98. Although the purpose of a test of controls is different from the purpose of a test
of details, it may be efficient to perform both at the same time by, for example:
• Performing a test of controls and a test of details on the same
transaction (for example, testing whether a signed contract has been
maintained and whether the details of the financial instrument have
been appropriately captured in a summary sheet; or
• Testing controls when testing management’s process of making
valuation estimates.
24
Paragraphs 11–12 and 22–23 of ISA 330 establish requirements when the auditor performs procedures at
an interim period and explains how such audit evidence can be used.
balance at period end will also address the occurrence of a class of transactions,
and may also assist in establishing proper cut-off. This is because financial
instruments arise from legal contracts and, by verifying the accuracy of the
recording of the transaction, the auditor can also verify its existence, and obtain
evidence to support the occurrence and rights and obligations assertions at the
same time, and confirm that transactions are recorded in the correct accounting
period.
104. Procedures that may provide audit evidence to support the completeness,
accuracy, and existence assertions include:
• External confirmation 25 of bank accounts, trades, and custodian
statements. This can be done by direct confirmation with the
counterparty (including the use of bank confirmations), where a reply is
sent to the auditor directly. Alternatively this information may be
obtained from the counterparty’s systems through a data feed. Where
this is done, controls to prevent tampering with the computer systems
through which the information is transmitted may be considered by the
auditor in evaluating the reliability of the evidence from the
confirmation. If confirmations are not received, the auditor may be able
to obtain evidence by reviewing contracts and testing relevant controls.
External confirmations, however, often do not provide adequate audit
evidence with respect to the valuation assertion though they may assist
in identifying any side agreements.
• Reviewing reconciliations of statements or data feeds from custodians
with the entity’s own records. This may necessitate evaluating IT
controls around and within automated reconciliation processes and to
evaluate whether reconciling items are properly understood and
resolved.
• Reviewing journal entries and the controls over the recording of such
entries. This may assist in, for example:
o Determining if entries have been made by employees other than
those authorized to do so.
o Identifying unusual or inappropriate end-of-period journal entries,
which may be relevant to fraud risk.
• Reading individual contracts and reviewing supporting documentation
of the entity’s financial instrument transactions, including accounting
25
ISA 505, External Confirmations, deals with the auditor’s use of external confirmation procedures to
obtain audit evidence in accordance with the requirements of ISA 330 and ISA 500, Audit Evidence. See
also the Staff Audit Practice Alert, Emerging Practice Issues Regarding the Use of External
Confirmations in an Audit of Financial Statements, issued in November 2009.
108. In accordance with ISA 540, 26 the auditor considers the entity’s valuation
policies and methodology for data and assumptions used in the valuation
methodology. In many cases, the applicable financial reporting framework does
not prescribe the valuation methodology. When this is the case, matters that
may be relevant to the auditor’s understanding of how management values
financial instruments include, for example:
• Whether management has a formal valuation policy and, if so, whether
the valuation technique used for a financial instrument is appropriately
documented in accordance with that policy;
• Which models may give rise to the greatest risk of material
misstatement;
• How management considered the complexity of the valuation of the
financial instrument when selecting a particular valuation technique;
• Whether there is a greater risk of material misstatement because
management has internally developed a model to be used to value
financial instruments or is departing from a valuation technique
commonly used to value the particular financial instrument;
• Whether management made use of a third-party pricing source;
• Whether those involved in developing and applying the valuation
technique have the appropriate skills and expertise to do so, including
whether a management’s expert has been used; and
• Whether there are indicators of management bias in selecting the
valuation technique to be used.
26
ISA 540, paragraph 8(c)
Significant Risks
110. The auditor’s risk assessment process may lead the auditor to identify one or
more significant risks relating to the valuation of financial instruments, when
any of the following circumstances exist:
• High measurement uncertainty related to the valuation of financial
instruments (for example, those with unobservable inputs). 27
• Lack of sufficient evidence to support management’s valuation of its
financial instruments.
27
Where the auditor determines that the high estimation uncertainty related to the valuation of complex
financial instruments gives rise to a significant risk, ISA 540 requires the auditor to perform substantive
procedures and evaluate the adequacy of the disclosure of their estimation uncertainty. See ISA 540,
paragraphs 11, 15 and 20.
28
ISA 540, paragraph 15(a)-(b)
29
ISA 540, paragraphs 12–14
30
Paragraphs A63–A66 of ISA 540 provide examples of some of the factors that may be relevant.
auditor’s past experience with the third-party pricing source may also be
relevant in this regard.
• The objectivity of the third-party pricing source – For example, if a price
obtained by management comes from a counterparty such as the broker who
sold the financial instrument to the entity, or an entity with a close
relationship with the entity being audited, the price may not be reliable.
• The entity’s controls over the use of third-party pricing sources – The
degree to which management has controls in place to assess the reliability of
information from third-party pricing sources affects the reliability of the fair
value measurement. For example, management may have controls in place
to:
○ Review and approve the use of the third-party pricing source,
including consideration of the reputation, experience and
objectivity of the third-party pricing source.
○ Determine the completeness, relevance and accuracy of the
prices and pricing-related data.
• The third-party pricing source’s controls – The controls and processes
over valuations for the asset classes of interest to the auditor. For
example, a third-party pricing source may have strong controls around how
prices are developed, including the use of a formalized process for
customers, both buy and sell side, to challenge the prices received from the
pricing service, when supported by appropriate evidence, which may enable
the third-party pricing source to constantly correct prices to more fully
reflect the information available to market participants.
31
Some pricing services may provide reports for users of its data to explain their controls over pricing
data, that is, a report prepared in accordance with International Standard on Assurance Engagements
(ISAE) 3402, Assurance Reports on Controls at a Service Organization. Management may request, and
the auditor may consider obtaining, such a report to develop an understanding of how the pricing data is
prepared and evaluate whether the controls at the pricing service can be relied upon.
32
ISA 540, paragraph 13(d) describes requirements when the auditor develops a range to evaluate
management’s point estimate. Valuation techniques developed by third parties and used by the auditor
may, in some circumstances be considered the work of an auditor’s expert and subject to the
requirements in ISA 620.
33
See, for example, paragraph 15 of ISA 540 for requirements relative to the auditor’s evaluation of
management’s assumption regarding significant risks.
34
See ISA 540, paragraph A107.
36
ISA 540, paragraph 13(d)
37
ISA 705, Modifications to the Opinion in the Independent Auditor’s Report
38
See paragraphs 4 and A2 of ISA 200.
39
ISA 540, paragraph 20, requires the auditor to perform further procedures on disclosures relating to
accounting estimates that give rise to significant risks to evaluate the adequacy of the disclosure of their
estimation uncertainty in the financial statements in the context of the applicable financial reporting
framework.
40
ISA 260, Communication with Those Charged with Governance
41
ISA 540, paragraph 22. Paragraph 4 of ISA 580, Written Representations, states that written
representations from management do not provide sufficient appropriate audit evidence on their own
about any of the matters with which they deal. If the auditor is otherwise unable to obtain sufficient
appropriate audit evidence, this may constitute a limitation on the scope of the audit that may have
implications for the auditor’s report (see ISA 705, Modification to the Opinion in the Independent
Auditor’s Report).
42
ISA 580, paragraph 13
43
Paragraph A80 of ISA 540 provides examples of procedures that may be appropriate in the
circumstances.
assumptions, and the relative materiality of the items being measured at fair
value to the financial statements as a whole. In addition, the need for
appropriate controls over commitments to enter into financial instrument
contracts and over the subsequent measurement processes are matters that may
give rise to the need for communication with those charged with governance.
144. ISA 260 deals with the auditor’s responsibility to communicate with those
charged with governance in an audit of financial statements. With respect to
financial instruments, matters to be communicated to those charged with
governance may include:
• A lack of management understanding of the nature or extent of the
financial instrument activities or the risks associated with such
activities;
• Significant deficiencies in the design or operation of the systems of
internal control or risk management relating to the entity’s financial
instrument activities that the auditor has identified during the audit; 44
• Significant difficulties encountered when obtaining sufficient
appropriate audit evidence relating to valuations performed by
management or a management’s expert, for example, where
management is unable to obtain an understanding of the valuation
methodology, assumptions and data used by the management’s experts,
and such information is not made available to the auditor by
management’ s expert;
• Significant differences in judgments between the auditor and
management or a management’s expert regarding valuations;
• The potential effects on the entity’s financial statements of material
risks and exposures required to be disclosed in the financial statements,
including the measurement uncertainty associated with financial
instruments;
• The auditor’s views about the appropriateness of the selection of
accounting policies and presentation of financial instrument transactions
in the financial statements;
• The auditor’s views about the qualitative aspects of the entity’s
accounting practices and financial reporting for financial instruments; or
44
ISA 265, Communicating Deficiencies in Internal Control to Those Charged with Governance and
Management, establishes requirements and provides guidance on communicating deficiencies in internal
control to management, and communicating significant deficiencies in internal control to those charged with
governance. It explains that deficiencies in internal control may be identified during the auditor’s risk
assessment procedures in accordance with ISA 315 (Revised) or at any other stage of the audit.
• A lack of comprehensive and clearly stated policies for the purchase, sale
and holding of financial instruments, including operational controls,
procedures for designating financial instruments as hedges, and monitoring
exposures.
The appropriate timing for communications will vary with the circumstances of the
engagement; however, it may be appropriate to communicate significant difficulties
encountered during the audit as soon as practicable if those charged with
governance are able to assist the auditor to overcome the difficulty, or if it is likely
to lead to a modified opinion.
45
For example, ISA 250, Consideration of Laws and Regulations in an Audit of Financial Statements, requires
auditors to determine whether there is a responsibility to report identified or suspected non-compliance with
laws and regulations to parties outside the entity. In addition, requirements concerning the auditor’s
communication to banking supervisors and others may be established in many countries either by law, by
supervisory requirement or by formal agreement or protocol.
Appendix
(Ref: Para. A14)
Organizational Structure
5. Financial instrument activities may be run on either a centralized or a
decentralized basis. Such activities and related decision making depend heavily
1
ISA 402, Audit Considerations Relating to an Entity Using a Service Organization
(a) Implementing the risk management policy set by those charged with
governance (including analyses of the risks to which an entity may be
exposed);
(b) Designing risk limit structures and ensuring these risk limits are
implemented in practice;
(c) Developing stress scenarios and subjecting open position portfolios to
sensitivity analysis, including reviews of unusual movements in
positions; and
(d) Reviewing and analyzing new financial instrument products.
17. Financial instruments may have the associated risk that a loss might exceed the
amount, if any, of the value of the financial instrument recognized on the
balance sheet. For example, a sudden fall in the market price of a commodity
may force an entity to realize losses to close a forward position in that
commodity due to collateral, or margin, requirements. In some cases, the
potential losses may be enough to cast significant doubt on the entity’s ability
to continue as a going concern. The entity may perform sensitivity analyses or
value-at-risk analyses to assess the future hypothetical effects on financial
instruments subject to market risks. However, value-at-risk analysis does not
fully reflect the extent of the risks that may affect the entity; sensitivity and
scenario analyses also may be subject to limitations.
18. The volume and sophistication of financial instrument activity and relevant
regulatory requirements will influence the entity’s consideration whether to
establish a formal risk management function and how the function may be
structured. In entities that have not established a separate risk management
function, for example entities with relatively few financial instruments or
financial instruments that are less complex, reporting on and monitoring
financial instrument activities may be a component of the accounting or finance
function’s responsibility or management’s overall responsibility, and may
include a formal risk committee established by those charged with governance
Authorization
23. Authorization can affect the financial statement assertions both directly and
indirectly. For example, even if a transaction is executed outside an entity’s
policies, it nonetheless may be recorded and accounted for accurately.
However, unauthorized transactions could significantly increase risk to the
entity, thereby significantly increasing the risk of material misstatement since
they would be undertaken outside the system of internal control. To mitigate
this risk, an entity will often establish a clear policy as to what transactions can
be traded by whom and adherence to this policy will then be monitored by an
entity’s back office. Monitoring trading activities of individuals, for example
by reviewing unusually high volumes or significant gains or losses incurred,
will assist management in ensuring compliance with the entity’s policies,
including the authorization of new types of transactions, and evaluating
whether fraud has occurred.
24. The function of an entity’s deal initiation records is to identify clearly the
nature and purpose of individual transactions and the rights and obligations
arising under each financial instrument contract, including the enforceability of
Segregation of Duties
25. Segregation of duties and the assignment of personnel is an important control
activity, particularly when exposed to financial instruments. Financial
instrument activities may be segregated into a number of functions, including:
(a) Executing the transaction (dealing). In entities with a high volume of
financial instrument transactions, this may be done by the front office;
(b) Initiating cash payments and accepting cash receipts (settlements);
(c) Sending out trade confirmations and reconciling the differences
between the entity’s records and replies from counterparties, if any;
(d) Recording of all transactions correctly in the accounting records;
(e) Monitoring risk limits. In entities with a high volume of financial
instrument transactions, this may be performed by the risk management
function; and
(f) Monitoring positions and valuing financial instruments.
26. Many organizations choose to segregate the duties of those investing in
financial instruments, those valuing financial instruments, those settling
financial instruments and those accounting/recording financial instruments.
27. Where an entity is too small to achieve proper segregation of duties, the role of
management and those charged with governance in monitoring financial instrument
activities is of particular importance.
28. A feature of some entities’ internal control is an independent price verification
(IPV) function. This department is responsible for separately verifying the price
of some financial instruments, and may use alternative data sources,
methodologies and assumptions. The IPV provides an objective look at the
pricing that has been developed in another part of the entity.
29. Ordinarily, the middle or back office is responsible for establishing policies on
valuation and ensuring adherence to the policy. Entities with a greater use of
financial instruments may perform daily valuations of their financial instrument
Monitoring of Controls
32. The entity’s ongoing monitoring activities are designed to detect and correct
any deficiencies in the effectiveness of controls over transactions for financial
instruments and their valuation. It is important that there is adequate
supervision and review of financial instrument activity within the entity. This
includes:
(a) All controls being subject to review, for example, the monitoring of
operational statistics such as the number of reconciling items or the
difference between internal pricing and external pricing sources;
(b) The need for robust information technology (IT) controls and
monitoring and validating their application; and
(c) The need to ensure that information resulting from different processes
and systems is adequately reconciled. For example, there is little benefit
in a valuation process if the output from it is not reconciled properly
into the general ledger.
33. In larger entities, sophisticated computer information systems generally keep
track of financial instrument activities, and are designed to ensure that
settlements occur when due. More complex computer systems may generate
automatic postings to clearing accounts to monitor cash movements, and
controls over processing are put in place with the objective of ensuring that
financial instrument activities are correctly reflected in the entity’s records.
Paragraph
Introduction
Scope of this ISA .................................................................................... 1
Effect of Laws and Regulations .............................................................. 2
Responsibility for Compliance with Laws and Regulations ................... 3−89
Effective Date ......................................................................................... 910
Objectives .............................................................................................. 1011
Definition ............................................................................................... 1112
Requirements
The Auditor’s Consideration of Compliance with Laws
and Regulations ................................................................................ 123−178
Audit Procedures When Non-Compliance iIs Identified or Suspected .... 198−221
Communicating and Reporting of Identified or Suspected Non-
Compliance ....................................................................................... 223−289
Documentation ........................................................................................ 2930
Application and Other Explanatory Material
Responsibility for Compliance with Laws and Regulations ................... A1−A86
Definition ................................................................................................. A9−A10
The Auditor’s Consideration of Compliance with Laws
and Regulations ………………. ...................................................... A711−A162
Audit Procedures When Non-Compliance Iis Identified
or Suspected.................................................................................... A173−A2518
Communicating and Reporting of Identified or Suspected
Non-Compliance ........................................................................... A2619−A3420
Introduction
Scope of this ISA
1. This International Standard on Auditing (ISA) deals with the auditor’s
responsibility to consider laws and regulations in an audit of financial
statements. This ISA does not apply to other assurance engagements in which
the auditor is specifically engaged to test and report separately on compliance
with specific laws or regulations.
Responsibility for Compliance with Laws and Regulations (Ref: Para. A1–A68)
3. It is the responsibility of management, with the oversight of those charged
with governance, to ensure that the entity’s operations are conducted in
accordance with the provisions of laws and regulations, including
compliance with the provisions of laws and regulations that determine the
reported amounts and disclosures in an entity’s financial statements.
1
ISA 200, Overall Objectives of the Independent Auditor and the Conduct of an Audit in Accordance
with International Standards on Auditing, paragraph 5
2
ISA 200, paragraphs A53–A54
Effective Date
910. This ISA is effective for audits of financial statements for periods beginning
on or after December 15, 20092017.
3
ISA 200, paragraph 15
Objectives
110. The objectives of the auditor are:
(a) To obtain sufficient appropriate audit evidence regarding compliance
with the provisions of those laws and regulations generally recognized
to have a direct effect on the determination of material amounts and
disclosures in the financial statements;
(b) To perform specified audit procedures to help identify instances of
non-compliance with other laws and regulations that may have a
material effect on the financial statements; and
(c) To respond appropriately to non-compliance identified or suspected
non-compliance with laws and regulations identified during the audit.
Definition
121. For the purposes of this ISA, the following term has the meaning attributed
below:
Non-compliance – Acts of omission or commission by the entity, either
intentional or unintentional, committed by the entity, or by those charged with
governance, by management or by other individuals working for or under the
direction of the entity, which are contrary to the prevailing laws or
regulations. Such acts include transactions entered into by, or in the name of,
the entity, or on its behalf, by those charged with governance, management
or employees. Non-compliance does not include personal misconduct
(unrelated to the business activities of the entity) by those charged with
governance, management or employees of the entity. (Ref: Para. A9–A10)
Requirements
The Auditor’s Consideration of Compliance with Laws and Regulations
132. As part of obtaining an understanding of the entity and its environment in
accordance with ISA 315 (Revised), 4 the auditor shall obtain a general
understanding of:
(a) The legal and regulatory framework applicable to the entity and the
industry or sector in which the entity operates; and
(b) How the entity is complying with that framework. (Ref: Para. A711)
143. The auditor shall obtain sufficient appropriate audit evidence regarding
compliance with the provisions of those laws and regulations generally
4
ISA 315 (Revised), Identifying and Assessing the Risks of Material Misstatement through
Understanding the Entity and Its Environment, paragraph 11
5
ISA 260 (Revised), Communication with Those Charged with Governance, paragraph 13
6
ISA 705 (Revised), Modifications to the Opinion in the Independent Auditor’s Report, paragraphs 7–
8
Documentation
2930. The auditor shall include in the audit documentation 8 identified or suspected
non-compliance with laws and regulations and: the results of discussion with
management and, where applicable, those charged with governance and other
parties outside the entity. 9 (Ref: Para. A3521–A36)
(a) The audit procedures performed, the significant professional
judgments made and the conclusions reached thereon; and
(b) The discussions of significant matters related to the non-compliance
with management, those charged with governance and others,
including how management and, where applicable, those charged with
governance have responded to the matter.
***
7
ISA 705 (Revised), paragraphs 7 and 9
8
ISA 230, Audit Documentation, paragraphs 8–11, and A6
9
ISA 230, Audit Documentation, paragraphs 8–11, and A6
10
ISA 700 (Revised), Forming an Opinion and Reporting on Financial Statements, paragraph 4243
11
ISA 800 (Revised), Special Considerations—Audits of Financial Statements Prepared in Accordance
with Special Purpose Frameworks, paragraph 11
12
See, for example, Sections 225.21–225.22 of the IESBA Code.
13
See ISA 570 (Revised), Going Concern.
14
ISA 580, Written Representations, paragraph 4
auditor’s report. 15When the auditor determines that withdrawing from the
engagement would be appropriate, doing so would not be a substitute for
complying with other responsibilities under law, regulation or relevant
ethical requirements to respond to identified or suspected non-compliance.
Furthermore, paragraph A8a of ISA 220 16 indicates that some ethical
requirements may require the predecessor auditor, upon request by the
proposed successor auditor, to provide information regarding non-
compliance with laws and regulations to the successor auditor.
A30. In other cases, the relevant ethical requirements may require the auditor to
determine whether reporting identified or suspected non-compliance with
laws and regulations to an appropriate authority outside the entity is an
appropriate action in the circumstances. For example, the IESBA Code
requires the auditor to take steps to respond to identified or suspected non-
compliance with laws and regulations and determine whether further action
is needed, which may include reporting to an appropriate authority outside
the entity. 19 The IESBA Code explains that such reporting would not be
considered a breach of the duty of confidentiality under the IESBA Code. 20
A31. Even if law, regulation or relevant ethical requirements do not include
requirements that address reporting identified or suspected non-compliance,
they may provide the auditor with the right to report identified or suspected
non-compliance to an appropriate authority outside the entity. For example,
when auditing the financial statements of financial institutions, the auditor
may have the right under law or regulation to discuss matters such as
identified or suspected non-compliance with laws and regulations with a
supervisory authority.
A32. In other circumstances, the reporting of identified or suspected non-
compliance with laws and regulations to an appropriate authority outside the
entity may be precluded by the auditor’s duty of confidentiality under law,
regulation or relevant ethical requirements.
A33. The determination required by paragraph 29 may involve complex
considerations and professional judgments. Accordingly the auditor may
consider consulting internally (e.g., within the firm or a network firm) or on
a confidential basis with a regulator or professional body (unless doing so is
prohibited by law or regulation or would breach the duty of confidentiality).
The auditor may also consider obtaining legal advice to understand the
auditor’s options and the professional or legal implications of taking any
particular course of action.
19
See, for example, Section 225.29 and Sections 225.33–225.36 of the IESBA Code.
20
See, for example, Section 140.7 and Section 225.35 of the IESBA Code.
21
See, for example, Section 225.37 of the IESBA Code.
ISQC 1, Quality Control for Firms that Perform Audits and Reviews
of Financial Statements, and Other Assurance and Related Services
Engagements
Application and Other Explanatory Material
Confidentiality, Safe Custody, Integrity, Accessibility and Retrievability of
Engagement Documentation (Ref: Para. 46)
A56. Relevant ethical requirements establish an obligation for the firm’s personnel
to observe at all times the confidentiality of information contained in
engagement documentation, unless specific client authority has been given
to disclose information, or there are responsibilities under law, regulation or
relevant ethical requirements is a legal or professional duty to do so. 22
Specific laws or regulations may impose additional obligations on the firm’s
personnel to maintain client confidentiality, particularly where data of a
personal nature are concerned.
22
See, for example, Section 140.7 and Section 225.35 of the IESBA Code.
23
See, for example, Sections 210.14 of the IESBA Code.
24
See, for example, Sections 225.31 of the IESBA Code.
Requirements
Communications to Management and with Those Charged with Governance
40. If the auditor has identified a fraud or has obtained information that indicates
that a fraud may exist, the auditor shall communicate these matters, unless
prohibited by law or regulation, on a timely basis withto the appropriate level
of management in order to inform those with primary responsibility for the
prevention and detection of fraud of matters relevant to their responsibilities.
(Ref: Para. A59a–A60)
41. Unless all of those charged with governance are involved in managing the
entity, if the auditor has identified or suspects fraud involving:
(a) management;
(b) employees who have significant roles in internal control; or
(c) others where the fraud results in a material misstatement in the
financial statements,
the auditor shall communicate these matters withto those charged with
governance on a timely basis. If the auditor suspects fraud involving
management, the auditor shall communicate these suspicions withto those
charged with governance and discuss with them the nature, timing and extent
of audit procedures necessary to complete the audit. Such communications
with those charged with governance are required unless the communication
is prohibited by law or regulation. (Ref: Para. A59a, A61–A63)
42. The auditor shall communicate, unless prohibited by law or regulation, with
those charged with governance any other matters related to fraud that are, in
the auditor’s judgment, relevant to their responsibilities. (Ref: Para. A59a,
A64)
25
See, for example, Sections 225.21–225.22 of the IESBA Code.
26
ISA 250 (Revised), Consideration of Laws and Regulations in an Audit of Financial Statements,
paragraphs A28–A34
27
ISA 260 (Revised), Communication with Those Charged with Governance, paragraph 7
and the auditor may consider seekingit appropriate to obtain legal advice.
28
ISA 250 (Revised), Consideration of Laws and Regulations in an Audit of Financial Statements,
paragraph 9
…
(d) The existence of any actual, suspected or alleged:
(i) Fraud or illegal acts affecting the entity; and
(ii) Non-compliance with provisions of laws and regulations that
are generally recognized to have a direct effect on the
determination of material amounts and disclosures in the
financial statements, such as tax and pension laws and
regulations;
Fraud and non-compliance with laws andor regulations
52. When there is an indication that fraud or non-compliance with laws andor
regulations, or suspected fraud or non-compliance with laws andor
regulations, has occurred in the entity, the practitioner shall:
(a) Communicate that matter, unless prohibited by law or regulation, with
to the appropriate level of senior management or those charged with
governance as appropriate; (Ref: Para. A91a)
(b) Request management’s assessment of the effect(s), if any, on the
financial statements;
(c) Consider the effect, if any, of management’s assessment of the effects
of identified or suspected fraud or non-compliance with laws andor
regulations communicated to the practitioner on the practitioner’s
conclusion on the financial statements and on the practitioner’s report;
and
(d) Determine whether law, regulation or relevant ethical
requirements:there is a responsibility to report the occurrence or
suspicion of fraud or illegal acts to a party outside the entity. (Ref:
Para. A92–A92d)
(i) Require the practitioner to report to an appropriate authority
outside the entity.
(ii) Establish responsibilities under which reporting to an
appropriate authority outside the entity may be appropriate in
the circumstances.
29
See, for example, Sections 225.44–225.48 of the IESBA Code.
30
See, for example, Section 225.51 to 225.52 of the IESBA Code.
31
See, for example, Section 140.7 and Section 225.53 of the IESBA Code.
32
See, for example, Sections 225.44–225.48 of the IESBA Code.
33
See, for example, Section 225.51 to 225.52 of the IESBA Code.
34
See, for example, Section 140.7 and Section 225.53 of the IESBA Code.
A192f.The practitioner may consider consulting internally (e.g., within the firm or
network firm), obtaining legal advice to understand the professional or legal
implications of taking any particular course of action, or consulting on a
confidential basis with a regulator or a professional body (unless doing so is
prohibited by law or regulations or would breach the duty of
confidentiality). 35
35
See, for example, Section 225.55 of the IESBA Code.
36
See, for example, Section 225.44 to 225.48 of the IESBA Code.
37
See, for example, Section 225.51 to 225.52 of the IESBA Code.
38
See, for example, Section 140.7 and Section 225.53 of the IESBA Code.
39
See, for example, Section 225.55 of the IESBA Code.