Guide to Using International Standards on Auditing in - IFAC
Guide to Using International Standards on Auditing in - IFAC Guide to Using International Standards on Auditing in - IFAC
178
179
- Page 127 and 128: 127 Guide
- Page 129 and 130: 129 Guide
- Page 131 and 132: 131 Guide
- Page 133 and 134: 133 Guide
- Page 135 and 136: 135 Guide
- Page 137 and 138: 137 Guide
- Page 139 and 140: 139 Guide
- Page 141 and 142: 141 Guide
- Page 143 and 144: 143 Guide
- Page 145 and 146: 145 12. Related Parties Chapter Con
- Page 147 and 148: 147 Guide
- Page 149 and 150: 149 Guide
- Page 151 and 152: 151 Guide
- Page 153 and 154: 153 Guide
- Page 155 and 156: 155 Guide
- Page 157 and 158: 157 Guide
- Page 159 and 160: 159 Guide
- Page 161 and 162: 161 14. Going Concern Chapter Conte
- Page 163 and 164: 163 Guide
- Page 165 and 166: 165 Guide
- Page 167 and 168: 167 Guide
- Page 169 and 170: 169 Guide
- Page 171 and 172: 171 15. Summary of Other ISA Requir
- Page 173 and 174: 173 Guide
- Page 175 and 176: 175 Guide
- Page 177: 177 Guide
- Page 181 and 182: 181 Guide
- Page 183 and 184: 183 Guide
- Page 185 and 186: 185 Guide
- Page 187 and 188: 187 Guide
- Page 189 and 190: 189 Guide
- Page 191 and 192: 191 Guide
- Page 193 and 194: 193 Guide
- Page 195 and 196: 195 Guide
- Page 197 and 198: 197 Guide
- Page 199 and 200: 199 Guide
- Page 201 and 202: 201 Guide
- Page 203 and 204: 203 Guide
- Page 205 and 206: 205 16. Audit Documentation Chapter
- Page 207 and 208: 207 Guide
- Page 209 and 210: 209 Guide
- Page 211 and 212: 211 Guide
- Page 213 and 214: 213 Guide
- Page 215 and 216: 215 Guide
- Page 217 and 218: 217 Guide
- Page 219 and 220: 219 Guide
- Page 221 and 222: 221 Guide
- Page 223 and 224: 223 Guide
- Page 225 and 226: 225 Guide
- Page 227 and 228: 227 Guide
178<br />
<str<strong>on</strong>g>Guide</str<strong>on</strong>g> <str<strong>on</strong>g>to</str<strong>on</strong>g> <str<strong>on</strong>g>Us<strong>in</strong>g</str<strong>on</strong>g> <str<strong>on</strong>g>Internati<strong>on</strong>al</str<strong>on</strong>g> <str<strong>on</strong>g>Standards</str<strong>on</strong>g> <strong>on</strong> <strong>Audit<strong>in</strong>g</strong> <strong>in</strong> the Audits of Small- and Medium-Sized Entities Volume 1—Core C<strong>on</strong>cepts<br />
Paragraph #<br />
402.8<br />
(c<strong>on</strong>t<strong>in</strong>ued)<br />
Relevant Extracts from ISAs<br />
(d) Service audi<str<strong>on</strong>g>to</str<strong>on</strong>g>r—An audi<str<strong>on</strong>g>to</str<strong>on</strong>g>r who, at the request of the service organizati<strong>on</strong>, provides an<br />
assurance report <strong>on</strong> the c<strong>on</strong>trols of a service organizati<strong>on</strong>.<br />
(e) Service organizati<strong>on</strong>—A third-party organizati<strong>on</strong> (or segment of a third-party<br />
organizati<strong>on</strong>) that provides services <str<strong>on</strong>g>to</str<strong>on</strong>g> user entities that are part of those entities’<br />
<strong>in</strong>formati<strong>on</strong> systems relevant <str<strong>on</strong>g>to</str<strong>on</strong>g> f<strong>in</strong>ancial report<strong>in</strong>g.<br />
(f)<br />
Service organizati<strong>on</strong>’s system—The policies and procedures designed, implemented and<br />
ma<strong>in</strong>ta<strong>in</strong>ed by the service organizati<strong>on</strong> <str<strong>on</strong>g>to</str<strong>on</strong>g> provide user entities with the services covered<br />
by the service audi<str<strong>on</strong>g>to</str<strong>on</strong>g>r’s report.<br />
(g) Subservice organizati<strong>on</strong>—A service organizati<strong>on</strong> used by another service organizati<strong>on</strong> <str<strong>on</strong>g>to</str<strong>on</strong>g><br />
perform some of the services provided <str<strong>on</strong>g>to</str<strong>on</strong>g> user entities that are part of those user entities’<br />
<strong>in</strong>formati<strong>on</strong> systems relevant <str<strong>on</strong>g>to</str<strong>on</strong>g> f<strong>in</strong>ancial report<strong>in</strong>g.<br />
(h) User audi<str<strong>on</strong>g>to</str<strong>on</strong>g>r—An audi<str<strong>on</strong>g>to</str<strong>on</strong>g>r who audits and reports <strong>on</strong> the f<strong>in</strong>ancial statements of a user entity.<br />
(i)<br />
User entity—An entity that uses a service organizati<strong>on</strong> and whose f<strong>in</strong>ancial statements are<br />
be<strong>in</strong>g audited.<br />
Many entities (<strong>in</strong>clud<strong>in</strong>g very small <strong>on</strong>es) often outsource certa<strong>in</strong> f<strong>in</strong>ancial process<strong>in</strong>g activities such as:<br />
• Payroll;<br />
• Internet sales;<br />
• IT services;<br />
• Asset management (<strong>in</strong>ven<str<strong>on</strong>g>to</str<strong>on</strong>g>ry warehous<strong>in</strong>g, <strong>in</strong>vestments, etc.); and<br />
• Bookkeep<strong>in</strong>g services. This would <strong>in</strong>clude process<strong>in</strong>g of transacti<strong>on</strong>s, ma<strong>in</strong>ta<strong>in</strong><strong>in</strong>g account<strong>in</strong>g records,<br />
and prepar<strong>in</strong>g f<strong>in</strong>ancial statements.<br />
These third-party organizati<strong>on</strong>s (provid<strong>in</strong>g services relevant <str<strong>on</strong>g>to</str<strong>on</strong>g> f<strong>in</strong>ancial report<strong>in</strong>g) are referred <str<strong>on</strong>g>to</str<strong>on</strong>g> as “service<br />
organizati<strong>on</strong>s.”<br />
Where service organizati<strong>on</strong>s are used, the audi<str<strong>on</strong>g>to</str<strong>on</strong>g>r needs <str<strong>on</strong>g>to</str<strong>on</strong>g> c<strong>on</strong>sider the effect of such arrangements <strong>on</strong> the<br />
entity’s <strong>in</strong>ternal c<strong>on</strong>trol. This <strong>in</strong>cludes:<br />
• Obta<strong>in</strong><strong>in</strong>g sufficient <strong>in</strong>formati<strong>on</strong> <str<strong>on</strong>g>to</str<strong>on</strong>g> assess the risks of material misstatement; and<br />
• Design<strong>in</strong>g an appropriate resp<strong>on</strong>se.<br />
In smaller entities, the outsourced services may well be important <str<strong>on</strong>g>to</str<strong>on</strong>g> the <strong>on</strong>go<strong>in</strong>g operati<strong>on</strong> of the entity,<br />
but may not be relevant <str<strong>on</strong>g>to</str<strong>on</strong>g> the audit. This would occur where there are sufficient <strong>in</strong>ternal c<strong>on</strong>trols with<strong>in</strong> the<br />
entity <str<strong>on</strong>g>to</str<strong>on</strong>g> address the risks of material misstatement, or where substantive audit procedures can be performed<br />
<str<strong>on</strong>g>to</str<strong>on</strong>g> address the identified risks.<br />
CONSIDER POINT<br />
<str<strong>on</strong>g>Us<strong>in</strong>g</str<strong>on</strong>g> a service organizati<strong>on</strong> <str<strong>on</strong>g>to</str<strong>on</strong>g> prepare f<strong>in</strong>ancial statements does not relieve management (and those<br />
charged with governance) of their resp<strong>on</strong>sibilities for the f<strong>in</strong>ancial statements.