50 paragraphs found
Information on the nature of the services provided by a service organisation may be available from a wide variety of sources, such as: User manuals. System overviews. Technical manuals. The contract or service level agreement between the user entity and …
In determining the sufficiency and appropriateness of the audit evidence provided by a type 1 or type 2 report, the user auditor shall be satisfied as to: The service auditor’s professional competence and independence from the service organisation; and …
… of controls at a service organisation (referred to in this Auditing Standard as a type 1 report) means a report that …
The user auditor shall enquire of management of the user entity whether the service organisation has reported to the user entity, or whether the user entity is otherwise aware of, any fraud, non‑compliance with laws and regulations or uncorrected …
When the service organisation maintains material elements of the accounting records of the user entity, direct access to those records may be necessary in order for the user auditor to obtain sufficient appropriate audit evidence relating to the …
If the user auditor believes that the service auditor’s report may not provide sufficient appropriate audit evidence, for example, if a service auditor’s report does not contain a description of the service auditor’s tests of controls and results thereon, …
The objectives of the user auditor, when the user entity uses the services of a service organisation, are: To obtain an understanding of the nature and significance of the services provided by the service organisation and their effect on the user entity’s …
A type 1 or type 2 report that is as of a date or for a period that is outside of the reporting period of a user entity may assist the user auditor in obtaining a preliminary understanding of the controls implemented at the service organisation if the …
The service auditor’s type 2 report identifies results of tests, including exceptions and other information that could affect the user auditor’s conclusions. Exceptions noted by the service auditor or a modified opinion in the service auditor’s type 2 …
A service organisation may be required under the terms of the contract with user entities to disclose to affected user entities any fraud, non‑compliance with laws and regulations or uncorrected misstatements attributable to the service organisation’s …