as interpretive publications; auditing articles in the Journal of Accountancy and other professional journals; continuing professional education programs and other instruction materials, textbooks, guidebooks, audit programs, and checklists; and other auditing publications from state certified public accountant (CPA) societies, other organizations, and individuals.
Premise, relating to the responsibilities of management and, when appropriate, those charged with governance, on which an audit is conducted (the premise). Management and, when appropriate, those charged with governance have acknowledged and understand that they have the following responsibilities that are fundamental to the conduct of an audit in accordance with GAAS; that is, responsibility:
1. For the preparation and fair presentation of the financial statements in accordance with the applicable financial reporting framework;
2. For the design, implementation, and maintenance of internal control relevant to the preparation and fair presentation of financial statements that are free from material misstatement, whether due to fraud or error; and
3. To provide the auditor with:
a. Access to all information of which management and, when appropriate, those charged with governance are aware that is relevant to the preparation and fair presentation of the financial statements, such as records, documentation, and other matters;
b. Additional information that the auditor may request from management and, when appropriate, those charged with governance for the purpose of the audit; and
c. Unrestricted access to persons within the entity from whom the auditor determines it necessary to obtain audit evidence.
The premise, relating to the responsibilities of management and, when appropriate, those charged with governance, on which an audit is conducted may also be referred to as the premise.
Professional judgment. The application of relevant training, knowledge, and experience within the context provided by auditing, accounting, and ethical standards in making informed decisions about the courses of action that are appropriate in the circumstances of the audit engagement.
Professional skepticism. An attitude that includes a questioning mind, being alert to conditions that may indicate possible misstatement due to fraud or error, and a critical assessment of audit evidence.
Reasonable assurance. In the context of an audit of financial statements, a high, but not absolute, level of assurance.
Risk of material misstatement. The risk that the financial statements are materially misstated prior to the audit. This consists of two components, described as follows at the assertion level:
● Inherent risk. The susceptibility of an assertion about a class of transaction, account balance, or disclosure to a misstatement that could be material, either individually or when aggregated with other misstatements, before consideration of any related controls.
● Control risk. The risk that a misstatement that could occur in an assertion about a class of transaction, account balance, or disclosure and that could be material, either individually or when aggregated with other misstatements, will not be prevented, or detected and corrected, on a timely basis by the entity's internal control.
Those charged with governance.The person(s) or organization(s) (for example, a corporate trustee) with responsibility for overseeing the strategic direction of the entity and the obligations related to the accountability of the entity. This includes overseeing the financial reporting process. Those charged with governance may include management personnel; for example, executive members of a governance board or an owner-manager.
Objectives of AU-C Section 200
AU-C Section 200.12 states that:
…The overall objectives of the auditor, in conducting an audit of financial statements, are to
a. obtain reasonable assurance about whether the financial statements as a whole are free from material misstatement, whether due to fraud or error, thereby enabling the auditor to express an opinion on whether the financial statements are presented fairly, in all material respects, in accordance with an applicable financial reporting framework; and
b. report on the financial statements, and communicate as required by GAAS, in accordance with the auditor's findings.
If reasonable assurance cannot be obtained and a qualified opinion is insufficient, the auditor must either disclaim an opinion or withdraw from the engagement, when possible under applicable law or regulation. (AU-C 200.13)
Requirements
Management's Responsibilities
Financial statements are prepared by management with oversight from those charged with governance. GAAS do not impose requirements on management or those charged with governance, but rather an audit is conducted on the premise that management and those charged with governance understand their responsibilities. (AU-C 200.05)
Many times clients do not understand their responsibilities for audited financial statements. The financial statements are management's. They contain management's representations. The form and content of the financial statements are management's responsibility, even if the auditor prepared them or participated in their preparation.
Management also is responsible for implementing and maintaining an effective system of internal control.
Auditor's Responsibilities
The auditor's responsibilities for the financial statements are confined to the expression of an opinion on the financial statements being audited. In performing the audit, the auditor is responsible for compliance with GAAS. Under GAAS, the auditor has a responsibility to consider AU-C sections and interpretive publications in all audits. If such guidance is not followed, an auditor must be prepared:
● For AU-C sections, to justify a departure from GAAS
● For interpretive publications, to explain that an alternative approach achieved the objectives of GAAS
To provide reasonable assurance that it is conforming with generally accepted auditing standards in its audit engagements, an accounting firm should establish quality control policies and procedures. These policies and procedures should apply not only to audit engagements but also to attest and accounting and review services for which professional standards have been established. (AU-C 200.A20) The AICPA's Quality Control Standards detail the firm's responsibility for establishing and maintaining a system of quality control for auditors. See QC Section 10, A Firm's System of Quality Control, for more information.
In every audit, the auditor has to obtain reasonable assurance1 about whether the financial statements are free of material misstatement, whether due to errors or to fraud. (AU-C 200.06) Materiality is taken into account when planning and performing the audit. Misstatements are considered material, individually or in the aggregate, when they influence economic decisions made by financial statement users. Materiality considers qualitative and quantitative elements and should be viewed in context. (AU-C 200.07)
Ethical Requirements
The auditor must be independent. If not independent, the auditor cannot issue a report under GAAS. The only exception is if GAAS provides otherwise or law or regulation requires the auditor to accept the engagement and report on the
