Audit and Review Readiness
Assess whether your trial balance, reconciliations, schedules, contracts, controls, and prepared-by-client package are ready for external accountants.
Open the free toolFor controllers, CFOs, and finance leaders facing investor, customer, or regulatory demand for sustainability disclosures. This self-check screens whether your reporting scope, data ownership, controls, board oversight, and evidence would stand up to the frameworks you are being asked to report under - the ISSB standards IFRS S1 and IFRS S2 and, where applicable, the SEC climate-related disclosure rules - and identifies where the readiness gap actually sits.
Answer a few quick questions below. It is private - nothing is submitted or stored - and takes about a minute.
Informational business diagnostic only; not accounting, audit, assurance, tax, legal, investment, or valuation advice. Confirm framework applicability and readiness conclusions with your advisor.
Here is what the checker asks and why each step matters. Prefer to talk it through? Contact us and we will help directly.
Who is asking determines which framework governs, how prescriptive the requirements are, and how much rides on getting the numbers right. A regulatory mandate carries filing deadlines and potential liability; investor and customer demands are contractual or commercial but still create real exposure if reported figures later prove unsupportable.
With no external mandate, the priority is monitoring applicability triggers and retaining baseline data, not building full reporting infrastructure.
Official guidance: U.S. Securities and Exchange Commission
Scoping is the highest-leverage step: it converts diffuse ESG pressure into a finite list of disclosures and metrics. IFRS S1 requires material information about sustainability-related risks and opportunities that could reasonably be expected to affect the entity's prospects, with materiality judged from the perspective of primary users of general purpose financial reports. The common trap is skipping straight to data collection and gathering metrics no framework or counterparty actually requires.
Run a structured applicability and materiality assessment before investing in data or controls - IFRS S1 defines the disclosure perimeter everything else depends on.
Official guidance: U.S. Securities and Exchange Commission
Greenhouse gas emissions are the one metric almost every regime demands: IFRS S2 paragraph 29(a) requires gross Scope 1, Scope 2, and Scope 3 emissions measured in accordance with the Greenhouse Gas Protocol Corporate Standard unless a jurisdictional authority requires a different method. The recurring trap is an inventory built once by an outside consultant that no one inside the company can explain, reproduce, or update the following year.
IFRS S1 and IFRS S2 as issued, including the metrics and measurement requirements referenced in this step.
Official guidance: U.S. Securities and Exchange Commission
Sustainability data typically lives outside the finance function - facilities, human resources, environmental health and safety, procurement - where no one has historically been accountable for reporting-grade accuracy. COSO Principle 13 frames the standard: the organization obtains or generates and uses relevant, quality information to support internal control. The trap is treating a once-a-year spreadsheet collection as a process; comparability collapses when definitions and owners change between periods.
Assign metric-level ownership and repeatable collection before reporting externally - COSO Principle 13 requires relevant, quality information, and an ad hoc year-end scramble cannot deliver it.
Official guidance: U.S. Securities and Exchange Commission
Scope 3 emissions and many workforce and sourcing metrics depend on data the company does not control. IFRS S2 requires disclosure of Scope 3 emissions and of the measurement approach, inputs, and assumptions used, so a documented estimation methodology is acceptable where primary data is unavailable - an undocumented guess is not. The trap is signing customer contracts that promise supplier-level data the company has no mechanism to obtain.
Value-chain data dependencies are unresolved - secure data-sharing arrangements or adopt documented estimation methodologies before committing to report Scope 3 or supplier-dependent metrics.
Official guidance: U.S. Securities and Exchange Commission
External sustainability figures increasingly carry the same exposure as financial data - regulatory liability, contractual representations, and greenwashing claims - but are rarely produced under equivalent control. The COSO 2013 framework applies to reporting objectives generally, not only to financial statements, so preparer-reviewer separation, reconciliation to source, and evidence retention are the same disciplines. The trap is a well-controlled general ledger sitting next to an uncontrolled ESG spreadsheet feeding the same annual report.
The 2013 framework and related COSO guidance on applying internal control to sustainability information.
Official guidance: U.S. Securities and Exchange Commission
Governance is a mandated disclosure, not background: IFRS S1 and IFRS S2 both require a description of the governance body responsible for sustainability-related risks and opportunities, its mandate, and how it is informed. The SEC climate-related disclosure rules likewise call for description of board oversight of climate-related risks, subject to the rules' current legal status. The trap is disclosure drafted to imply oversight that charters and minutes cannot actually evidence.
Establish documented board or committee oversight - IFRS S1 and IFRS S2 both require disclosure of the governance body responsible, and an empty answer is itself a red flag to users.
Official guidance: U.S. Securities and Exchange Commission
Assurance over sustainability disclosures is spreading quickly: the SEC climate rules as adopted phase in attestation over Scope 1 and Scope 2 emissions for larger filers, ISSA 5000 gives providers a global engagement standard, and investors increasingly discount unassured figures. The test is reperformability - an independent party should be able to trace any reported figure to source and reproduce it. The trap is confusing a published number with a supported one.
Fundamentals are in place - formalize the reporting calendar, run pre-assurance readiness testing, and confirm disclosure consistency across every channel. Close the evidence gap before external assurance or regulatory filing - support rebuilt after the fact rarely survives testing.
Official guidance: U.S. Securities and Exchange Commission
Send us your situation and one of our senior CPAs will review it with you - fixed fee, no surprises.
Contact Us