ICAEW.com works better with JavaScript enabled.

A policy for progress

Find out more about ICAEW’s nine recommendations for developing a meaningful audit and assurance policy

Read the full report Read the exec summary
Audit and assurance policy report

Call to action

ICAEW recommendations in the report and the extensive outreach and evidence gathering process on which they are based, suggest that introducing an “Audit and Assurance Policy“ could render corporate information more informative: augmenting the understanding, utility and value of audit and assurance activities, enabling them to be driven by the needs and expectations of key users, and making them more accessible in order to facilitate more appropriate resource decisions.

If the Policy is to fulfil its potential, UK plc will need to engage fully and follow the nine recommendations in this report.

Chapter 1 - key recommendations

Seize the moment

We urge UK plc to seize the moment to create a Policy that builds on existing activities, rather than waiting for this to become mandatory. We emphasise the ongoing need for discussion that results in a consistent and inclusive language to articulate and describe audit and assurance. Improved definition will support the great value that this Policy has the potential to provide, improving internal decision making while providing insight to external users.

Chapter 2 - key recommendations

Deliver integrated and enhanced information

We encourage viewing the Policy as a mechanism to deliver integrated and enhanced information on the system of risk management and internal control and the audit and assurance obtained over risks, disclosed financial and non-financial information (including Environmental, Social and Governance (ESG) and culture), and regulatory requirements through effective signposting across all disclosures.

Chapter 3 - key recommendations

Encourage a broad range of companies and other organisations

We support introducing the Policy as a requirement for Public Interest Entities, but with encouragement for a broad range of companies and other organisations, recognising the potential value for all users and in particular in providing clarity for regulators across many sectors. We recognise that this recommendation may require further consideration following the expected re-definition of Public Interest Entities as part of the Department for Business, Energy and Industrial Strategy’s consultation on corporate governance and audit reform.

Chapter 4 key recommendations

Audit committees should own the Policy

We encourage audit committees to own the Policy on behalf of the board, focusing on realising the full range of opportunities through clear, concise and comparable information; ensuring appropriate audit and assurance coverage of those matters of greatest concern to users; providing education to all parties; holding providers to the highest standards; and telling a story that drives value and builds trust.

Chapter 5 - key recommendations

Deliver clarity and transparency, avoiding boilerplate descriptions

We believe the Policy must deliver clarity and transparency, avoiding boilerplate descriptions, and evolve over time as improvements are embedded. Companies may initially need to prioritise aligning their understanding internally to learn, identify practical improvements, build capability, and evaluate gaps in their underlying audit and assurance provision.

Chapter 6 - key recommendations

Create a cohesive and complete narrative covering all sources of audit and assurance

We encourage a cohesive and complete narrative covering all sources of audit and assurance to indicate where and how directors get their comfort. Technology and data driven techniques should be considered as a fully integrated element of the solution, delivering improved insight across all risks. Culture and behaviours must also be addressed.

Chapter 7 - key recommendations

Adopt the proposals for a regularly updated Policy with a shareholder

We recommend adoption of the proposals for a regularly updated Policy with a shareholder vote. A comply or explain approach could be permitted to enable flexibility in the three-year plan if this timeframe is not appropriate to business circumstances. The advisory vote should drive proactive dialogue between shareholders and directors.

Chapter 9 - key recommendations

Focus on underpinning principles, creating flexibility through a proportionate and pragmatic response

We support guidance and regulation with a focus on underpinning principles, creating flexibility through a proportionate and pragmatic response, alongside a limited number of minimum mandatory elements for comparability. This approach should evolve, recognising that many organisations will not have the information available immediately, and allowing for transparency in discussing how they are progressing.

Chapter 9 - key recommendations

Aim for tailored, engaging and interactive reporting

We encourage tailored, engaging and interactive reporting that reflects the nature, scale and complexity of the company, with succinct summarised and integrated reports in the Annual Report. The full Policy should be accessible on the website, explaining the core principles in sufficient detail to enable users to evaluate the content and to engage in a meaningful discussion.

Audit and assurance policy report
A policy for progress

Watch ICAEW’s webinar which offers hints and tips for organisations who are implementing an audit and assurance policy for the first time.

Future of audit
The future of audit

Read ICAEW's range of succinct, high-level Thought Leadership reports .

Get in touch
Join the conversation

Please get in touch to share your views or to join our activities.