Book a demo Log in / Sign up

Audit Engagement Letter Template for the United States

Generate a bespoke document

  • England and Wales
  • Scotland
  • Northern Ireland
  • Ireland
  • United States
  • Alabama (USA)
  • Alaska (USA)
  • Arizona (USA)
  • Arkansas (USA)
  • California (USA)
  • Colorado (USA)
  • Connecticut (USA)
  • Delaware (USA)
  • Florida (USA)
  • Georgia (USA)
  • Hawaii (USA)
  • Idaho (USA)
  • Illinois (USA)
  • Indiana (USA)
  • Iowa (USA)
  • Kansas (USA)
  • Kentucky (USA)
  • Louisiana (USA)
  • Maine (USA)
  • Maryland (USA)
  • Massachusetts (USA)
  • Michigan (USA)
  • Minnesota (USA)
  • Mississippi (USA)
  • Missouri (USA)
  • Montana (USA)
  • Nebraska (USA)
  • Nevada (USA)
  • New Hampshire (USA)
  • New Jersey (USA)
  • New Mexico (USA)
  • New York (USA)
  • North Carolina (USA)
  • North Dakota (USA)
  • Ohio (USA)
  • Oklahoma (USA)
  • Oregon (USA)
  • Pennsylvania (USA)
  • Rhode Island (USA)
  • South Carolina (USA)
  • South Dakota (USA)
  • Tennessee (USA)
  • Texas (USA)
  • Utah (USA)
  • Vermont (USA)
  • Virginia (USA)
  • Washington (USA)
  • West Virginia (USA)
  • Wisconsin (USA)
  • Wyoming (USA)
  • Austria
  • Denmark
  • France
  • Germany
  • Lithuania
  • Luxembourg
  • Malta
  • Netherlands
  • Poland
  • Portugal
  • Romania
  • Slovakia
  • Slovenia
  • Spain
  • Sweden
  • Switzerland
  • Australia
  • New Zealand
  • Singapore
  • Hong Kong
  • India
  • Malaysia
  • Pakistan
  • United Arab Emirates
  • Qatar
  • Saudi Arabia
  • South Africa
  • Nigeria
  • Canada
  • Brasil
  • Monaco
  • Bermuda
  • Cayman Islands
  • Gibraltar
  • Isle of Man
  • Mauritius

What is a Audit Engagement Letter?

Audit Engagement Letters are essential documents used in the United States to formalize the relationship between auditors and their clients. These letters are required by professional standards and regulatory bodies, including the AICPA and PCAOB. The document specifies the nature and limitations of services, outlines mutual responsibilities, and addresses key matters such as fees, timeline, and compliance requirements. Audit Engagement Letters are particularly crucial in the current regulatory environment, where clear documentation of audit terms is necessary for risk management and professional liability purposes.

Frequently Asked Questions

Is an audit engagement letter legally binding in the United States?

Yes, an audit engagement letter is a legally binding contract in the United States that establishes the formal auditor-client relationship. Once signed by both parties, it creates enforceable legal obligations and protections under federal securities laws and professional standards. The letter serves as evidence of the agreed-upon terms and scope of the audit engagement.

Can my company be audited without a signed engagement letter?

No, professional auditing standards require a signed engagement letter before commencing an audit in the United States. The AICPA and PCAOB mandate that auditors must have a written agreement defining the scope, responsibilities, and terms before beginning any audit work. Proceeding without a signed letter violates professional standards and can result in regulatory sanctions.

How does an audit engagement letter differ from a management letter?

An audit engagement letter is the initial contract that establishes the auditor-client relationship and defines the scope of work, while a management letter is delivered after the audit completion and contains recommendations for improving internal controls. The engagement letter is signed before audit work begins, whereas the management letter is an outcome document that communicates findings and suggestions to management.

How long does it typically take to finalize an audit engagement letter?

Most audit engagement letters can be finalized within 1-2 weeks, depending on the complexity of the engagement and negotiation requirements. Simple engagements for private companies may be completed in a few days, while public company engagements requiring extensive Sarbanes-Oxley compliance terms may take several weeks. The timeline often depends on legal review processes and management approval workflows.

Which federal laws must be addressed in a U.S. audit engagement letter?

U.S. audit engagement letters must address compliance with the Sarbanes-Oxley Act of 2002, Securities Exchange Act requirements, and PCAOB auditing standards for public companies. Private company audits must comply with AICPA professional standards and may need to address specific state regulations. The letter should also reference auditor independence requirements and any applicable SEC regulations.

Can an audit engagement letter be modified after it's signed?

Yes, audit engagement letters can be modified through written amendments or addendums signed by both parties. Any changes to scope, fees, or responsibilities should be documented in writing before implementation. However, significant modifications during an ongoing audit may require careful consideration of professional standards and potential impacts on auditor independence.

Why do auditors refuse to start work without a signed engagement letter?

Auditors are required by professional standards to have signed engagement letters to protect against liability, clarify scope limitations, and ensure compliance with regulatory requirements. Without this documentation, auditors face potential malpractice claims, regulatory violations, and unclear responsibilities. The letter also protects the client by establishing clear expectations and limiting the auditor's liability exposure.

Reviewed by

Swetha Meenal

Legal Engineer, GenieAI

Swetha Meenal profile photo

A lawyer, legal researcher and legal tech founder, Swetha has built AI products deployed inside Tier 1 firms and enterprises. She ensures GenieAI's alignment with the latest regulation and executes testing on the legal robustness of Genie output.

LinkedIn

Reviewed by

Imad Mohammed Nazar

Legal Engineer, GenieAI

Imad Mohammed Nazar profile photo

A Skadden-trained M&A lawyer, Imad advised on cross-border transactions and contractual risk before moving into legal AI. He reviews GenieAI's output for compliance and enforceability across our 150+ supported jurisdictions, as well as facilitating external benchmarking.

LinkedIn

Jurisdiction

United States

Reviewed by

Swetha Meenal & Imad Mohammed Nazar

Publisher

GenieAI

Category

Engagement Letter

Sector

Business

Cost

Free to use

Last updated

About the Audit Engagement Letter

When you engage an audit firm to examine your company's financial statements, you need a comprehensive Audit Engagement Letter to formalize this critical professional relationship. This document serves as a legally binding contract that protects both your organization and the auditing firm by clearly defining the scope, responsibilities, and expectations of the audit engagement under United States law.

When do you need this document?

You must execute an Audit Engagement Letter before any audit work begins, whether you're a publicly traded company subject to SEC requirements, a private company seeking audited financial statements for lenders or investors, or a nonprofit organization requiring independent financial verification. Public companies are legally required to engage independent auditors under the Sarbanes-Oxley Act, while private companies often need audited statements to satisfy loan covenants, attract investors, or meet regulatory requirements in specific industries like healthcare or government contracting. The letter is also essential when changing audit firms, as it establishes new terms and clarifies the transition of responsibilities.

Key legal considerations

Your Audit Engagement Letter must address several critical legal components to ensure compliance and protection. The document should clearly state that the audit will be conducted in accordance with Generally Accepted Auditing Standards (GAAS) or Public Company Accounting Oversight Board (PCAOB) standards for public companies. It must define management's responsibilities for preparing accurate financial statements, maintaining internal controls, and providing complete access to records and personnel. The letter should also address auditor independence requirements under the Sarbanes-Oxley Act, including prohibited non-audit services and pre-approval procedures for permitted services. Additionally, include clear language about the inherent limitations of audits, potential for undetected material misstatements, and the auditor's responsibility for detecting fraud and illegal acts.

Legal requirements in United States

Under United States federal securities laws, audit engagements must comply with specific regulatory frameworks depending on your company type. Public companies must follow PCAOB standards established under the Sarbanes-Oxley Act, which requires auditor rotation, enhanced independence standards, and specific reporting requirements to audit committees. The Securities Exchange Act of 1934 mandates annual audited financial statements for public companies, while the Securities Act of 1933 requires audited financials for securities offerings. Private companies and nonprofits must follow AICPA professional standards, though they may voluntarily adopt higher standards. Your engagement letter must also comply with state professional licensing requirements and may need to address specific industry regulations such as FDIC requirements for banks or HUD standards for housing authorities.

GOVERNING LAW

Applicable law

This Audit Engagement Letter is drafted to comply with United States law. Key legislation includes:

Sarbanes-Oxley Act 2002: Federal law that established new or enhanced standards for all U.S. public company boards, management, and public accounting firms. Key considerations include auditor independence, corporate governance, and enhanced financial disclosure requirements.

Securities Exchange Act 1934: Federal law governing secondary trading of securities, requiring periodic reporting and establishing SEC oversight. Relevant for public company audit engagements.

Securities Act 1933: Federal law regulating the offering of securities to the public, requiring full disclosure of material information. Important for IPO audits and securities offerings.

AICPA Professional Standards: Comprehensive guidelines established by the American Institute of CPAs covering auditing, attestation, quality control, ethics, and independence requirements.

PCAOB Auditing Standards: Standards set by the Public Company Accounting Oversight Board that govern the audits of public companies and broker-dealers.

GAAS: Generally Accepted Auditing Standards providing framework for conducting audits of financial statements, including general standards, fieldwork standards, and reporting standards.

GAAP: Generally Accepted Accounting Principles representing the standard framework of guidelines for financial accounting and reporting.

State Accountancy Laws: Varying state-specific regulations governing the practice of public accountancy, including licensing requirements and professional conduct standards.

SEC Requirements: Securities and Exchange Commission rules and regulations affecting public company audits, including reporting requirements and independence rules.

Professional Liability Insurance: Requirements and considerations for maintaining appropriate professional liability coverage for audit engagements.

Gramm-Leach-Bliley Act: Federal law requiring financial institutions to explain their information-sharing practices and protect sensitive data, affecting audit procedures and client confidentiality.

Record Retention Requirements: Legal and professional standards for maintaining audit documentation and working papers, including retention periods and security measures.

Private Securities Litigation Reform Act: Federal law affecting securities litigation, including provisions related to auditor liability and reporting requirements for fraudulent activities.

State Privacy Laws: Various state-specific regulations governing data privacy and protection that must be considered in audit engagement terms and procedures.

Industry-Specific Regulations: Specialized requirements for particular industries (e.g., healthcare, banking, insurance) that affect audit procedures and reporting requirements.

Explore 208,390+ legal templates

Explore 208,390+ legal templates

Genie's Security Promise

Genie is the safest place to draft. Here's how we prioritise your privacy and security.

Your data is private:

We do not train on your data; Genie's AI improves independently

All data stored on Genie is private to your organisation

Your documents are protected:

Your documents are protected by ultra-secure 256-bit encryption

We are ISO27001 certified, so your data is secure

Organizational security:

You retain IP ownership of your documents and their information

You have full control over your data and who gets to see it