Audit Engagement Letter Template for the United States
Generate a bespoke document
What is a Audit Engagement Letter?
Audit Engagement Letters are essential documents used in the United States to formalize the relationship between auditors and their clients. These letters are required by professional standards and regulatory bodies, including the AICPA and PCAOB. The document specifies the nature and limitations of services, outlines mutual responsibilities, and addresses key matters such as fees, timeline, and compliance requirements. Audit Engagement Letters are particularly crucial in the current regulatory environment, where clear documentation of audit terms is necessary for risk management and professional liability purposes.
About the Audit Engagement Letter
When you engage an audit firm to examine your company's financial statements, you need a comprehensive Audit Engagement Letter to formalize this critical professional relationship. This document serves as a legally binding contract that protects both your organization and the auditing firm by clearly defining the scope, responsibilities, and expectations of the audit engagement under United States law.
When do you need this document?
You must execute an Audit Engagement Letter before any audit work begins, whether you're a publicly traded company subject to SEC requirements, a private company seeking audited financial statements for lenders or investors, or a nonprofit organization requiring independent financial verification. Public companies are legally required to engage independent auditors under the Sarbanes-Oxley Act, while private companies often need audited statements to satisfy loan covenants, attract investors, or meet regulatory requirements in specific industries like healthcare or government contracting. The letter is also essential when changing audit firms, as it establishes new terms and clarifies the transition of responsibilities.
Key legal considerations
Your Audit Engagement Letter must address several critical legal components to ensure compliance and protection. The document should clearly state that the audit will be conducted in accordance with Generally Accepted Auditing Standards (GAAS) or Public Company Accounting Oversight Board (PCAOB) standards for public companies. It must define management's responsibilities for preparing accurate financial statements, maintaining internal controls, and providing complete access to records and personnel. The letter should also address auditor independence requirements under the Sarbanes-Oxley Act, including prohibited non-audit services and pre-approval procedures for permitted services. Additionally, include clear language about the inherent limitations of audits, potential for undetected material misstatements, and the auditor's responsibility for detecting fraud and illegal acts.
Legal requirements in United States
Under United States federal securities laws, audit engagements must comply with specific regulatory frameworks depending on your company type. Public companies must follow PCAOB standards established under the Sarbanes-Oxley Act, which requires auditor rotation, enhanced independence standards, and specific reporting requirements to audit committees. The Securities Exchange Act of 1934 mandates annual audited financial statements for public companies, while the Securities Act of 1933 requires audited financials for securities offerings. Private companies and nonprofits must follow AICPA professional standards, though they may voluntarily adopt higher standards. Your engagement letter must also comply with state professional licensing requirements and may need to address specific industry regulations such as FDIC requirements for banks or HUD standards for housing authorities.
GOVERNING LAW
Applicable law
This Audit Engagement Letter is drafted to comply with United States law. Key legislation includes:
Explore 208,390+ legal templates
Explore 208,390+ legal templates
Genie's Security Promise
Genie is the safest place to draft. Here's how we prioritise your privacy and security.
Your data is private:
We do not train on your data; Genie's AI improves independently
All data stored on Genie is private to your organisation
Your documents are protected:
Your documents are protected by ultra-secure 256-bit encryption
We are ISO27001 certified, so your data is secure
Organizational security:
You retain IP ownership of your documents and their information
You have full control over your data and who gets to see it