Peer Review Engagement Letter Template for the United States
Generate a bespoke document
What is a Peer Review Engagement Letter?
The Peer Review Engagement Letter is a crucial document required by the AICPA's peer review program in the United States. This letter is used when a CPA firm needs to undergo mandatory quality control review of their accounting and auditing practices, typically every three years. The document outlines the specific terms of engagement, including the type of peer review (system or engagement), scope of work, timeline, fees, and mutual responsibilities. It ensures compliance with professional standards while protecting both parties' interests. The letter must adhere to both federal requirements and state-specific regulations, making it an essential component of the peer review process.
About the Peer Review Engagement Letter
A Peer Review Engagement Letter is a legally binding contract that formalizes the relationship between a reviewing CPA firm and the firm being reviewed under the AICPA's mandatory peer review program. This document serves as your roadmap for navigating the complex quality control review process while ensuring compliance with professional standards and protecting both parties' legal interests.
When do you need this document?
You need a Peer Review Engagement Letter when your CPA firm is required to undergo its mandatory triennial peer review under AICPA standards. This applies whether you're conducting system reviews for firms with audit and attestation engagements or engagement reviews for firms performing only compilation, review, or preparation services. The letter is also required when you're the reviewing firm taking on peer review engagements for other practitioners. Additionally, if your firm is transitioning between different types of peer reviews due to practice changes, you'll need a new engagement letter reflecting the updated scope and requirements.
Key legal considerations
The engagement letter must clearly define the scope of work, specifying whether it's a system review or engagement review and the exact period being covered. Professional liability protection is crucial, so include clear limitations on the reviewing firm's responsibilities and potential exposure. Confidentiality provisions are essential given the sensitive nature of client information that may be reviewed, requiring compliance with the Gramm-Leach-Bliley Act and state privacy laws. Fee arrangements should be detailed to avoid disputes, including provisions for additional costs if the review scope expands. The letter should also address document retention requirements, as peer review workpapers must be maintained for specific periods under professional standards.
Legal requirements in United States
Under United States law, peer review engagement letters must comply with AICPA Standards for Performing and Reporting on Peer Reviews, which establish minimum requirements for review procedures and reporting. State CPA societies impose additional requirements that vary by jurisdiction, including specific reviewer qualifications and administrative procedures. The AICPA Code of Professional Conduct governs the ethical obligations of both parties, particularly regarding independence and objectivity. Contract law principles apply, meaning the letter must meet state-specific requirements for valid contracts, including consideration, mutual assent, and proper execution. Professional licensing regulations require that reviewing firms maintain appropriate qualifications and that reviewed firms cooperate fully with the process. State Boards of Accountancy may have specific requirements for peer review documentation and reporting that must be incorporated into the engagement terms.
GOVERNING LAW
Applicable law
This Peer Review Engagement Letter is drafted to comply with United States law. Key legislation includes:
Explore 208,390+ legal templates
Explore 208,390+ legal templates
Genie's Security Promise
Genie is the safest place to draft. Here's how we prioritise your privacy and security.
Your data is private:
We do not train on your data; Genie's AI improves independently
All data stored on Genie is private to your organisation
Your documents are protected:
Your documents are protected by ultra-secure 256-bit encryption
We are ISO27001 certified, so your data is secure
Organizational security:
You retain IP ownership of your documents and their information
You have full control over your data and who gets to see it