Frameworks like SOC 2, ISO 27001, HIPAA etc. don’t just require controls — they require proof.
That’s where audits come in. An independent auditor reviews your evidence,
evaluates your compliance, and issues a formal report/certification that you can share with customers, prospects, and partners.
With ComplyJet, the entire audit lifecycle — from setup to final report — is handled in a single, streamlined workflow.
1. Prepare for the Audit
Before you can create an audit, make sure you're actually ready to start one. Here’s what that involves:
Check Your Readiness
Go to the Dashboard or Tasks page — we’ll show you a clear status of whether your company is audit-ready. If anything is missing, complete those tasks first.
Choose Your Auditor
Not sure which audit firm to work with? Reach out to our support team. We’ll help you select from a pool of trusted, pre-vetted auditors based on your budget, region, and certification needs.
Complete Pre-Audit Paperwork
Most auditors require some documentation before kicking off the audit — things like an Engagement Letter, Statement of Work (SOW), and timelines.
We’ll guide you through this part — just drop us a message and we’ll help you get everything in place.
2. Add Your Auditor in ComplyJet
Once you've finalized your auditor and completed the paperwork:
Go to Setup -> Settings → Auditors → Add Auditor
You’ll need the auditor’s UUID to complete this step. You can directly ask your chosen auditor (or) reach out to support, and we’ll share the correct UUID based on your chosen audit firm.
3. Re-run All Tests Before Starting
Before creating your audit, go to Compliance → Evidence and click “Re-run all tests.”
This ensures:
Automated monitors reflect your latest compliance status
Evidence is fresh and accurate
You’re sharing up-to-date results with the auditor
🛠️ Best practice: Always re-run tests just before audit creation to avoid stale data.
4. Create the Audit
Now, go to the Audits tab and click “Create Audit.”
You'll be asked to fill in:
Audit Type (e.g., SOC 2 Type I, ISO 27001)
Evidence Date Range
Assigned Auditor (selected from your added auditors)
⚠️ Don’t see the “Create Audit” button?
This is disabled by default. Contact our team — we’ll review your readiness and unlock this once:
Your compliance tasks are complete
The auditor is correctly added
Pre-audit paperwork is done
5. Manage Audit
Need to adjust what’s shared with the auditor? Or re-assign to a different auditor ?
Click “Manage Audit” on the relevant audit to change these.
This lets you:
Assign an auditor ( if not assigned during creation stage ) or re-assign it to a different auditor
Expand or narrow the evidence window
6. Collaborate with the Auditor
Once the audit starts, your auditor will begin reviewing evidence:
Inside the Audit → Evidence tab, you can track:
What’s been approved
What’s been flagged
Comments or requests for more info
It’s all in real time — no waiting for weekly updates or PDF exports.
7. Respond to Requests Promptly
If the auditor needs clarification or more evidence, they can:
Leave in-app comments
Or reach out via email or Slack
You’ll be notified through your preferred channel and can respond quickly.
8. Audit Completion & Report Delivery
Once the auditor has completed their review:
They’ll mark the audit as complete
You’ll receive the official Audit Report
This becomes your proof of compliance — ready to share with prospects, customers, and partners.
Still have questions? Reach out via chat — we’re here to help.