Which companies require a statutory audit in India?

All companies registered under the Companies Act 2013, regardless of size or turnover, require a statutory audit by a qualified Chartered Accountant. This includes private limited companies, public limited companies, one-person companies, and Section 8 companies. LLPs with turnover above Rs 40 lakh or capital contribution above Rs 25 lakh also require audit. Sole proprietors and partnerships require audit under the Income Tax Act if turnover exceeds specified limits under Section 44AB.

What are the key phases of statutory audit preparation?

Statutory audit involves four phases: Planning and Risk Assessment (understanding the entity, identifying risks, determining materiality, developing audit strategy), Fieldwork and Evidence Gathering (performing substantive procedures, testing internal controls, verifying account balances, examining transactions), Evaluation and Review (evaluating findings, reviewing working papers, consulting on complex issues, forming audit opinion), and Reporting (drafting audit report, communicating with management, issuing final report with opinion, preparing CARO report if applicable).

What is CARO 2020 and which companies does it apply to?

CARO 2020 (Companies Auditor's Report Order) requires statutory auditors to report on 21 specific matters covering fixed assets, inventory, loans, compliance with laws, internal audit, fraud reporting, and more. It applies to all companies except banking, insurance, and Section 8 companies, one-person companies, small companies with paid-up capital up to Rs 50 lakh and turnover up to Rs 2 crore, and private companies meeting specific criteria related to capital, turnover, and borrowings.

What documentation must a statutory auditor maintain?

Under SA 230 (Audit Documentation), auditors must maintain working papers documenting audit planning memorandum, risk assessment and materiality calculations, understanding of internal controls, substantive procedures performed and evidence obtained, analytical procedures and their conclusions, management representations, review notes and their resolution, summary of misstatements identified, and the basis for the audit opinion. Documentation should be sufficient for an experienced auditor to understand the work performed without access to the original auditor.

How is materiality determined for a statutory audit?

Materiality is determined based on the auditor's professional judgment considering the financial framework and nature of the entity. Common benchmarks include 5 to 10 percent of profit before tax for profit-making entities, 0.5 to 1 percent of total revenue for entities with volatile profits, 1 to 2 percent of total assets for asset-intensive businesses, and 1 to 5 percent of net assets for entities with low profitability. Performance materiality is set at 50 to 75 percent of overall materiality to reduce the risk that aggregate uncorrected misstatements exceed overall materiality.

What are the common audit qualifications in India and their implications?

Common qualifications include inadequate provision for doubtful debts, non-compliance with Ind AS or accounting standards, non-provision for statutory liabilities, related party transactions not at arm's length, and inadequate internal financial controls. A qualified opinion impacts the company's credibility with banks, investors, and regulators. It may trigger additional scrutiny from the MCA and tax authorities. Companies should address qualification matters proactively during the audit to avoid qualified opinions wherever possible.

#218ConsiderationUpdated: March 29, 202637 min read

Statutory Audit Preparation India: Complete Guide for Companies

Statutory audit is a mandatory requirement for all companies registered under the Companies Act 2013, serving as the primary mechanism for ensuring the reliability of financial statements and protecting stakeholder interests. This CorpReady Academy guide provides a comprehensive, practical walkthrough of statutory audit preparation -- from engagement acceptance and planning through fieldwork, documentation, and reporting. Whether you are an audit professional conducting the audit or a company finance team preparing for it, this guide covers the Standards on Auditing (SAs), CARO 2020 requirements, documentation standards, sampling techniques, and the practical considerations that determine audit quality and efficiency.

Explore Tools Book Free Counseling Browse Article Library

Statutory Audit Framework in India

The statutory audit framework in India is governed by the Companies Act 2013, the Standards on Auditing (SAs) issued by ICAI, and specific orders like CARO 2020. Every company registered under the Companies Act must appoint a statutory auditor and have its financial statements audited annually. The auditor's report accompanies the financial statements filed with the Registrar of Companies (ROC) and is a public document accessible to shareholders, creditors, regulators, and other stakeholders.

The scope of statutory audit extends beyond mere verification of financial statements. Under Section 143 of the Companies Act 2013, the auditor must report on whether the financial statements give a true and fair view, whether proper books of accounts have been maintained, whether the balance sheet and P&L comply with accounting standards, whether the directors are disqualified under Section 164(2), whether there are adequate internal financial controls and they are operating effectively, and various matters specified in CARO 2020.

Key Statutory Audit Timelines

Activity	Timeline	Responsibility
Financial Year End	March 31	Company
Books Closure for Audit	April 30 - May 31	Company finance team
Audit Fieldwork	May - July	Statutory auditor
Board Approval of Financials	August (before AGM)	Board of Directors
Annual General Meeting	September 30 (6 months from year-end)	Company
ROC Filing (AOC-4)	30 days from AGM	Company

Audit Planning and Risk Assessment

Effective audit planning is the foundation of an efficient and high-quality statutory audit. SA 300 (Planning an Audit of Financial Statements) requires the auditor to develop an overall audit strategy and a detailed audit plan before commencing fieldwork.

Understanding the Entity and Its Environment

Before designing audit procedures, understand the company's industry, business model, organizational structure, accounting policies, regulatory environment, and financial performance trends. For a manufacturing company, this includes understanding the production process, cost structure, key customers and suppliers, and inventory management practices. For a services company, focus on revenue recognition policies, contract terms, employee costs, and client concentration. This understanding informs risk identification and helps the auditor focus efforts on areas most likely to contain material misstatements.

Materiality Determination

Determine overall materiality based on appropriate benchmarks. For a profitable company, 5-10 percent of profit before tax is commonly used. For companies with volatile profits, 0.5-1 percent of revenue may be more appropriate. For holding companies, 1-2 percent of net assets is typical. Set performance materiality at 50-75 percent of overall materiality. The trivial threshold (below which misstatements are clearly trivial and need not be accumulated) is typically set at 3-5 percent of overall materiality. Document the rationale for benchmark selection and the specific percentages chosen.

Risk Assessment and Audit Strategy

Identify significant risks at both the financial statement level (going concern, management override of controls, related party transactions) and the assertion level (existence of receivables, valuation of inventory, completeness of liabilities, accuracy of revenue). For each significant risk, determine whether to rely on controls testing, substantive procedures, or a combination. The audit strategy documents the planned approach, team composition, timeline, and areas requiring specialist involvement (actuarial valuations, property valuations, legal opinions).

Fieldwork and Evidence Gathering

Audit fieldwork involves executing the planned procedures to gather sufficient appropriate evidence supporting the audit opinion. The auditor must design procedures that address the identified risks for each significant account balance and disclosure.

Substantive Procedures by Account Area

Revenue: Test revenue recognition by examining sales contracts, delivery records, and invoice details for a sample of transactions. Perform cutoff testing around year-end to verify that revenue is recorded in the correct period. Analyze credit notes and returns after year-end that may relate to pre-year-end sales. For long-term contracts, verify the percentage of completion calculations and underlying assumptions.

Trade Receivables: Obtain the receivables aging analysis and agree to the general ledger. Send direct confirmation requests to a sample of debtors covering at least 50-60 percent of the outstanding balance. For non-responses, perform alternative procedures (verify subsequent cash receipts, examine shipping documents, review sales contracts). Evaluate the adequacy of the provision for doubtful debts by analyzing aging, historical write-off rates, and specific customer circumstances.

Inventory: Attend the physical inventory count, observing the company's count procedures, performing test counts, and noting the last delivery and dispatch numbers for cutoff verification. Verify inventory valuation by testing the cost build-up for a sample of items (purchase price, freight, duties) and comparing with net realizable value. For manufacturing companies, review the overhead absorption methodology and test standard cost variance analysis.

Fixed Assets: Verify significant additions during the year by examining purchase invoices, installation certificates, and capitalization calculations. Test depreciation calculations for accuracy and consistency with accounting policies. Physically verify a sample of high-value assets. Review disposals for proper authorization, sales proceeds recording, and profit/loss computation. Assess whether any assets show indicators of impairment requiring Ind AS 36 evaluation.

Liabilities and Provisions: Confirm bank loans and credit facilities directly with banks. Verify trade payables through supplier statement reconciliation and review of subsequent payments. Evaluate provisions for completeness -- assess pending litigation through legal confirmations, review product warranty claims history, and verify tax provisions with management's tax computation workings.

Audit Documentation Standards

SA 230 requires auditors to prepare documentation sufficient to enable an experienced auditor with no prior connection to the engagement to understand the nature, timing, and extent of procedures performed, the evidence obtained and conclusions reached, and significant matters arising and their resolution.

Essential Working Papers

Working Paper	Content	SA Reference
Engagement Letter	Terms, scope, responsibilities, fees	SA 210
Audit Planning Memo	Strategy, materiality, risk assessment, team plan	SA 300, SA 315, SA 320
Internal Controls Evaluation	Walkthrough documentation, control testing results	SA 315, SA 330
Lead Schedules	Reconciliation of each balance sheet and P&L item	SA 500
Sampling Documentation	Sample selection methodology, results, conclusions	SA 530
Management Representation Letter	Signed by management confirming key assertions	SA 580

Audit Sampling Techniques

SA 530 governs the use of audit sampling. Since it is impractical to test every transaction, auditors select representative samples to draw conclusions about entire populations. The quality of the sampling methodology directly impacts audit reliability.

Statistical vs. Non-Statistical Sampling

Statistical sampling uses random selection and probability theory to evaluate results, providing a quantifiable measure of sampling risk. Non-statistical sampling relies on the auditor's judgment for both selection and evaluation. Both approaches are acceptable under SA 530, but statistical sampling is more defensible and provides clearer documentation of the basis for conclusions. Common statistical methods include simple random sampling, systematic sampling (every nth item), stratified sampling (dividing the population into sub-groups), and monetary unit sampling (probability proportional to size).

Determining Sample Size

Sample size depends on the acceptable sampling risk, expected error rate, tolerable misstatement, and population characteristics. For tests of controls, larger samples are needed when the expected deviation rate is higher or the desired confidence level is greater. For substantive testing, larger samples are needed when the tolerable misstatement is smaller relative to the population or when the population has high variability. Practical guidelines suggest testing 25-60 items for substantive procedures and 20-40 items for controls testing, adjusted based on the specific risk assessment.

CARO 2020 Reporting Requirements

The Companies (Auditor's Report) Order 2020 requires statutory auditors to report on 21 specific matters in an annexure to the audit report. CARO 2020 applies to all companies except banking companies, insurance companies, Section 8 companies, one-person companies, and small companies meeting specified criteria.

Key CARO 2020 Clauses

Clause (i) - Fixed Assets: Report on whether the company maintains proper records of property, plant, and equipment showing full particulars including quantitative details and situation, whether these assets have been physically verified by management at reasonable intervals, and whether the title deeds of immovable properties are held in the name of the company.

Clause (ii) - Inventory: Report on whether physical verification of inventory has been conducted at reasonable intervals, whether any material discrepancies were noticed, and whether the company has maintained proper records for inventory held with third parties.

Clause (iii) - Loans: Report on whether the company has granted loans, secured or unsecured, to companies, firms, LLPs, or other parties listed in the register maintained under Section 189. Report the amounts outstanding, terms and conditions, and whether they are prejudicial to the company's interests.

Clause (xi) - Fraud: Report on whether any fraud by the company or any fraud on the company has been noticed or reported during the year, and if yes, the nature and amount involved.

Audit Report and Opinion Formation

The audit report is the culmination of the entire audit process. SA 700, SA 705, and SA 706 govern the formation and expression of the audit opinion and modifications thereto.

Types of Audit Opinions

Unmodified (Clean) Opinion: Issued when the financial statements are prepared in all material respects in accordance with the applicable financial reporting framework. This is the standard opinion that indicates no material misstatements were identified.

Qualified Opinion: Issued when the auditor concludes that misstatements are material but not pervasive, or when the auditor is unable to obtain sufficient appropriate evidence but concludes that possible effects are material but not pervasive.

Adverse Opinion: Issued when misstatements are both material and pervasive to the financial statements. This is the most severe negative opinion and indicates the financial statements do not give a true and fair view.

Disclaimer of Opinion: Issued when the auditor is unable to obtain sufficient appropriate evidence and concludes that the possible effects could be both material and pervasive.

Your Action Step This Week

Create a complete statutory audit checklist for a small private limited company covering all Sections 143 and CARO 2020 reporting requirements. Draft an audit planning memorandum for a hypothetical company including materiality calculation, risk assessment, and planned procedures for each significant account area. Use the ICAI audit manual as reference.

Time Needed 5-7 hours

Tools Companies Act 2013, CARO 2020, ICAI Standards on Auditing

Outcome Practical audit preparation toolkit ready for use in real engagement planning

Real Student Story

"Meet Karthik, a CA articleship trainee in his second year at a mid-tier firm in Chennai. Assigned to lead the fieldwork for a manufacturing company's statutory audit, he felt overwhelmed by the complexity of inventory valuation, CARO reporting, and the sheer volume of documentation required. Following the structured approach from his CorpReady training, he created a comprehensive audit checklist mapping each CARO clause to specific procedures, built a testing workbook with standardized lead schedules and sampling frameworks, and prepared a client document request list organized by audit area. His systematic preparation reduced the fieldwork duration from the budgeted three weeks to two weeks, with higher quality working papers than the firm had seen from a second-year trainee. The engagement partner commended his approach, and the working papers were adopted as the firm's standard template for manufacturing audits. Karthik's proactive preparation turned a potentially overwhelming experience into a career-defining achievement."

What Audit Partners Actually Look For

Senior partners and engagement managers consistently emphasize that audit quality is not about checking more boxes -- it is about professional skepticism and judgment on the issues that matter. The most valued audit team members are those who can identify the three to four areas that carry the highest risk of material misstatement and concentrate their effort there, rather than spreading effort equally across all areas. Understanding the business well enough to ask insightful questions during management discussions, recognizing patterns in data that suggest potential issues, and documenting the rationale for conclusions rather than just the procedures performed -- these are the skills that distinguish excellent audit professionals from average ones.

Frequently Asked Questions

All companies under the Companies Act 2013 require statutory audit regardless of size, including private limited, public limited, OPCs, and Section 8 companies. LLPs with turnover above Rs 40 lakh or capital above Rs 25 lakh also require audit.

Four phases: Planning and Risk Assessment, Fieldwork and Evidence Gathering, Evaluation and Review, and Reporting. Each phase has specific deliverables governed by Standards on Auditing issued by ICAI.

CARO 2020 requires auditors to report on 21 specific matters covering fixed assets, inventory, loans, compliance, internal audit, fraud, and more. It applies to most companies except banking, insurance, Section 8, OPCs, and qualifying small companies.

Under SA 230, auditors must maintain engagement letters, planning memos, risk assessments, internal control evaluations, lead schedules, sampling documentation, analytical procedures, management representations, review notes, and the basis for audit opinion.

Common benchmarks: 5-10% of profit before tax for profitable entities, 0.5-1% of revenue for volatile profits, 1-2% of total assets for asset-intensive businesses. Performance materiality is set at 50-75% of overall materiality.

Common qualifications include inadequate doubtful debt provisions, non-compliance with accounting standards, non-provision for statutory liabilities, related party transaction issues, and inadequate internal financial controls. Qualifications impact credibility with banks, investors, and regulators.

Key Takeaways

All companies under the Companies Act 2013 require statutory audit -- understanding the framework is essential for every finance professional in India
Effective audit planning with proper risk assessment and materiality determination drives audit quality and efficiency
Fieldwork procedures must be tailored to identified risks, focusing effort on areas with the highest likelihood of material misstatement
Audit documentation under SA 230 must be sufficient for an experienced auditor to understand the work without access to the original team
CARO 2020 reporting on 21 specific matters adds significant scope to the statutory audit for qualifying companies
Professional skepticism and business understanding are valued more than mechanical compliance with checklists

Ready to Master Audit Skills?

CorpReady Academy's practical training includes audit simulation modules where you plan, execute, and report on a mock statutory audit. Build real-world audit competence before your first engagement.

Explore CorpReady Programs Explore Tools Talk to an Advisor