Are the Australian Auditing Standards legally binding?

Yes. When made for the purposes of the Corporations Act 2001, the ASA are legislative instruments, and the Act requires audits of financial reports to be conducted in accordance with them. Non-compliance can be a breach of the Act, not just a professional matter.

Who issues the Australian Auditing Standards?

The AUASB issues them. It is an independent Commonwealth statutory board established under the ASIC Act 2001. ASIC separately registers auditors and oversees audit quality but does not write the standards.

Are the ASA the same as the international ISAs?

They are closely aligned. The AUASB bases the ASA on the international ISAs issued by the IAASB, adding Australian-specific paragraphs (marked 'Aus') where local law or circumstances require, so an ASA audit is broadly comparable to one under international standards.

Do the ASA decide whether my company needs an audit?

No. The requirement to have an audit comes from other law, such as company size thresholds in the Corporations Act or grant and constitutional requirements. The ASA only govern how the audit is performed once an audit is required.

Australian Auditing Standards (ASA): the framework auditors follow

Q: What does ASA stand for in auditing?

ASA stands for Australian Auditing Standard. It is the prefix and series name for the standards issued by the Auditing and Assurance Standards Board (AUASB) that registered company auditors must apply when auditing a financial report in Australia.

A neutral guide to the Australian Auditing Standards (ASA): who sets them, who must follow them, their legal force under the Corporations Act, and how an audit works.

The Australian Auditing Standards (ASA) are the mandatory professional standards that registered company auditors must apply when conducting an audit of a financial report in Australia. They are issued by the Auditing and Assurance Standards Board (AUASB), are based on the international standards (ISAs) issued by the International Auditing and Assurance Standards Board, and carry the force of law for audits required under the Corporations Act 2001. In short: if a financial report must be audited under Australian law, the auditor must perform that audit in accordance with the ASA.

This page explains who sets the standards, who must follow them, how they are structured, and the practical obligations they impose. For the underlying obligation record, see the ASA auditing standards obligation.

What the Australian Auditing Standards (ASA) are

The ASA are a numbered series of standards that set out an auditor's responsibilities when undertaking an audit of a financial report, a complete set of financial statements, or other historical financial information. Each standard establishes:

Requirements — the mandatory steps an auditor must perform (expressed using "the auditor shall"); and
Application and other explanatory material — guidance that explains how to apply the requirements in practice.

The objective of an audit conducted under the ASA is to enable the auditor to express an opinion on whether the financial report is prepared, in all material respects, in accordance with the applicable financial reporting framework — typically the Australian Accounting Standards. An ASA audit is designed to obtain reasonable assurance, which is a high but not absolute level of assurance; it is not a guarantee that the report is free from all error or fraud.

The standards are issued by the AUASB and published on the AUASB website and the AUASB Standards Portal.

Who sets the ASA and their legal force

The AUASB is an independent, non-corporate Commonwealth entity. It is established as a statutory board under the Australian Securities and Investments Commission Act 2001 (the ASIC Act), and its functions include making auditing standards and formulating guidance on auditing and assurance matters.

The legal force of the ASA flows through the Corporations Act 2001:

When the AUASB makes an auditing standard for the purposes of the Corporations Act, that standard is a legislative instrument.
The Corporations Act requires that an audit of a financial report be conducted in accordance with the auditing standards. Non-compliance can therefore be a breach of the Act, not merely a professional shortcoming.

The Australian Securities and Investments Commission (ASIC) is the regulator that registers company auditors and oversees audit quality, including through its audit inspection program. The standards themselves are made by the AUASB; enforcement of auditor conduct largely sits with ASIC and the professional accounting bodies.

The ASA are substantially aligned with the international ISAs, with Australian-specific additions ("Aus" paragraphs) where local law or circumstances require. This alignment means an ASA audit is broadly comparable to audits performed under international standards.

Who must comply with the ASA

The ASA apply to the auditor, not the entity being audited. They must be followed by:

Registered company auditors and audit firms conducting audits required under the Corporations Act — for example, audits of many companies, registered schemes and disclosing entities.
Auditors of other entities where legislation or an engagement requires the audit to be performed in accordance with Australian Auditing Standards — this can include certain not-for-profits, charities registered with the ACNC, and entities audited under Commonwealth or state legislation that adopts the standards.

Directors, audit committees and finance teams do not "apply" the ASA directly, but they are affected by them: the standards shape what auditors will request, the evidence they expect, and the representations management must make. Understanding the standards helps preparers anticipate audit requirements and reduce friction. See the broader financial services topic hub for related obligations.

Whether a particular entity requires an audit at all is determined by other law (for example, company size thresholds, or constitution and grant requirements) — not by the ASA. Confirm an entity's audit obligation against the relevant legislation or with ASIC before assuming the standards apply.

How the standards are structured

The ASA follow the structure of the international standards and are grouped by subject matter. The series broadly covers:

Area	What it deals with
General principles and responsibilities	Overall objectives, agreeing engagement terms, documentation, fraud, laws and regulations
Risk assessment and response	Understanding the entity, identifying and assessing risks of material misstatement, materiality
Audit evidence	Obtaining sufficient appropriate evidence, sampling, estimates, related parties
Using the work of others	Reliance on internal audit, experts and other auditors
Audit conclusions and reporting	Forming an opinion and the form and content of the auditor's report

Each standard carries an "ASA" prefix and a number that corresponds to its international equivalent. The AUASB also issues standards on quality management at the firm and engagement level, and separate standards on review and assurance engagements. Always work from the current version on the AUASB Standards Portal, as standards are periodically revised and reissued.

Key obligations and the audit workflow

At a high level, an audit conducted under the ASA moves through a recognised sequence:

Acceptance and planning — confirming the auditor's independence and competence, agreeing the terms of engagement in an engagement letter, and planning the audit.
Understanding and risk assessment — understanding the entity and its environment, including internal control, and identifying where the financial report could be materially misstated.
Responding to risk — designing and performing further audit procedures (tests of controls and substantive procedures) to obtain sufficient appropriate audit evidence.
Evaluation and conclusion — evaluating the evidence, considering going concern and subsequent events, and obtaining written representations from management.
Reporting — forming and expressing an opinion in the auditor's report.

Throughout, the auditor must exercise professional scepticism and professional judgement, and document the work performed in sufficient detail that an experienced auditor could understand it. Independence requirements (drawn from the professional code of ethics as well as the Corporations Act) run across the whole engagement.

Timing, reporting and quality management

The auditor's report is the principal output. Under the ASA the report must clearly state the auditor's opinion (unqualified, qualified, adverse, or a disclaimer) and the basis for it, and address matters such as going concern and, for listed entities, key audit matters where applicable.

Timing of the audit is generally driven by the entity's reporting deadlines under the Corporations Act and, for listed entities, the ASX Listing Rules — not by the ASA themselves. Auditors should confirm the relevant lodgement deadline for each entity rather than assume a single date; verify the current statutory timeframe with ASIC where a specific deadline matters.

Firms must also operate a system of quality management covering engagement acceptance, ethics, resources and monitoring, and apply engagement-level quality management on each audit, including engagement quality reviews where required.

Common pitfalls and what to do

Assuming an audit is required when it is not — audit obligations come from other law, not the ASA. Confirm the entity's specific requirement first.
Working from a superseded standard — the AUASB revises standards regularly. Always check the effective date and pull the current version from the Standards Portal.
Confusing audit with review — a review (limited assurance) is a different engagement under different standards and gives a lower level of assurance than an audit.
Thin documentation — insufficient working papers are a frequent ASIC inspection finding; document the basis for judgements as the audit progresses.
Independence and scope gaps — engagement terms, independence threats and the scope of work should be settled in writing before fieldwork begins.

For the authoritative text, always rely on the standards as published by the AUASB. Where a figure, deadline or scope question is material, verify it against the current standard or with ASIC before acting.