Audit project management
Run your audit plan. Keep your evidence.
Substantively manages the audit lifecycle — planning, fieldwork, control testing, findings, reporting — while every workpaper stays in your own Microsoft 365 tenant. We store metadata. You keep custody.
No credit card. No file uploads to us — architecturally.
Your tenant
Evidence, workpapers, templates — every byte stays in your SharePoint, under your retention and your permissions.
Our database
Projects, tasks, conclusions, findings, hours. Tenant-isolated with Postgres row-level security.
The boundary
Enforced by architecture and CI — the build fails if any code path tries to handle file content.
Built for internal audit teams of one to ten
Not a generic project tool with an audit sticker — the lifecycle, registers, and evidence discipline your methodology already expects.
Phased audit lifecycle
Planning → kickoff → fieldwork → review → reporting → wrap-up, generated for every project with dates that follow your schedule.
Control testing built in
A registry your team maintains once, test tasks that record conclusions and history, and failed tests that prompt findings — mapped to the control.
Risks & issues registers
Matrix-rated risks and auto-numbered findings with management responses, rolled up across every project for the audit committee view.
SharePoint-native documents
Folders per project, templates copied on kickoff, drag-and-drop uploads — all living in your tenant, linked here by reference.
An activity trail that holds up
Append-only by database privilege, not policy. Every change, by whom, from what to what.
Time against budget
Quick daily entries, per-project and per-person rollups, and a budget bar that tells you before it's a problem.
Your next audit could start organized.
Workspace, phase plan, and SharePoint folders in under five minutes.