This page describes the requirements to ensure data auditability under the CSRD framework. For more general information about data auditability in ESG reporting, check this article.
The Corporate Sustainability Reporting Directive (CSRD) imposes formal audit requirements on ESG disclosures, starting with limited assurance, and potentially moving to reasonable assurance in the future.
Audit type: Limited assurance
For fiscal years beginning 2024, companies under CSRD must include a limited assurance report issued by an accredited third party. The goal is to ensure that:
The ESG disclosures comply with the ESRS (European Sustainability Reporting Standards)
The information disclosed is free from material misstatements
Double materiality has been properly applied
All mandatory datapoints are either disclosed or properly justified if missing
What CSRD auditors verify
Structure of the report
Is it integrated in the management report?
Is it published in digital XBRL format?
Materiality process
Was a robust double materiality analysis performed?
Were stakeholders engaged and documented?
Completeness and scope
Are all material Disclosure Requirements (DRs) addressed?
Are omitted disclosures justified (e.g. non-applicable, not available)?
Data auditability
Are indicators traceable to a data source?
Are calculations consistent with ESRS methodologies?
Are attachments and justifications provided?
Governance and internal control
Are roles (Owner, Validator, PM) defined?
Is there an internal review process before submission?
📌 Failure to meet audit requirements can result in non-compliance and reputational risk.