Assurance and Verification 1 of 3
Assurance and Verification • Lesson 1

Assurance Standards and Frameworks

Master the comprehensive landscape of climate assurance standards, frameworks, and methodologies essential for credible third-party verification under AASB S2.

Assurance Standards and Frameworks

This lesson provides comprehensive coverage of climate assurance standards and frameworks that enable credible third-party verification of climate disclosures. We’ll explore international standards, Australian implementation, assurance levels, and the evolving landscape of climate assurance methodologies essential for AASB S2 compliance.

International Assurance Standards Landscape

Core Assurance Standards

ISAE 3000 (Revised) - General Framework

  • Scope and application: Framework for assurance engagements other than audits or reviews
  • Assurance levels: Limited vs reasonable assurance requirements and implications
  • Professional skepticism: Application of professional skepticism to climate data verification
  • Risk assessment: Identifying and assessing risks of material misstatement in climate data

ISAE 3410 - Greenhouse Gas Statements

  • GHG-specific requirements: Specialized requirements for greenhouse gas statement assurance
  • Scope and boundary: Defining organizational and operational boundaries for assurance
  • Quantification methodology: Assurance of GHG quantification methodologies and calculations
  • Disclosure requirements: Specific disclosure requirements for GHG assurance reports

Example: ISAE 3410 Application Framework

GHG Assurance Scope Definition:
Organizational Boundary:
- Legal entity consolidation approach
- Inclusion of subsidiaries >50% ownership
- Treatment of joint ventures and associates

Operational Boundary:
- Scope 1: All direct emissions from operations
- Scope 2: Purchased electricity (location and market-based)
- Scope 3: Categories 1, 4, 6, and 11 (material categories only)

Assurance Level:
- Scope 1 & 2: Reasonable assurance (detailed testing)
- Scope 3: Limited assurance (analytical procedures)
- Data quality: Assessment of completeness and accuracy

Materiality Threshold: 5% of total reported emissions
Planning Materiality: $50,000 for financial impact assessment

ISAE 3420 - Prospective Greenhouse Gas Information

  • Forward-looking data: Assurance of prospective climate information and targets
  • Scenario assumptions: Evaluation of assumptions underlying climate scenarios
  • Target credibility: Assessment of science-based target feasibility and methodology
  • Projection methodology: Review of methodologies for climate projections and forecasts

Regional and Sector-Specific Standards

Australian Assurance Framework

  • AUASB standards: Australian Auditing and Assurance Standards Board requirements
  • ASIC expectations: Australian Securities and Investments Commission guidance on assurance
  • Professional body guidance: CPA Australia and CA ANZ guidance on climate assurance
  • Industry-specific requirements: Sector-specific assurance requirements and practices

Emerging Standards and Frameworks

  • IAASB developments: International Auditing and Assurance Standards Board new standards
  • IOSCO recommendations: International Organization of Securities Commissions guidance
  • TCFD assurance: Task Force on Climate-related Financial Disclosures assurance considerations
  • EU standards: European Union sustainability assurance requirements and developments

Assurance Levels and Scope Definition

Limited vs Reasonable Assurance

Limited Assurance Characteristics

  • Assurance level: Moderate level of assurance through analytical procedures
  • Procedures performed: Primarily inquiry and analytical procedures
  • Evidence requirements: Less extensive evidence gathering and testing
  • Cost and timeline: Lower cost and faster completion timeline

Reasonable Assurance Requirements

  • Assurance level: High level of assurance through substantive testing
  • Procedures performed: Detailed testing of controls and substantive procedures
  • Evidence requirements: Extensive evidence gathering and verification
  • Cost and timeline: Higher cost and longer engagement timeline

Example: Assurance Level Decision Matrix

Scope Assessment for Manufacturing Company:
Scope 1 Emissions (250,000 tCO2e):
- Materiality: High (60% of total emissions)
- Data availability: Excellent (direct measurement)
- Stakeholder importance: Critical (regulatory compliance)
- Recommendation: Reasonable assurance

Scope 2 Emissions (100,000 tCO2e):
- Materiality: Medium (25% of total emissions)
- Data availability: Good (utility bills and certificates)
- Stakeholder importance: High (renewable energy claims)
- Recommendation: Reasonable assurance

Scope 3 Category 1 (50,000 tCO2e):
- Materiality: Medium (12% of total emissions)
- Data availability: Fair (supplier data and estimates)
- Stakeholder importance: Medium (supply chain focus)
- Recommendation: Limited assurance

Scope 3 Other Categories (15,000 tCO2e):
- Materiality: Low (3% of total emissions)
- Data availability: Poor (industry averages)
- Stakeholder importance: Low (not material)
- Recommendation: Agreed-upon procedures or no assurance

Scope Determination and Boundary Setting

Organizational Boundary Considerations

  • Control definitions: Financial control vs operational control implications for assurance
  • Subsidiary inclusion: Treatment of subsidiaries, joint ventures, and associates
  • Acquisitions and disposals: Handling of corporate transactions during reporting period
  • Data consolidation: Assurance of consolidation methodologies and calculations

Temporal Boundary Issues

  • Reporting period: Alignment of assurance period with organizational reporting
  • Baseline adjustments: Assurance of baseline recalculations and adjustments
  • Comparative data: Treatment of comparative period information
  • Cut-off procedures: Testing of transactions occurring near period end

Subject Matter Boundary

  • Metrics selection: Determining which climate metrics require assurance
  • Qualitative disclosures: Scope of assurance over narrative and qualitative information
  • Forward-looking information: Treatment of targets, commitments, and projections
  • Third-party data: Assurance scope over third-party data and information

Assurance Methodology and Procedures

Risk Assessment and Planning

Climate-Specific Risk Factors

  • Estimation uncertainty: Risks arising from climate data estimation and modeling
  • Methodology complexity: Risks from complex calculation methodologies
  • Data availability: Risks from limited data availability and quality
  • Regulatory environment: Risks from evolving regulatory and standard requirements

Materiality Assessment

  • Quantitative materiality: Setting materiality thresholds for climate data
  • Qualitative factors: Considering qualitative factors affecting materiality
  • Disaggregated materiality: Setting materiality at component or category level
  • Performance materiality: Establishing performance materiality for detailed testing

Example: Climate Assurance Risk Assessment

Risk Assessment Matrix:
High Risk Areas:
- Scope 3 emissions calculation (estimation uncertainty, data availability)
- Carbon offset accounting (additionality assessment, quality verification)
- Forward-looking targets (assumption reliability, methodology consistency)
- International operations (data collection, conversion factors)

Medium Risk Areas:
- Scope 2 market-based accounting (certificate validity, double counting)
- Baseline adjustments (methodology consistency, calculation accuracy)
- Data management systems (controls effectiveness, data integrity)
- Supplier engagement data (response rates, data quality)

Low Risk Areas:
- Scope 1 direct measurements (established processes, reliable data)
- Basic energy consumption (utility bills, standard conversion factors)
- Historical trend data (previously assured, minimal changes)
- Industry benchmark comparisons (third-party data, limited calculation)

Materiality Thresholds:
Overall materiality: 5% of total emissions (20,000 tCO2e)
Performance materiality: 75% of overall (15,000 tCO2e)
Clearly trivial threshold: 5% of overall (1,000 tCO2e)

Testing Procedures and Evidence

Substantive Testing Approaches

  • Detail testing: Testing individual transactions and data points
  • Analytical procedures: Using analytical procedures to test reasonableness
  • Recalculation: Independent recalculation of emissions and other metrics
  • Observation: Observing processes and procedures for data collection

Controls Testing

  • Design effectiveness: Testing design of controls over climate data processes
  • Operating effectiveness: Testing operating effectiveness throughout the period
  • IT controls: Testing IT general and application controls for climate systems
  • Entity-level controls: Testing entity-level controls affecting climate reporting

Evidence Evaluation

  • Source documentation: Evaluating underlying source documents and records
  • Third-party confirmations: Obtaining confirmations from external parties
  • Management representations: Obtaining appropriate management representations
  • Specialist involvement: Using specialists for technical climate matters

Quality Control and Professional Standards

Assurance Team Composition and Competency

Core Team Requirements

  • Lead assurance partner: Qualified assurance partner with climate experience
  • Climate specialists: Subject matter experts in climate science and accounting
  • Industry experts: Professionals with relevant industry experience
  • IT specialists: Experts in climate data systems and controls

Competency Framework

  • Technical knowledge: Understanding of climate science and GHG accounting
  • Assurance skills: Professional assurance skills and methodology application
  • Industry understanding: Knowledge of client industry and climate issues
  • Professional standards: Understanding of professional and ethical standards

Example: Assurance Team Structure

Large Manufacturing Client Team:
Lead Partner: Partner with 10+ years assurance experience, climate specialization
Senior Manager: Manager with climate assurance certification, manufacturing experience
Specialist 1: GHG accounting expert, PhD in environmental science
Specialist 2: Climate risk modeler, financial impact assessment expertise
IT Specialist: Information systems auditor, ESG systems experience
Industry Expert: Former manufacturing executive, sustainability background

Team Development:
- Quarterly climate update training
- Annual GHG accounting certification renewal
- Industry conference participation
- Client-specific technical briefings
- Professional development tracking

Quality Control Systems

Engagement Quality Control

  • Engagement partner responsibilities: Partner oversight and review requirements
  • Review procedures: Hot, cold, and wrap-up review procedures
  • Documentation requirements: Working paper documentation and retention
  • Quality control reviewer: Independent quality control review for listed entity clients

Firm-Wide Quality Control

  • Leadership responsibilities: Firm leadership commitment to quality
  • Ethical requirements: Independence and ethical requirements for climate assurance
  • Client acceptance: Client acceptance and continuance procedures
  • Human resources: Recruitment, development, and performance evaluation
  • Engagement performance: Policies for engagement performance and quality control
  • Monitoring: Monitoring of quality control system effectiveness

Professional Skepticism and Independence

Professional Skepticism Application

  • Questioning attitude: Maintaining questioning attitude toward climate claims
  • Critical assessment: Critically assessing evidence and management assertions
  • Corroborating evidence: Seeking corroborating evidence for significant matters
  • Investigation of inconsistencies: Following up on identified inconsistencies

Independence Considerations

  • Financial interests: Restrictions on financial interests in climate-related investments
  • Non-assurance services: Limitations on providing non-assurance climate services
  • Advocacy restrictions: Avoiding advocacy for client climate positions
  • Rotation requirements: Partner rotation requirements for climate assurance

Reporting and Communication

Assurance Report Structure and Content

Standard Report Elements

  • Title and addressee: Appropriate title and addressee identification
  • Scope and responsibilities: Clear description of scope and respective responsibilities
  • Assurance standards: Reference to applicable assurance standards
  • Summary of work performed: Description of procedures performed
  • Assurance conclusion: Clear conclusion on subject matter
  • Use restriction: Appropriate restriction on use and distribution

Climate-Specific Reporting Considerations

  • Methodology description: Description of GHG accounting methodologies
  • Boundary explanation: Explanation of organizational and operational boundaries
  • Limitation disclosure: Disclosure of any scope limitations or restrictions
  • Emphasis of matter: Emphasis of matter paragraphs for significant issues

Example: Assurance Report Extract

Independent Limited Assurance Report on Greenhouse Gas Statement

Scope
We have undertaken a limited assurance engagement in respect of [Company]'s
greenhouse gas statement for the year ended 31 December 2024, comprising:
- Scope 1 emissions: 250,000 tCO2e
- Scope 2 emissions (location-based): 120,000 tCO2e
- Scope 2 emissions (market-based): 85,000 tCO2e
- Selected Scope 3 categories: 150,000 tCO2e

Management's Responsibility
Management is responsible for the preparation of the GHG statement in accordance
with the GHG Protocol Corporate Accounting and Reporting Standard, including:
- Selection and application of appropriate accounting policies
- Maintenance of adequate records and internal controls
- Prevention and detection of fraud and error

Our Responsibility
Our responsibility is to express a limited assurance conclusion based on procedures
performed. We conducted our engagement in accordance with ISAE 3410 and ISAE 3000.

Conclusion
Based on our limited assurance procedures, nothing has come to our attention that
causes us to believe the GHG statement is not prepared, in all material respects,
in accordance with the GHG Protocol Corporate Accounting and Reporting Standard.

Management Letter and Recommendations

Improvement Opportunities

  • Control enhancements: Recommendations for improving controls over climate data
  • Process improvements: Suggestions for improving data collection and management
  • System upgrades: Technology recommendations for climate data systems
  • Methodology refinements: Suggestions for improving calculation methodologies

Communication Process

  • Draft discussion: Discussion of draft findings with management
  • Management responses: Management responses to recommendations
  • Implementation planning: Planning for implementation of recommendations
  • Follow-up procedures: Follow-up on implementation in subsequent periods

Technology Integration in Assurance

Digital Assurance Tools

  • Data analytics: Using data analytics for emissions data analysis
  • Continuous auditing: Real-time monitoring and testing of climate data
  • Blockchain verification: Using blockchain for data integrity verification
  • AI and machine learning: Applying AI for pattern recognition and anomaly detection

Remote Assurance Procedures

  • Virtual site visits: Conducting virtual facility inspections
  • Digital document review: Electronic review of supporting documentation
  • Video conferencing: Remote interviews and process walkthroughs
  • Drone technology: Using drones for facility and equipment inspection

Regulatory Developments

Enhanced Assurance Requirements

  • Mandatory assurance: Trends toward mandatory climate assurance requirements
  • Assurance level increases: Evolution from limited to reasonable assurance
  • Scope expansion: Expanding assurance scope to include more climate metrics
  • Real-time reporting: Movement toward real-time climate data assurance

International Harmonization

  • Global standards: Development of globally consistent climate assurance standards
  • Cross-border recognition: Mutual recognition of assurance reports across jurisdictions
  • Standard convergence: Convergence of different climate assurance frameworks
  • Best practice sharing: International sharing of climate assurance best practices

Summary

Mastering climate assurance standards and frameworks is essential for providing credible verification of climate disclosures:

  • International standards provide the foundation for consistent, high-quality climate assurance
  • Assurance levels must be appropriately matched to materiality and stakeholder needs
  • Methodology rigor ensures reliable and repeatable assurance procedures
  • Quality control maintains professional standards and public confidence
  • Reporting clarity communicates assurance results effectively to stakeholders
  • Future readiness prepares for evolving assurance requirements and technologies

Professional climate assurance builds stakeholder trust and supports the credibility of organizational climate commitments and performance.

Key Takeaways

International standards provide comprehensive framework for climate assurance globally ✅ Assurance levels must be matched to risk, materiality, and stakeholder requirements ✅ Scope definition requires careful boundary setting and subject matter selection ✅ Risk assessment identifies climate-specific risks requiring focused attention ✅ Quality control ensures professional standards and engagement quality ✅ Professional skepticism maintains independence and critical assessment ✅ Clear reporting communicates assurance conclusions effectively to users

Assurance Framework Selection

Subject MatterRecommended StandardAssurance LevelKey Considerations
GHG EmissionsISAE 3410Reasonable/LimitedMateriality, data quality
Climate TargetsISAE 3420LimitedAssumption reliability
Climate RisksISAE 3000LimitedMethodology complexity
Narrative DisclosureISAE 3000Agreed-upon proceduresScope definition

Quality Indicators for Climate Assurance

High Quality Engagement:

  • Clear scope and boundary definition
  • Appropriate assurance level selection
  • Robust risk assessment and response
  • Qualified and experienced team
  • Comprehensive testing procedures
  • Clear and useful reporting

Red Flags:

  • Unclear or inappropriate scope
  • Insufficient specialist involvement
  • Limited testing of key estimates
  • Poor documentation quality
  • Qualified or modified conclusions
  • Lack of improvement recommendations

Practical Exercise

Assurance Planning Project: Develop comprehensive assurance plan:

  1. Define assurance scope including boundaries, subject matter, and assurance level
  2. Assess climate-specific risks and develop appropriate responses
  3. Plan testing procedures for different types of climate data and disclosures
  4. Design quality control procedures for engagement quality management
  5. Develop reporting strategy including report structure and communication plan
  6. Consider emerging trends and their impact on assurance approach
  7. Create improvement roadmap for enhancing climate assurance capabilities

Focus on building assurance capabilities that provide credible verification while supporting organizational learning and improvement in climate reporting quality.

Ready to Apply Your Knowledge?

Put your learning into practice with ClimateLabs' sustainability reporting platform and expert guidance.

Try ClimateLabs Platform Course Overview