Audit & assurance

Every tonne, traceable to a transaction

CSRD requires limited assurance from FY2024 and reasonable assurance from FY2028. UK SRS will follow. The days of unevidenced carbon numbers are over. neoeco is built from the ground up to survive statutory audit — every line, every factor, every reviewer, every change.

Start free trial Talk to an accountant

How it works

Five assurance pillars, built in by default

Transaction-level lineage

Every emission links to a GL posting: supplier, amount, date, account, cost centre, factor, reviewer, approval timestamp.

Immutable override history

Every classification change is logged with the reviewer's identity, reason, before / after, and timestamp. Nothing is silently edited.

Role-based sign-off

Segregation of duties built in. Classify, review, and approve are separable permissions. Approvals require named reviewers.

Period locking

Once a reporting period is locked, the figures are immutable. Restatements create new versions with full audit evidence.

Assurance evidence pack

One-click export for the auditor: methodology memo, emission-factor library with vintages, change log, reconciliation to GL, completeness tests.

What your auditor gets

The assurance evidence pack

One export, everything the auditor needs. Built with ISAE 3000 (Revised) and ISAE 3410 (GHG-specific) in mind. Reviewed by practising chartered accountants on our team before release.

  • Full transaction detail with supplier, amount, date, GL account, cost centre
  • Emission factor source, vintage, and GWP assumptions per line
  • Reviewer identity, timestamp, and classification rationale
  • Override log with before / after values and justification
  • Methodology memo — scope boundary, consolidation, Scope 2 approach, Scope 3 category screening
  • Reconciliation to the trial balance, by entity and cost centre
  • Completeness controls — coverage by supplier, by period, by category
  • Restatement log for prior-period adjustments with impact

Security

Enterprise-grade, by default

SOC 2 Type II

Independently audited security, availability, and confidentiality controls.

GDPR compliant

Sub-processor register, DPA on request, data residency in EU / UK options.

Read-only ledger access

We never modify, create, or delete records in your accounting system.

Role-based access

SCIM provisioning, SSO via SAML / OIDC, granular workspace permissions.

Pass your next assurance

An audit-ready inventory, every reporting cycle

Talk to the chartered accountants who built neoeco. We'll walk through how the audit trail maps to your auditor's testing plan.

Start free trialTalk to sales