About audit-security

What is audit-security?

The term audit-security applies to electronic archiving systems in Germany, concerning the compliance with requirements of commercial and fiscal law

The term was coined by Ulrich Kampffmeyer in 1992 and universally published by the VOI in a “Code of Practice“ in 1996.

Audit-security is oriented to the understanding of the audit and does not refer to single components but to complete solutions. It is an important part for the compliance of information systems.

In practice, audit-security means a forgery-proof, long-term archiving of electronic information.

According to the German Commercial Code audit-proof archiving refers to:

  1. Correctness: A uniform archiving process shall be defined.
  2. Completeness: Every piece of information available in the original shall be archived.
  3. Security of the overall process: Topics are exceptional rules and logging.
  4. Protection against changes and falsification: It shall be ensured that the digital copy is congruent to the original.
  5. Protection against loss: The digital copy shall be available for the tax authorities in readable form until the end of the retention period.
  6. Usage only by authorized users: A strictly regulated access is necessary to prevent loss and falsification.
  7. Compliance with retention periods: It shall be ensured that all archived documents are still readable in 10 years time or more.
  8. Documentation of the process: Not only invoices and business letters have to be kept, but also a protocol – who has worked on this document and when.
  9. Traceability: All activities shall be comprehensible.
  10. Verifiability: It shall be possible at any time to check the trouble-free functioning of the used archive.
Contact person
Your inPuncto Team

E-Mail: contact[at]inpuncto.com
Telephone: +49 (0) 711 66 188 500

Free Webinar
We are pleased to arrange a free webinar for you!

Contact us Today

Audit-security with inPuncto ECM software

R

Examples of the audit-security with inPuncto ECM software:

  • System-based rules for the auditing and releasing of invoices (AO) Your signature regulation with a wide variety of competences like asset/object, project, finance, etc. is maintained in a clearly traceable form in SAP™. According to the character of the invoice it takes the clear way that has been pre-defined- of course with all reminder, escalation and absence regulations that ensure the process flow. Learn more about the solution “automated audit of invoices of different receipts” 
  • Traceability (GoBD) The process “who has to be involved in which role” is controlled via SAP. The entire process of releasing/approving invoices or outgoing orders for example is logged. At any time you have full transparency about where the document is that has to be approved, which status it has and what the further processing looks like.
  • Audit-security of the archiving (GoBD) The archiving is carried out via the standard interfaces and protocols of SAP: interfaces: SAP-HTTPContentServer (also HTTPS), SAP-RFC(s), ABAP, ABAP-OO. If the data is then stored on worm-able media and optionally a crypto technique of inPuncto (e.g. biz²CryptoServer) is used, important requirements for audit-proof archiving are met.

Tested and certified!

GoBD certification

Compliance requirements and audit-security for your document-related processes with inPuncto ECM software

Supports ZUGFeRD!

ZUGFeRD format for electronic invoices

We support ZUGFeRD invoice format

Further solutions for compliance requirements & revision security

If you have any questions or would you like personal advice - please contact us:

8 + 10 =