Accountant Document Compliance: Verification Guide
Document compliance guide for accountants and auditors. AML obligations, ISA standards, supporting documents checklist, and MTD requirements for UK firms.
Summarize this article with
ChatGPT
Claude
Perplexity
Gemini
GrokAccountants and auditors in the United Kingdom bear direct legal responsibility for verifying the authenticity and completeness of supporting documents. Under the Money Laundering Regulations 2022 (MLR 2022), accounting professionals are designated as "relevant persons" subject to anti-money laundering (AML) obligations, including customer due diligence, suspicious activity reporting, and document retention. Combined with ISA (UK) auditing standards and Making Tax Digital (MTD) requirements, the compliance framework for document verification is both broad and enforceable.
This guide covers the regulatory obligations, the documents that require verification, the applicable auditing standards, and the practical tools available to streamline compliance for accounting and audit firms.
Regulatory Framework: AML and Document Obligations for Accountants
UK accountants and auditors operate under a layered regulatory framework. The Financial Reporting Council (FRC) sets auditing and ethical standards. The professional bodies -- ICAEW, ACCA, and ICAS -- act as supervisory authorities for AML compliance. HMRC supervises accountants who are not members of a professional body.
The Money Laundering, Terrorist Financing and Transfer of Funds (Information on the Payer) Regulations 2022 require accountants to apply customer due diligence measures, verify the identity of clients using reliable and independent sources, and maintain records for at least five years after the business relationship ends (UK Government, MLR 2022).
The core obligations include:
- Client identification and verification: verifying the identity of individuals using government-issued photo ID and proof of address, and verifying legal entities using Companies House records, certificates of incorporation, and beneficial ownership declarations.
- Risk assessment: conducting a firm-wide risk assessment and applying enhanced due diligence to higher-risk clients, politically exposed persons (PEPs), and clients in high-risk jurisdictions.
- Suspicious Activity Reports (SARs): filing reports with the National Crime Agency (NCA) when there are grounds to suspect money laundering or terrorist financing.
- Record keeping: retaining copies of identification documents, transaction records, and due diligence evidence for five years after the end of the business relationship.
The FRC's Ethical Standard and ISA (UK) 250 require auditors to consider laws and regulations throughout the audit, including those related to fraud and money laundering (FRC, ISA (UK) 250). Non-compliance can result in regulatory sanctions from the professional body, including fines, suspension, or removal from the register.
ICAEW publishes detailed AML guidance for its members, covering practical procedures for client onboarding, ongoing monitoring, and record keeping. The guidance specifies acceptable forms of identification, verification methods, and the standard of evidence required (ICAEW, AML Guidance).
Supporting Documents Checklist: Purpose, Retention, and Format
The volume and variety of documents that accounting and audit firms must verify is substantial. Each document serves a specific compliance or evidential purpose, and retention requirements vary by regulation.
| Document | Purpose | Retention Period | Accepted Format |
|---|---|---|---|
| Purchase and sales invoices | Accounting entries, VAT recovery, audit evidence | 6 years (Companies Act 2006, s.388) | Paper, PDF, EDI, structured XML |
| Bank statements | Bank reconciliation, cash flow verification | 6 years | PDF, paper, OFX |
| Trial balance and general ledger | Year-end review, consistency checks | 6 years | Accounting software export |
| Client photo ID (passport, driving licence) | KYC/AML identification | 5 years after relationship ends (MLR 2022) | Certified copy |
| Proof of address (utility bill, bank statement) | KYC/AML verification | 5 years after relationship ends | Certified copy, original |
| Companies House confirmation statement | Company identification and verification | 5 years after relationship ends | PDF, Companies House extract |
| Payroll records (P60, P45, payslips) | PAYE compliance, audit trail | 6 years | PDF, paper |
| VAT returns and working papers | HMRC compliance, VAT reconciliation | 6 years | Digital (MTD-compliant) |
| Expense receipts and claims | Deductibility of expenses, VAT input | 6 years | PDF, scan, photo |
| Contracts and engagement letters | Scope of work, liability allocation | Duration of contract + 6 years | Original or copy |
Under Making Tax Digital, businesses above the VAT threshold must maintain digital records and submit VAT returns using MTD-compatible software. HMRC requires that all VAT records be stored digitally, with a clear digital link between the source data and the submitted return, eliminating manual transcription (HMRC, Making Tax Digital). For accounting firms, this means that the supporting documents underpinning VAT calculations must be stored, linked, and retrievable in digital form.
Auditing Standards for Document Verification
UK auditors apply International Standards on Auditing (UK) -- the UK-adapted versions of ISA standards issued by the FRC. Several standards directly govern how auditors verify supporting documents.
ISA (UK) 500: Audit Evidence
ISA (UK) 500 establishes the framework for obtaining sufficient appropriate audit evidence. The standard requires auditors to design and perform procedures to gather evidence that supports the financial statements. Key procedures include:
- Inspection of records and documents: examining invoices, contracts, bank statements, board minutes, and correspondence for authenticity, completeness, and accuracy.
- External confirmation: obtaining direct written confirmation from third parties, such as bank balance confirmations, debtor circularisations, and solicitor letters.
- Recalculation: independently verifying arithmetic accuracy of calculations in the financial statements and supporting schedules.
- Analytical procedures: comparing financial data with prior periods, budgets, and industry benchmarks to identify anomalies that require further investigation.
ISA (UK) 240: The Auditor's Responsibilities Relating to Fraud
ISA (UK) 240 requires auditors to maintain professional scepticism and consider the risk of material misstatement due to fraud throughout the audit. This includes evaluating whether documents may have been altered, fabricated, or omitted. The standard mandates specific procedures when fraud risk is identified, including examining journal entries for unusual characteristics, reviewing accounting estimates for bias, and evaluating the business rationale of significant transactions.
ISA (UK) 230: Audit Documentation
Every verification procedure performed must be documented in the audit file. ISA (UK) 230 requires that documentation be sufficient to enable an experienced auditor with no prior connection to the audit to understand the nature, timing, and extent of procedures performed, the evidence obtained, and the conclusions reached.
Electronic Invoicing and Digital Transformation
The UK is not subject to the EU's mandatory e-invoicing directives, but digital transformation is reshaping document management for UK accounting firms through several channels.
Making Tax Digital (MTD)
MTD has been progressively expanding since 2019. From April 2026, MTD for Income Tax Self Assessment (MTD for ITSA) requires sole traders and landlords with qualifying income above GBP 50,000 to maintain digital records and submit quarterly updates to HMRC. This extends the digital record-keeping obligation beyond VAT to the broader client base of most accounting firms.
Structured Data and E-Invoicing Adoption
While not mandated, structured e-invoicing formats (Peppol BIS, UBL) are gaining traction in the UK, particularly for public sector procurement and large corporate supply chains. For accounting firms, the shift from unstructured PDFs to structured data means:
- Automated extraction: structured invoices eliminate the need for OCR, as data fields are machine-readable by design.
- Built-in validation: structured formats enforce mandatory fields (supplier VAT number, line item detail, tax breakdown), reducing the incidence of incomplete documents.
- Streamlined reconciliation: machine-readable invoices can be matched automatically against purchase orders, delivery notes, and bank payments.
The Companies Act 2006 requires companies to keep adequate accounting records that are sufficient to show and explain the company's transactions and to disclose with reasonable accuracy the financial position of the company (UK Parliament, Companies Act 2006, s.386). Digital record-keeping that meets these requirements benefits from the auditability and traceability that structured formats provide.
Automating Document Verification for Accounting Firms
Manual document verification does not scale. A mid-sized UK accounting firm managing 200 clients processes between 4,000 and 8,000 documents per month during peak periods. At 3 to 5 minutes per document, this represents 200 to 670 hours of verification labour per month.
What AI Automates
AI-powered document verification addresses the highest-volume, most repetitive verification tasks:
- Structured extraction: OCR and data extraction from invoices, receipts, bank statements, and payroll documents -- capturing amounts, dates, VAT numbers, company registration numbers, and mandatory mentions.
- Cross-validation: automated matching of invoices to bank payments, VAT consistency checks (net + VAT = gross), sequential numbering validation, and supplier verification against Companies House records.
- Regulatory compliance: verification of AML documentation completeness, checking ID validity periods, and flagging expired documents that require renewal.
- Anomaly detection: identifying duplicate invoices, unusual amounts, date inconsistencies, and unrecognised suppliers.
Measurable Outcomes
| Metric | Manual Processing | Automated Processing | Improvement |
|---|---|---|---|
| Average time per invoice | 3 to 5 minutes | 15 to 30 seconds | 85 to 90% |
| Error rate | 5 to 8% | 0.5 to 1% | 8x reduction |
| Monthly close timeline | 12 to 18 days | 5 to 8 days | 50 to 60% |
| Cost per document processed | GBP 2.50 to 4.00 | GBP 0.30 to 0.60 | 75 to 85% |
For a detailed analysis of automation features designed for accounting firms, see our guide on automating document verification in accounting firms.
Integration Without Disruption
Automated verification integrates with existing practice management and accounting software through APIs. The firm retains its current tools and adds an automated verification layer upstream of data entry. Documents are checked on receipt, anomalies are flagged, and staff intervene only on exceptions where professional judgement is required.
Solutions such as CheckFile.ai connect to the software accounting firms already use, creating a continuous workflow from document receipt through verification to posting. To explore pricing for accounting firms or learn about solutions for finance and leasing, visit our dedicated pages.
For further reading, see A Sector Guide and Automate Document Checks.
Frequently Asked Questions
Are UK accountants legally required to verify client identity documents?
Yes. Under the Money Laundering Regulations 2022, accountants are classified as "relevant persons" and must apply customer due diligence measures. This includes verifying client identity using reliable, independent sources before establishing a business relationship. Professional bodies such as ICAEW, ACCA, and ICAS act as AML supervisory authorities and can take disciplinary action for non-compliance.
How long must accounting firms retain supporting documents?
The Companies Act 2006 requires accounting records to be kept for 6 years from the end of the financial year they relate to. AML records (identity verification documents, transaction records) must be retained for 5 years after the end of the business relationship under MLR 2022. VAT records must be kept for 6 years.
Does Making Tax Digital replace the need for document verification?
No. MTD mandates digital record-keeping and digital submission of tax returns, but it does not verify the accuracy or authenticity of the underlying documents. Accounting firms must still verify that invoices, receipts, and other supporting documents are genuine, complete, and consistent with the submitted returns.
What happens if an audit file lacks sufficient documentation?
The FRC can take regulatory action against auditors whose files do not meet the documentation requirements of ISA (UK) 230. Insufficient documentation undermines the evidential basis for the audit opinion and can result in sanctions ranging from fines to removal from the audit register. In recent FRC enforcement cases, documentation failures have been among the most common findings.
Document compliance is a core obligation for accountants and auditors operating in the UK. To structure your verification process and explore solutions tailored to accounting firms, contact our team. For a broader view of document verification requirements across industries, consult our industry verification guide.