Agreed Upon

Your source for all types of third-party engagements.

Auditwerx Triangle Logo

Get started today

Auditwerx Check Mark Large

What is an Agreed-Upon Procedures (AUP) engagement? ​

An AUP engagement performed by an independent third party focuses on defined agreed-upon procedures on a specific subject matter. The subject matter of an AUP engagement may take many different forms and focus on a point in time or cover a period of time. The specified parties to the engagement take responsibility for the sufficiency of the agreed-upon procedures for their purposes.

Request a Consultation

This site is protected by reCAPTCHA and the Google Privacy Policy and Terms of Service apply.

The Agreed-Upon Procedures Report

The report delivered at the end of the engagement, the “Independent Accountant’s Report on Applying Agreed-Upon Procedures”, includes all standard language required by the American Institute of Certified Public Accountants (AICPA) covered under the attestation standards, to include the following:

  • A detailed description of the subject matter and an outline of the procedures agreed-upon by both parties;
  • A detailed description of the procedures performed; and
  • The results of testing.

Please note: Due to the confidential nature of the report it is considered a limited distribution report to those specified parties to the engagement.

Is an Agreed Upon Procedures report right for you?

If you answer yes to any of the following, then an AUP is your starting point on your path to compliance:

Is your team required to have an independent third party perform procedures that relate to specific duties/functions/operations or risk areas for your company due to contractual obligations or third party requests? Typically, these procedures have definite or distinct requirements which are limited in scope.

Do you need an internal controls structure review in order to determine the strength of and validate the implementation of the controls to meet any regulatory requirements?

Are you seeking to grow through mergers or acquisitions and have potential targets?

Is the industry you are in highly regulated and you would benefit from compliance reviews focused on your current regulatory environment or the environment you are moving towards such as governmental, financial and healthcare arenas?

Auditwerx Stamp Logo


Whether you need Auditwerx to perform a HIPAA risk assessment, a HITRUST assessment, agreed upon procedures, or privacy assessment, you can count on us to walk you through the process, so you’ll understand how we’ll perform the assessment and what information we’ll need to complete the final report. Our readiness assessments and formal reports can help your organization succeed by guiding you in developing reliable internal control processes. 

Auditwerx Triangle Logo

Get Started

This site is protected by reCAPTCHA and the Google Privacy Policy and Terms of Service apply.

Auditwerx Triangle Logo

Get Started