Review a Report (Auditor)

As an Auditor, you'll receive a notification when a report is shared for you to review.

These notifications include the organization's name and the report's title.

As an auditor, with access to Regulait's Reports system (marked with an arrow below), we first select an organization to access its Reports.

Here we can see an organization, PrimeTech Solutions, its Reports count (6), and the last date its Reports were modified on.

By selecting this Organization, we see a list of its Reports by Name, Status, Last updated date, and the Framework reported for.

Inside a Report

We'll use the first Report on the list, "Test", as an example of reviewing a Report.

Start by selecting the Report.

After opening this report, you can scroll through the entire list of controls, use the search bar to find a specific control, or apply filters (explained later in this guide).

Edit Report Information

In order to Publish a Report review, an Auditor must fill the report's information.

On the top of the Report review page, we see two blue buttons (circled below).

We also see a gray 'Complete' button, this will turn blue and become available after every control in the Report's Framework is reviewed.

Opting for 'Edit Report Information' opens a window where you can customize report details for improved identification and organization (see below).

Once you've edited a report's information, the 'Edit Information' button transforms into a 'Preview Report' button. Clicking on it will display a detailed report, including the information you entered, and the Findings (NCR).

Reject Report

Clicking 'Reject Report' automatically rejects the report, and the organization receives notification of the rejection.

Add an auditor

In case we need to add an Auditor who was not assigned to a Report, we just need to click on 'Information' (marked with an arrow below), and click on the team member add button (circled below).

An 'Add Auditors' window opens, allowing us to easily add and delete Auditors from the Report.

Reviewing a Report

As mentioned earlier, we'll begin by selecting a control for review.

In this instance, Control 13405 has been chosen for our example.

Selecting it bring us to the Evidence tab in a Control page, where we can view all files uploaded as Evidences for this control.

Hovering over the Control's name open a small window with a brief summary of it.

For a Control's full description click on the Description tab (marked with an arrow below).

To examine an Evidence, click the download button next to an evidence's name (circled below).

After finishing reviewing a Control's Evidences, click on the toggle reviewed button marked with an arrow below.

Upon returning to the Controls list, we can filter the Controls by Reviewed and Unreviewed (see below).

Completing a Report

After all Evidences have been reviewed, the 'Complete' button is now blue, and can be used (marked with an arrow below).

Saying that the Report was flawless, clicking it without adding any NCRs, will mark it as Complete for the Organization members (in the main site's Report page).

Publishing a Report

The key difference between 'Publish' and 'Complete' is that if there are any added NCRs, the report cannot be marked as 'Complete.' This is because there are evidences that still need attention and resolution.

After all Evidences have been reviewed, If any NCR's were added, the 'Publish' button is now blue, and can be used (marked with an arrow below).

To return to the Reports Guide hub, click here.

To return to the main guide hub, click here.