2 SA 330, “The Auditor’s Responses to Assessed Risks”.
User entity – An entity that uses a service organisation and whose financial statements are being audited.
3 SA 315, paragraph 11.
4 SA 315, paragraph 12.
their effect on the user entity’s internal control relevant to the audit has been obtained to provide a basis for the identification and assessment of risks of material misstatement.
service organisation are relevant to the user entity and, if so, obtain an understanding of whether the user entity has designed and implemented such controls.