Canonical Topic Guide — Asset Auditing

Asset auditing — the complete operations guide

Asset auditing is the systematic verification that every physical asset in your register actually exists, is where it should be, is in the condition recorded, and is assigned to the right person — giving organisations defensible control over their asset estate.

Used by healthcare, education, non-profit, and facilities operations teams · No credit card required

Definition

What is asset auditing?

Asset auditing is the systematic process of physically verifying that every asset in an organisation's register exists, is in its recorded location, is in the described condition, and is properly assigned — reconciling the physical asset estate against the documentary record.

Asset registers drift from reality over time. Equipment is moved without updating location records. Assets are disposed of informally without being deregistered. New assets are acquired and put into service before being formally registered. Staff leave and take custody of equipment that is never reassigned. Over time, the gap between the documented asset estate and the physical asset estate widens — until an audit reveals that 8% of assets are unlocatable, 5% are present but unregistered, and 3% have incorrect location records.

Asset auditing closes this gap. Done well, it produces a verified, accurate asset register that organisations can rely on for financial reporting, insurance scheduling, capital planning, maintenance programme integrity, and regulatory compliance. Done infrequently or informally, it produces a snapshot that is already outdated before the audit report is filed.

What systematic asset auditing solves

  • Ghost assets — assets carried on the register that no longer exist, inflating asset values and insurance premiums
  • Unregistered assets — physical equipment that has no record, creating maintenance, insurance, and compliance blind spots
  • Location drift — assets in the wrong location, making them unfindable for maintenance, audits, and operational use
  • Assignment gaps — assets unassigned or assigned to departed staff, creating accountability voids
  • Compliance exposure — regulated assets without verified documentation, creating regulatory risk
  • Capital planning errors — replacement planning based on inaccurate asset age and condition data
  • Maintenance programme gaps — PM rules configured for registered assets but not for unregistered equipment in actual use

Glossary

Asset Audit
Formal, documented verification of physical assets against register records — with discrepancy logging, resolution workflow, and sign-off.
Fixed Asset Register (FAR)
The authoritative record of every fixed asset — acquisition cost, depreciation, location, condition, and assignment.
Ghost Asset
An asset recorded in the register that no longer physically exists — inflating asset values, insurance costs, and maintenance schedules.
Audit Trail
Immutable chronological record of every event in an asset's history — the evidence of governance and custody chain.
Discrepancy
Any difference between the registered asset record and the physical audit finding — location, condition, assignment, or existence.
Chain of Custody
The documented sequence of asset custody transfers — who held the asset and when, creating accountability across the asset's lifecycle.
Reconciliation
The process of comparing the physical audit findings against the register and resolving all identified discrepancies to restore register accuracy.
Audit types

Four types of asset audits

Different audit objectives require different verification approaches. Understanding audit types allows organisations to design efficient, targeted audit programmes.

Physical Inventory Audit

Comprehensive existence & location verification

The most fundamental audit type — auditors physically locate every asset in scope, scan or record its identification tag, confirm it matches the register record, verify its location against the registered location, and confirm its condition grade. Physical inventory audits are the most labour-intensive but produce the most comprehensive register verification. They are typically conducted annually for high-value or regulated asset categories and biannually or every 3 years for general fixed assets.

Examples

  • Annual biomedical equipment verification in healthcare
  • Annual IT equipment audit in schools and universities
  • Biannual facilities equipment audit across office portfolio
  • Post-acquisition asset verification when inheriting a new site

Best for: Full register verification and ghost asset elimination

Location & Custody Audit

Verification of current asset locations and assignments

A location audit verifies that assets are physically present in their registered locations and assigned to the correct custodians. Location audits are particularly important for portable, high-value, or frequently moved assets — laptops, medical devices, laboratory equipment, AV equipment. They can be conducted more frequently than full inventory audits because they focus on location and assignment verification rather than comprehensive physical inspection, making them faster to execute with fewer resources.

Examples

  • Quarterly laptop location audit across departments
  • Post-semester equipment location check in universities
  • Staff departure asset verification — confirm all assigned assets returned
  • Site relocation verification — confirm all assets transferred correctly

Best for: Portable and high-value assets subject to frequent movement

Compliance & Documentation Audit

Verification of regulatory certifications and document currency

A compliance audit verifies that assets meet required regulatory standards — certifications are current, inspection records are complete, mandatory documentation is on file, and asset-specific compliance requirements (calibration certificates, pressure test records, electrical test certificates) have not expired. Compliance audits are mandatory in regulated industries and may trigger immediate action (taking an asset out of service) when expired documentation is discovered. They are often combined with physical inventory audits for efficiency.

Examples

  • Annual medical device compliance audit — calibration and service records
  • Pressure vessel inspection certificate verification
  • Lifting equipment LOLER documentation audit
  • HVAC F-gas certification and leak check record audit

Best for: Regulated assets with mandatory documentation requirements

Condition & Value Audit

Assessment of physical condition and book value accuracy

A condition audit assesses the physical condition of assets against their registered condition grade and book value. It identifies assets whose actual condition is significantly better or worse than recorded — which may affect depreciation schedules, maintenance priority, and replacement planning. Condition audits are particularly important at financial year-end, during insurance schedule reviews, and when preparing capital replacement budgets. They require assessors with technical knowledge to accurately grade asset condition against a defined condition scale.

Examples

  • Pre-year-end condition review to support depreciation calculations
  • Insurance schedule review — verify asset values reflect current condition
  • Capital planning audit — identify assets approaching end of useful life
  • Post-incident condition assessment after flood, fire, or impact damage

Best for: Financial reporting accuracy and capital planning data quality

Audit lifecycle

How asset auditing works — the complete audit lifecycle

From audit planning through physical verification to discrepancy resolution and formal sign-off — this is the complete audit lifecycle that produces defensible asset register accuracy.

01

Audit Scope Definition & Planning

The audit begins with scope definition: which assets, which locations, and which verification criteria will be covered. A partial-scope audit (e.g., IT equipment only, or Building B only) is often more practical than a full-portfolio audit and allows thorough verification within available resources. The audit team is assembled, roles are assigned, verification tools are prepared (mobile devices, barcode scanners, audit checklists), and the audit register is extracted from the CMMS — the authoritative list of assets in scope with their registered attributes.

Outputs

Scope definedAudit team assignedRegister extractedVerification tools prepared
02

Asset Register Extraction & Preparation

A complete asset list is exported from the CMMS for all assets in scope — including asset ID, description, registered location, assigned custodian, serial number, asset tag number, last verified date, and condition grade. This list is organised by location (verifying room by room or area by area is more efficient than random order) and distributed to the audit team. The extraction defines what the audit expects to find — every asset on the list must be physically located and verified.

Outputs

Asset list by locationRegistered attributes extractedAudit checklist distributed
03

Physical Verification

Auditors physically walk the asset locations, systematically verifying each registered asset. Each asset is physically located, its identification tag (barcode, RFID, or serial plate) is scanned or recorded, and the physical attributes are compared against the register record: Is the asset present? Is it in the registered location? Does the serial/tag number match? What is the physical condition? Is it assigned to the correct person? Each verification result is recorded: Confirmed, Not Found (not in registered location after search), Location Discrepancy (found in a different location), Condition Discrepancy, or Assignment Discrepancy.

Outputs

All assets physically checkedVerification status recorded per assetDiscrepancies flagged
04

Unregistered Asset Discovery

During physical verification, auditors also look for assets that are physically present in the area but not on the audit register — 'found assets' or 'unregistered assets.' These are documented with their physical description, location, condition, and assigned custodian. Unregistered assets are surprisingly common in organisations that have grown through acquisition, decentralised procurement, or informal equipment transfers. Their discovery creates a register addition task — each unregistered asset needs to be formally added to the CMMS with its acquisition details, assigned custodian, and appropriate PM rules.

Outputs

Unregistered assets documentedFound asset descriptions capturedRegister addition queue created
05

Discrepancy Investigation

All discrepancies identified during physical verification are formally investigated before being finalised. Most 'not found' assets are resolved through more thorough search: the asset may be in the area but overlooked, temporarily moved to another location for maintenance or use, or stored differently than expected. Assets that cannot be located after thorough search are confirmed as missing and escalated for investigation: possible theft, informal disposal, or undocumented transfer. Condition and location discrepancies are assessed: are they significant enough to require register update, or within acceptable tolerance?

Outputs

Not-found assets investigatedMissing assets escalatedDiscrepancy severity assessed
06

Discrepancy Resolution & Register Update

Resolved discrepancies are actioned in the CMMS: location records are updated for assets found in different locations; unregistered assets are added to the register; confirmed missing assets are written off through the formal disposal process (not simply deleted — the write-off record must document the investigation outcome); condition grades are updated for assets with significant condition discrepancies; assignment records are corrected. Each resolution action is documented with evidence — who made the change, when, and what the resolution finding was.

Outputs

Register updatedNew assets registeredMissing assets written offResolutions documented
07

Audit Report & Sign-off

A formal audit report is prepared documenting: audit scope and period, total assets verified, verification rate (% of register audited), discrepancies found by type, resolution status, outstanding unresolved items, and register accuracy before and after the audit. The report is reviewed and formally signed off by the authorised manager — the sign-off creates the formal governance record that the audit occurred, was properly conducted, and its findings were reviewed. The audit report and all supporting verification records are archived as permanent governance documentation.

Outputs

Audit report completedVerification rate calculatedDiscrepancy summary documentedFormal sign-off obtained
08

Continuous Verification Between Audits

Formal audits provide point-in-time verification — but register accuracy must be maintained between audits. Continuous verification practices include: capturing custody transfers immediately when assets change hands; recording location changes when assets are moved; conducting targeted location audits when staff depart or areas are reorganised; running register exception reports (assets not verified in over 12 months, assets with no location record, unassigned assets) to proactively identify accuracy gaps before the next formal audit. Organisations that practice continuous verification find that formal audit discrepancy rates decline over successive audit cycles.

Outputs

Custody transfers captured in real timeException reports monitoredRegister accuracy maintained between cycles
Real-world workflows

How asset auditing operates across industries

Audit requirements, frequency, and consequences vary significantly by industry. Here is how systematic asset auditing works in four operational contexts.

HealthcareAnnual biomedical equipment audit + compliance verification
A district general hospital's Biomedical Engineering department is responsible for 720 pieces of medical equipment across 24 clinical wards and departments. The annual biomedical asset audit — required for HTMS accreditation — must verify existence, location, condition, and PM compliance for every device. The audit is planned in February for a March execution. UniAsset generates the audit register: 720 assets organised by ward and device type. The biomedical team of 3 technicians conducts the audit over 8 working days — scanning each device's asset tag, verifying its location against the register, checking PM due dates, and recording condition grades. On Day 4, Ward 7B reveals a discrepancy: one ventilator registered to Ward 7B is not present. Investigation: it was moved to the respiratory HDU 6 months earlier for a complex patient and never formally transferred back. The register location is updated. Also discovered: an infusion pump in the equipment store that is not in the register — acquired directly by a department head without going through biomedical engineering. It is registered, assigned a PM rule, and its absent maintenance history is documented. Audit summary: 720 assets, 718 confirmed, 2 location discrepancies resolved, 1 unregistered asset found and added. Zero missing assets after investigation. The audit report is filed with the accreditation body, providing the required evidence of annual verification. PM compliance: 97.2% for the audit period.

Operational outcomes

  • 720 assets audited in 8 days — 99.7% register accuracy after discrepancy resolution
  • Unregistered infusion pump found, registered, and PM rule assigned — previously had no maintenance history
  • Audit evidence filed with accreditation body — regulatory requirement met with documented proof
EducationAnnual IT and AV equipment audit + staff departure checks
A university campus manages approximately 4,200 IT assets and 380 AV equipment items across 6 faculties and 42 buildings. The IT Services team conducts an annual physical audit each July, timed to the end of the academic year when most staff are on campus. The university uses a tiered audit approach: a full physical inventory for high-value items (laptops, specialist research equipment, projection systems) and a location spot-check for lower-value IT peripherals. IT Services exports the audit register from UniAsset by building, organised by faculty. During the audit, a significant pattern emerges: 47 laptops registered to Faculty of Engineering are present but in a different building — they were issued to students for project work in the Faculty of Business facility and never returned to their registered location. The student loan records confirm the transfers; the UniAsset location records are updated to the Faculty of Business facility. More seriously: 12 laptops registered to two members of staff who left the university in February cannot be located. UniAsset shows they were issued to those staff members on their date of issue but have no return record. The IT Services Manager escalates to HR and IT Security — a post-departure clearance procedure exists but was not followed for these individuals. The laptops are reported as missing and written off.

Operational outcomes

  • 47 laptop location discrepancies resolved — traced to student project loan transfers without register update
  • 12 missing laptops identified — escalated to HR/Security; post-departure procedure failure documented
  • Audit findings drove process improvement: laptop return verification added to HR departure checklist
Non-profit / CharityFunder-mandated asset audit + grant compliance verification
A social care charity manages 180 assets purchased through three government grants — including specialist therapeutic equipment, adapted vehicles, and IT infrastructure. As a condition of the grants, the charity is required to conduct annual physical audits confirming that grant-funded assets are in service at the registered locations and being used for the specified purposes. The finance director manages the audit directly, supported by the facilities coordinator. UniAsset exports the grant-funded asset register — each asset tagged with its funding source (Grant A, B, or C) and the stated usage purpose. The audit verifies: physical existence, location at funded service address, condition consistent with active use (not in storage), and that the custodian is a current staff member. Two assets require investigation: an adapted vehicle registered to Service Site A is physically at Site C — the vehicle was temporarily transferred for a project 4 months ago and never formally relocated in the register. The transfer is documented and the register updated. A specialist piece of therapeutic equipment is in a storage room rather than in active service — the therapist who used it left 6 months ago and the equipment has not been reassigned. This would fail a funder's audit. The equipment is reassigned to the incoming therapist and returned to the therapy room. The audit report is submitted to the funders — confirming 100% of grant-funded assets are verified, in service, and assigned to current staff.

Operational outcomes

  • All 180 grant-funded assets verified — funder reporting requirement met with documented evidence
  • Storage equipment discovered and reassigned before funder audit — avoided potential grant compliance failure
  • Vehicle transfer formally documented — corrected a 4-month register discrepancy before external audit
ManufacturingAnnual fixed asset audit for financial reporting
A precision components manufacturer carries 1,140 fixed assets on its books — machine tools, jigs, inspection equipment, factory infrastructure, and IT. The financial controller requires an annual physical asset audit to support the fixed asset note in the statutory accounts — confirming that assets carried on the balance sheet physically exist in working condition. The audit is scheduled for the last week of November, before year-end on December 31. The maintenance coordinator leads the physical verification; the financial controller reconciles the findings against the nominal ledger. The audit reveals 14 ghost assets — equipment retired informally over the past 5 years that was never formally written off. Their combined net book value is £47,000 on the balance sheet. Correctly, they are written off through the formal disposal process before year-end — reducing fixed asset values and triggering a depreciation adjustment. Three additional assets are found in the stores area that are not on the register — tooling purchased through petty cash and never formally capitalised. The audit also identifies 4 machine tools in poor condition that are registered at a condition grade of 'Good'. Their condition grades are updated to 'Poor', triggering a review of their remaining useful life estimates for depreciation purposes and flagging them as capital replacement candidates in the following year's budget.

Operational outcomes

  • 14 ghost assets identified — £47,000 removed from balance sheet before year-end; financial statements accurate
  • 3 unregistered assets added — previously uncapitalised tooling now on the register with correct depreciation
  • 4 condition grade updates — depreciation schedules corrected, capital replacement budget updated accordingly
System architecture

Key components of an asset auditing system

A systematic asset auditing capability is built from interconnected data and process components — each one contributing to the accuracy, defensibility, and efficiency of the audit.

Asset Register

The authoritative list of every asset — the source document for every audit. Register quality determines audit quality: assets without location records cannot be location-verified; assets without asset tags cannot be efficiently identified; assets without condition grades cannot be condition-audited. A complete, well-structured register is the prerequisite for a meaningful audit programme.

Must include: asset ID, location, custodian, tag/serial number, condition grade, last verified date

Audit Trail (Event Log)

The immutable chronological record of every event in each asset's history — creation, assignment changes, location transfers, maintenance events, condition updates, document uploads, and disposal. The audit trail is the chain of custody — it answers who had this asset and when, and what was done to it. Without an audit trail, there is no accountability framework for the assets between formal audit cycles.

Auto-generated: every system action creates a timestamped immutable audit trail entry

Location & Assignment Records

Accurate location and assignment records are what audit verification checks. Every location transfer must update the register at the time it occurs — not retrospectively. Every assignment change must be recorded. Organisations that allow informal asset movement (taking equipment without updating the register) are continuously degrading the data quality that their audits depend on. Location and assignment records are the primary source of audit discrepancies.

Updated: on every transfer or assignment change. Verified: during physical audit

Asset Identification (Tags & Barcodes)

Physical identification tags — barcodes, QR codes, or RFID tags — are the bridge between the physical asset and its digital record. A barcode scan during an audit instantly retrieves the asset record and confirms identity — eliminating the manual record-matching that makes untagged audits error-prone and slow. Tags should be permanently affixed to the asset in a visible, durable location. RFID tags enable batch verification without line-of-sight scanning, significantly accelerating large-volume audits.

Enables: fast, accurate physical verification. Eliminates: manual record-matching and misidentification errors

Discrepancy Log

A structured record of every discrepancy identified during the audit — asset not found, unregistered asset discovered, location discrepancy, condition discrepancy, or assignment discrepancy. The discrepancy log is the working document of the audit's resolution phase. It tracks investigation status, resolution outcome, and the register update action taken. A signed-off discrepancy log is evidence that discrepancies were not ignored but systematically investigated and resolved.

Documents: discrepancy type, investigation outcome, resolution action, resolver, date

Custody Chain Record

The documented history of every custodian who has held each asset — with transfer dates and acknowledgements. Chain of custody is a specific audit requirement in regulated and government contexts where assets must be demonstrably controlled throughout their lifecycle. Informal asset handovers without custody record updates create accountability gaps: when an asset goes missing, there is no documented trail to the last known responsible party.

Enables: accountability for every custody period in the asset's lifecycle

Document Verification Records

During compliance audits, the verification that required documents are on file and current — calibration certificates, inspection records, insurance documents, warranties, safety certifications. Document verification records confirm that the compliance documentation check was performed, who performed it, the outcome (compliant / non-compliant), and any remediation actions taken.

Required for: regulated assets with mandatory documentation compliance

Audit Report & Sign-off Record

The formal governance document produced by each audit cycle — recording scope, methodology, verification rate, discrepancies by type, resolution status, and the authorised sign-off. The audit report is the primary evidence document for regulatory, insurance, financial reporting, and funder compliance purposes. Without a formal report and sign-off, an audit existed only as an operational exercise with no governance value.

Purpose: formal governance evidence of audit execution and findings

Operational ontology

How asset auditing connects to adjacent systems

Asset auditing is a governance layer that draws from and contributes to every asset-related system in the operation.

Asset auditing system relationships

How asset auditing connects to the broader asset management knowledge graph

Asset Auditing
physical verification & register accuracy system

Secondary system connections

Asset Lifecycle
Fixed Asset Register
Ownership Records
Maintenance Programme
Inbound relationship Outbound relationship Bidirectional relationship
System intelligence

Asset auditing system intelligence in UniAsset

These capabilities make audit execution efficient and continuous verification practical — reducing the labour burden of asset auditing while improving data quality.

Immutable audit trail

Every asset event — creation, transfer, assignment, maintenance, condition update, disposal — is automatically recorded in an immutable timestamped log. The audit trail exists continuously, not just during formal audit cycles. Regulators and auditors can always access the complete chain of custody evidence without requiring a retrospective data assembly exercise.

Register export for audit checklists

The asset register can be exported at any time — organised by location, category, custodian, or last verified date — providing the audit checklist for physical verification exercises. Exports include all registered attributes needed for verification: asset ID, location, tag number, custodian, and last verified date.

Location and assignment tracking

Every location transfer and assignment change is recorded at the time it occurs — creating a continuously updated register that reduces the discrepancy gap auditors discover. Location history is visible on each asset record: where the asset has been, who transferred it, and when.

Unverified asset alerts

Assets that have not been physically verified in more than a configured period (e.g., 12 months) are surfaced in exception reports. This continuous monitoring identifies register accuracy gaps between formal audit cycles and prompts targeted verification before discrepancies accumulate.

Custody chain records

Assignment transfers are recorded with accepting and releasing parties — creating a documented chain of custody for every asset. Custody records are accessible on each asset's history timeline: the complete sequence of who held the asset and for how long.

Document expiry monitoring

For assets with compliance documents, the system monitors document expiry dates and surfaces overdue documentation in exception reports. This enables proactive compliance — renewing documents before they expire rather than discovering expired documentation during an audit.

Discrepancy rate trend reporting

Discrepancy rates from successive audit cycles are tracked — providing a longitudinal view of register accuracy improvement. Declining discrepancy rates confirm that continuous verification practices are working; stable or increasing rates indicate a governance process failure requiring management attention.

Ghost asset identification

Assets not physically verified for extended periods, or assets with no associated maintenance or transaction history, are flagged in exception reports as potential ghost asset candidates. These reports focus audit effort where the register accuracy risk is highest.

Asset search and filter

Powerful asset search enables auditors to quickly locate specific assets during verification — searching by tag number, serial number, location, assigned custodian, or category. Search speed directly affects audit efficiency — auditors who can instantly find the digital record of a physically located asset verify faster and more accurately.

Operational guidance

Asset auditing best practices

The difference between an audit programme that produces accurate registers and one that produces point-in-time snapshots is operational discipline — in how registers are maintained, discrepancies are resolved, and custody is tracked between cycles.

Register quality

Tag every asset above the capitalisation threshold — without exception

An asset without a physical identification tag cannot be efficiently audited. Tagging should be completed at the time of registration — not retrospectively during the audit exercise, where inconsistency and errors are highest.

Register every asset before it enters service — not when someone has time

Unregistered assets in service are the primary source of maintenance blind spots, insurance gaps, and audit failures. Procurement workflows must include a mandatory CMMS registration step before the asset is deployed.

Update the register immediately on location transfer or assignment change

Every day between a physical transfer and a register update is a day the register is inaccurate. Continuous update discipline eliminates the majority of location discrepancies before they reach the formal audit.

Discrepancy resolution

Investigate every 'not found' asset thoroughly before classifying as missing

The majority of 'not found' assets are not actually missing — they are in service in another location, in maintenance, in temporary storage, or overlooked during the physical search. Classifying an asset as missing without thorough investigation generates ghost write-offs that damage register integrity and waste investigation effort.

Resolve discrepancies within the same audit cycle — never carry them forward

Unresolved discrepancies carried forward to the next audit cycle accumulate over time. An audit that produces a discrepancy log but does not resolve and close each item has not improved the register — it has documented its inaccuracy without correcting it.

Document the investigation outcome on every resolved discrepancy

A discrepancy marked 'resolved' without a documented investigation outcome — how it was investigated, what was found, and what action was taken — provides no audit evidence. Regulators and auditors need to see the resolution reasoning, not just the closure status.

Continuous verification

Conduct targeted location audits when staff depart — immediately, not at the next annual audit

Departed staff are the most common source of unresolved asset custody gaps. A targeted location audit covering all assets assigned to a departing employee — conducted on or before their departure date — prevents assets from disappearing into an accountability void.

Run exception reports monthly — assets not verified in 12 months, unassigned assets, missing location records

Exception reports are continuous audit indicators — they surface register accuracy risks between formal audit cycles. A register that is never checked outside of the annual audit will drift continuously between cycles. Monthly exception reports allow targeted verification to address specific gaps.

Treat audit discrepancy rate as a management KPI — not just an audit artefact

If the discrepancy rate on successive audits is stable or increasing, the register maintenance practices are not working. Discrepancy rate should be reviewed by management as a governance indicator — not just by the auditing team as an operational statistic.

Audit evidence

Obtain formal sign-off from an authorised manager on every audit report

An audit without a formal sign-off is an operational exercise, not a governance event. Sign-off confirms that an authorised person has reviewed the audit findings, the discrepancy resolution, and accepts responsibility for the accuracy of the resulting register. This is the evidence that external auditors and regulators require.

Archive audit reports and supporting verification records permanently

Audit records are governance documentation with long retention requirements — typically 7 years minimum for financial audit records, longer for regulated industries. Digital archive in a system with access control and audit trail is preferable to paper files that can be lost or altered.

Never adjust the register before the audit to pass a review — address the underlying accuracy problem instead

Organisations that 'clean up' the register immediately before a planned audit and revert practices afterwards are producing compliance theatre, not asset governance. The register should be able to pass an unannounced audit as easily as a planned one — that is the standard of an audit-ready operation.

Performance metrics

Asset auditing metrics and KPIs

These KPIs measure audit programme coverage, register accuracy, and the governance health of the asset estate.

Audit Coverage Rate

Percentage

Percentage of registered assets physically verified in the most recent audit cycle. Full coverage (100%) is the ideal; partial audits should cover at minimum all high-value and regulated assets.

Target: 100% for regulated assets; ≥ 90% overall

Asset Discrepancy Rate

Percentage

Percentage of audited assets where a discrepancy was found — location wrong, not found, condition mismatch, or assignment error. Declining rates across successive audits indicate improving register maintenance practices.

Target: < 3% — declining year-on-year

Asset Location Accuracy

Percentage

Percentage of assets physically found in their registered location. Location accuracy is the most commonly failing audit metric — assets move informally without register updates. High location accuracy requires continuous update discipline.

Target: ≥ 97% confirmed in registered location

Ghost Asset Rate

Percentage

Percentage of audited assets found to be ghost assets — registered but not physically present after thorough search. Ghost assets inflate balance sheet values, insurance premiums, and maintenance schedules. Target is zero.

Target: 0% — every ghost asset is a register failure

Discrepancy Resolution Rate

Percentage

Percentage of audit discrepancies that are formally resolved within the same audit cycle — not carried forward. Low resolution rate indicates the audit exercise identifies problems but does not fix them.

Target: 100% within same audit cycle

Register Coverage Rate

Percentage

Percentage of physical assets in the estate that have a corresponding register record. Assets physically present but not registered are invisible to the maintenance programme, insurance schedule, and compliance tracking.

Target: 100% of assets above capitalisation threshold

Audit Cycle Time

Days

Elapsed time from audit commencement to formal sign-off of the audit report. Long cycle times indicate process inefficiency or unresolved discrepancies delaying sign-off. Technology (barcode scanning, mobile verification) significantly reduces cycle time.

Benchmark: < 10 days for 500 assets with barcode scanning

Document Compliance Rate

Percentage

Percentage of regulated assets with current, on-file compliance documentation — certifications, inspection records, calibration certificates. Measured during compliance audits.

Target: 100% for life-safety and regulated assets

Unassigned Asset Rate

Percentage

Percentage of registered assets with no current custodian assignment. Unassigned assets have no accountability chain — if they go missing, there is no responsible party to investigate.

Target: 0% — every asset assigned to a current staff member

Operational comparison

Manual audit vs systematic audit vs continuous verification

Three levels of asset audit maturity — distinguished by process rigour, evidence quality, and register accuracy between cycles.

Dimension
Ad Hoc / Manual
Systematic Audit
Continuous Verification
Audit frequencyWhen triggered by external event or crisisScheduled annual or biannual cycleFormal cycle + ongoing spot verification
Register accuracyUnknown between audits — drifts continuouslyVerified annually — drifts between cyclesContinuously maintained — low drift
Discrepancy detectionOnly at audit time — large accumulationAt scheduled audit — moderate accumulationNear-real-time through exception reporting
Documentation qualityMinimal — spreadsheet notesFormal report, discrepancy log, sign-offFormal report + continuous audit trail evidence
Regulatory defensibilityLow — no formal audit evidenceGood — annual formal evidenceHighest — continuous evidence + formal sign-off
Ghost asset exposureHigh — may accumulate for yearsCleared at each audit cycleMinimal — detected and cleared rapidly
Resource requirementLow per-event but high per-discoveryPredictable annual audit resourceDistributed continuously — lowest per-unit cost
Audit cycle timeLong — data in poor stateModerate — data reasonably currentShort — most data already verified and current
FAQ

Frequently asked questions

Detailed answers to the questions finance directors, operations managers, and compliance teams ask most frequently about asset auditing.

What is asset auditing?

Asset auditing is the systematic process of physically verifying that every asset recorded in an organisation's asset register actually exists, is in the location recorded, is in the condition described, and is assigned to the correct owner or custodian. An asset audit compares the physical reality of the asset estate against the documentary record — identifying discrepancies between what the register says and what actually exists: assets that are present but not registered, assets that are registered but cannot be found, assets in the wrong location, assets assigned to the wrong person, and assets whose recorded condition or value does not reflect their actual state. Asset auditing is both an operational governance practice (ensuring the asset register is accurate and current) and a compliance activity (providing evidence that assets are properly controlled and accounted for).

Why is regular asset auditing important?

Regular asset auditing is important for six reasons. First, financial accuracy: fixed asset records directly feed into financial statements — overstated or understated asset values affect depreciation calculations, balance sheet accuracy, and tax reporting. Second, insurance accuracy: assets that are unregistered are typically uninsured; assets that are registered but no longer exist may be over-insured. Third, regulatory compliance: many industries (healthcare, education, government, finance) require periodic evidence that physical assets match documented records. Fourth, security and loss prevention: regular audits detect assets that have been removed without authorisation — particularly critical for portable, high-value equipment. Fifth, capital planning: accurate asset data is the prerequisite for reliable capital replacement planning. Sixth, maintenance programme integrity: PM rules are configured per asset — if the asset register is inaccurate, the maintenance programme is incomplete.

What is the difference between an asset audit and an asset inventory?

An asset inventory is a one-time or periodic exercise to document what assets exist — creating a register if one doesn't exist, or verifying an existing register against physical reality. An asset audit is a structured, governance-driven verification process with formal procedures, discrepancy documentation, resolution workflows, sign-off requirements, and audit trail evidence. The key distinction is formality and evidence: an inventory produces a list; an audit produces evidence — documented verification outcomes, discrepancy logs, resolution records, and a formal sign-off. An audit is what is required when regulators, auditors, or insurance assessors ask for evidence of asset control. An inventory is the operational activity that feeds and refreshes the register between audits.

How often should asset audits be conducted?

Audit frequency should be calibrated to asset risk, value, and regulatory requirements. Best practice is a tiered approach: high-value or high-risk assets (life-safety equipment, IT equipment, medical devices, vehicles) should be audited annually at minimum; medium-value assets biannually; lower-value bulk assets every 2–3 years or as required by policy. In addition to cyclical audits, specific audit triggers warrant ad hoc audits: staff departures (audit assets assigned to the departing employee), site relocations (verify all assets have moved to the new location correctly), post-theft incidents (audit affected areas to identify scope), and pre-disposal (verify assets earmarked for disposal actually exist before writing them off). In regulated industries, audit frequency may be mandated: healthcare biomedical equipment typically requires annual audits; government-funded assets may have funder-mandated audit requirements.

What are the main types of asset audits?

There are four primary asset audit types. Physical inventory audit: comprehensive verification of every asset — existence, location, condition, identification (serial number, asset tag). This is the most labour-intensive audit type and is typically performed annually or biannually. Location audit: verification that assets are in their registered locations — particularly important for portable or high-value equipment that may be moved frequently. Condition audit: assessment of asset condition against recorded condition grades — used to update depreciation schedules, trigger maintenance, or identify assets approaching replacement. Compliance audit: verification that assets meet required certifications, inspection records, and documentation standards — particularly relevant for regulated assets (medical devices, pressure vessels, lifting equipment, vehicles). Many audit programmes combine these types in a single audit exercise.

What happens when an asset audit finds discrepancies?

Discovered discrepancies enter a formal discrepancy resolution workflow. The discrepancy is categorised: asset not found (physically missing from registered location), unregistered asset found (physically present but not in the register), condition discrepancy (physical condition differs from recorded condition), location discrepancy (asset found in a different location than registered), assignment discrepancy (asset assigned to wrong person or department), or value discrepancy (recorded value doesn't match actual condition). Each discrepancy is investigated — in many cases, assets are found in the correct location through a more thorough search, or have been moved without updating the register. Genuine missing assets are escalated for investigation (loss, theft, or disposal without proper process). Resolution is documented on the discrepancy record and the asset register is updated to reflect the verified reality.

What is an asset audit trail and why does it matter?

An asset audit trail is the immutable chronological record of every event in an asset's history — creation, assignment changes, location transfers, custody handovers, maintenance records, condition assessments, document uploads, and disposal. The audit trail answers the accountability question: who had this asset, when, and what happened to it? In legal, insurance, or regulatory contexts, the audit trail is the primary evidence of asset governance. An asset that cannot be accounted for through its audit trail — because the trail is incomplete, inconsistent, or missing entirely — represents an unresolved governance failure. Modern asset management platforms create audit trail entries automatically for every system action — no manual recording required.

What is the role of barcodes and RFID in asset auditing?

Barcodes and RFID (Radio Frequency Identification) tags are asset identification technologies that accelerate physical verification during audits. A barcode tag on an asset is scanned by an auditor using a mobile device — the scan instantly retrieves the asset record from the CMMS and confirms the physical asset's registration status. RFID goes further: RFID readers can detect tagged assets without line-of-sight contact, enabling batch verification of multiple assets in a location simultaneously. The operational benefits for auditing are significant: an auditor with a barcode scanner can verify 100 assets per hour vs 15–20 per hour with manual record-checking. More importantly, barcode-driven audits reduce human error — the asset's identity is determined by the tag scan, not by visual inspection or memory, eliminating transcription errors and misidentification.

How does asset auditing relate to compliance management?

Asset auditing and compliance management are closely related but distinct disciplines. Asset auditing verifies physical existence and condition — the answer to 'is this asset here and in the state we say it is?' Asset compliance verifies that assets meet required standards and certifications — the answer to 'does this asset have the required inspection records, certifications, and documentation?' In practice, audit exercises often incorporate compliance verification: when an auditor physically verifies a pressure vessel, they also check whether its most recent inspection certificate is on file and current. When a biomedical engineer audits a defibrillator, they verify both its presence and its last PM date. Organisations that manage both physical verification and compliance documentation in the same system can conduct combined audits rather than separate exercises.

What is the fixed asset register and how does auditing maintain it?

The fixed asset register (FAR) is the authoritative record of an organisation's fixed assets — the complete list of every physical asset owned, with acquisition cost, useful life, depreciation method, current book value, and physical details (location, serial number, condition). The FAR is the primary source document for financial reporting, insurance scheduling, and capital planning. Asset audits maintain the FAR by physically verifying that every record in the register corresponds to an existing asset in the registered state — and that every physical asset has a corresponding register record. Audit findings are used to: add unregistered assets to the register (ghost assets discovered), write off missing assets (assets registered but not found after thorough investigation), update location and assignment records, and revise condition grades for depreciation schedule updates.

What are the most common asset audit failures?

The most common asset audit failures are: (1) Incomplete asset register — audits can only verify what is in the register; assets never registered cannot be audited; (2) Infrequent audits — registers drift from reality between audit cycles; the longer the interval, the larger the discrepancy gap; (3) No systematic discrepancy resolution — audits that identify discrepancies but don't have a formal resolution workflow leave the register in an inaccurate state after the audit; (4) Audit only at financial year-end — relying on a single annual audit misses mid-year custody changes, losses, and relocations; (5) Poor identification practices — assets without tags, or with tags that are illegible or missing, cannot be efficiently audited; (6) No chain of custody tracking — assets that are routinely moved between locations without any record of the transfer make location verification impossible.

How do you build an audit-ready operations culture?

Audit-ready operations culture means the organisation's asset management practices are designed so that an audit can be conducted at any time and pass without requiring a special preparation exercise. The key practices are: (1) Register everything — every asset above a defined value threshold is in the system, tagged, and assigned; (2) Update on change — every assignment transfer, location change, and custody handover updates the register at the time it happens; (3) Document on disposal — every disposal is formally recorded before the asset leaves the register; (4) Capture condition regularly — condition assessments are performed during PM visits, not only during scheduled audits; (5) Use technology — barcode or RFID tags and a mobile audit app make it practical for non-specialist staff to contribute to continuous asset verification; (6) Treat audit results as governance data — discrepancy rates and resolution times are management KPIs, not just audit artefacts.

Get started

Build an audit-ready asset estate in UniAsset — free.

Maintain a complete, accurate asset register with immutable audit trail, location tracking, document management, and custody chain records — permanently audit-ready.

Used by healthcare, education, non-profit, and facilities operations teams. No credit card required.