AgentGovernance

Accounting · CPA & advisory firms

Copilot summarized the trial balance. Then it almost emailed it to the wrong client.

Regional accounting firms enabled Microsoft Copilot and ChatGPT Enterprise for research, workpaper drafts, and client updates. SOC 2 and professional standards still require segregation of client data, controlled approvals on filings, and evidence that AI didn't cross engagement walls.

Client
engagement walls
Invoice
approval limits
SOC 2
audit evidence
See the live demo Join waitlist

The scenario your risk partner cares about

A senior accountant asks Copilot to “draft a quarterly update email with revenue highlights for Client A.” The model pulls numbers from a shared folder that also contains Client B's forecast. The draft cc line autocompletes incorrectly. One click from send — and you have a confidentiality incident, not a productivity win.

Why firm policy PDFs don't scale

Every firm updated its AI acceptable use policy in 2025. Associates still move fast during close week. The gap is enforcement at the moment of action — send, export, post, approve — not another training video.

  • Tax workpapers with SSNs and EINs in Excel Online
  • Client portal uploads triggered from AI-generated checklists
  • AP bots approving vendor payments from ticket summaries
  • ChatGPT Enterprise browsing client-specific plugins

Controls firms with 80–400 staff actually adopt

Engagement-scoped access

AI reads and acts only within the client engagement the user is assigned to this week — not firm-wide search.

External client email approval

Particularly for attachments containing financial statements, tax docs, or payroll summaries.

Invoice and payment thresholds

AI cannot approve or post AP/AR actions above partner-delegated limits.

Export and download logging

Every attempt to bulk-export workpapers is logged with user, client, and outcome.

What to tell peer review and SOC auditors

  • We log AI action attempts — not just chat history
  • Client-facing sends require human approval
  • Segregation of duties applies to AI-initiated approvals
  • We can produce a trail for a specific client and date range

Related guides

Common questions

Can Copilot access one client's files while working on another?
If SharePoint permissions overlap, yes — Copilot follows user access. Governance adds client engagement boundaries so AI cannot act on files outside the active engagement, even when folders are overshared.
How do we govern AI-assisted invoice approvals?
Set dollar thresholds: AI may draft AP review summaries, but approving or posting invoices above your limit requires a named human approver and an audit entry.
Does this apply to outsourced bookkeeping teams using ChatGPT?
Yes. Governance attaches to actions on your systems — who tried to change a ledger entry, export a trial balance, or email a client tax document — regardless of which AI tool they used.

Let employees use AI — with controls your team can run

No AI platform team required. AgentGovernance sits between Copilot, ChatGPT Enterprise, and the systems they reach — approvals, access control, and audit trails in plain business terms.