Skip to main content
ASIRI

Approve evidence and record owner sign-off

Use human review to approve high-risk evidence before it counts as audit-ready.

Back to help center Contact support
Help center
Trust Center and audit6 min readUpdated May 2026Evidence > Evidence detail
Access needed
AdminCompliance managerControl ownerReviewer
ASIRI evidence library with collected evidence objects
Evidence approval separates collected data from audit-ready evidence. High-risk controls should require human sign-off.
ASIRI audit log showing evidence and control events
Every approval, rejection, note, and evidence change should be timestamped and visible in the audit trail.

Why sign-off matters

Automated evidence can show what a system reported, but a human reviewer may still need to confirm scope, relevance, risk acceptance, legal interpretation, or management approval.

Use sign-off for high-risk controls, legal decisions, vendor exceptions, breach decisions, access reviews, retention exceptions, and public Trust Center claims.

Approve evidence

  1. 1Open Evidence and select the evidence object.
  2. 2Review source, collected date, valid-until date, raw payload hash, mapped control, and remediation status.
  3. 3Confirm the evidence supports the control requirement.
  4. 4Approve, reject, or request changes.
  5. 5Add reviewer notes if context is needed for an auditor.

What auditors should see

Auditors should see the evidence object, source system, collection timestamp, hash, reviewer, approval decision, notes, and any related remediation task.

Related

Keep going in this area.

Understand evidence freshness and control coverage

Learn how ASIRI marks evidence as current, stale, expired, or missing and turns failed checks into remediation work.

Read article

Review audit logs and evidence exports

Use audit trails to prove who changed what and when.

Read article

Export an audit-ready evidence pack

Generate an evidence pack with control trace, evidence inventory, raw payload hashes, blockers, approvals, and claim boundaries.

Read article