AICPA DAS API
AICPA DAS is cloud-based audit software for CPA firms that centralizes engagement management, risk assessment, workpapers, trial balance ingestion, sampling/testing, client requests (PBC), and sign-offs—aligned with AICPA auditing standards. An unofficial API lets you pull engagement
What is AICPA DAS?
AICPA DAS is a cloud platform designed to modernize audit delivery for CPA firms. It centralizes planning, risk assessment, trial balance ingestion, procedures and testing, PBC request management, documentation, and review/sign-off workflows across engagement teams and clients. Firms use DAS to standardize methodology, streamline audit fieldwork, improve transparency and collaboration with clients, and produce high-quality audit documentation and reports.
Core product areas include:
- Engagement Management (Engagements, Teams, Milestones, Status, Sign-Offs)
- Risk & Controls (Risk Assessment, Control Documentation, Linkage to Procedures)
- Financial Data (Trial Balance Import, Account Mapping, Lead Schedules)
- Testing & Sampling (Sampling Methods, Test Procedures, Exceptions Tracking)
- Client Collaboration (PBC Request Lists, Secure Document Exchange, Comments)
- Workpapers & Evidence (Workpaper Indexing, Attachments, Versioning, Review Notes)
Common data entities:
- Firms, Users, Roles/Permissions (Partner, Manager, Senior, Staff, Client Contact)
- Engagements (client, fiscal year, industry, materiality, milestones, status)
- Clients (contact info, accounting system, fiscal calendar)
- Trial Balances (accounts, debits/credits, mappings, currency)
- Risks & Controls (risk ratings, assertions, control descriptions, operating effectiveness)
- Procedures & Tests (test objectives, populations, samples, conclusions)
- PBC Requests (categories, due dates, assignees, statuses, file uploads)
- Workpapers (index, references, attachments, review notes, sign-offs)
- Issues & Findings (severity, impacted accounts/assertions, remediation)
The AICPA DAS Integration Challenge
Audit teams rely on DAS daily, but turning portal-based workflows into API-driven automation is non-trivial:
- Role-aware portals: Partners, managers, staff, and clients see different data, permissions, and approval states
- Methodology rigor: Risk/control linkages, materiality thresholds, and sampling/conclusions demand careful handling
- Financial integrity: Trial balance imports require balancing, mapping, and reconciliation safeguards
- Client collaboration: PBC requests, document exchange, and comment threads are optimized for front-end flows
- Authentication complexity: SSO/MFA and session lifecycles complicate headless automation for firm tenants
- Data spread: Key objects span engagements, risks/controls, trial balances, workpapers, tests, and PBC workflows
How Supergood Creates AICPA DAS APIs
Supergood reverse-engineers authenticated browser flows and network interactions to deliver a resilient API endpoint layer for your DAS tenant.
- Handles username/password, SSO/OAuth, and MFA (SMS, email, TOTP) securely
- Maintains session continuity with automated refresh and change detection
- Normalizes responses so you can integrate once and rely on consistent objects across modules
- Aligns with firm entitlements and role-based permissions to ensure compliant access
Getting Started
- Schedule Integration Assessment
Book a 30-minute session to confirm your modules, licensing, and authentication model.
- Supergood Builds and Validates Your API
We deliver a hardened AICPA DAS adapter tailored to your workflows and entitlements.
- Deploy with Monitoring
Go live with continuous monitoring and automatic adjustments as DAS evolves.
API Endpoints
Authentication
/sessionsEstablish a session using credentials. Supergood manages MFA (SMS, email, TOTP) and SSO/OAuth when enabled. Returns a short-lived auth token maintained by the platform.
Authentication
/sessions/refreshRefresh an existing token to keep sessions uninterrupted.
Engagements
/engagementsList engagements with filters and summary details.
PBC Requests
/engagements/{engagementId}/pbc-requestsCreate a PBC (Prepared by Client) request with due dates, categories, and assignees.
Trial Balance
/engagements/{engagementId}/trial-balanceImport or replace a trial balance, with account mappings and control totals.
Workpapers & Evidence
/engagements/{engagementId}/workpapers/{workpaperId}/evidenceUpload evidence and link it to a workpaper with audit metadata.
Use Cases
Audit Data & Engagement Sync
- Mirror engagements, clients, and teams into your practice management or analytics tools - Keep engagement metadata current for portfolio oversight and reporting - Normalize fiscal calendars, statuses, and materiality for multi-tenant operations
PBC Request Automation
- Create PBC request lists from your client portal and push into DAS - Track receipt, approvals, and comments; notify client contacts automatically - Route delivered artifacts to the right workpapers with audit trail
Trial Balance & Account Mapping
- Import trial balances from ERP/accounting systems (e.g., QuickBooks, Xero, NetSuite) - Validate control totals, currency, and mappings to lead schedules - Trigger alerts on imbalances, unmapped accounts, and material variances
Testing & Evidence Handling
- Drive sampling and test execution from your analytics engine - Attach evidence (documents, exports) directly to workpapers - Track exceptions, conclusions, review notes, and sign-offs programmatically
AI-Assisted Review
- Flag anomalous accounts or journal entries using AI - Suggest risk updates and procedure coverage based on evidence - Auto-summarize workpapers and generate draft review notes for manager sign-off
Technical Specifications
Authentication
Username/password with MFA (SMS, email, TOTP) and SSO/OAuth where enabled; supports service accounts or firm-managed credentials
Response format
JSON with consistent resource schemas and pagination across modules
Rate limits
Tuned for enterprise throughput while honoring firm entitlements and usage controls
Session management
Automatic reauth and cookie/session rotation with health checks
Data freshness
Near real-time retrieval of engagements, trial balances, PBC requests, workpapers, and testing objects
Security
Encrypted transport, scoped tokens, and audit logging; respects DAS role-based permissions
Webhooks
Optional asynchronous delivery for long-running workflows (e.g., client document submissions, sign-offs)
Latency
Sub-second responses for list/detail queries under normal load
Throughput
Designed for high-volume trial balance imports and PBC/evidence processing
Reliability
Retry logic, backoff, and idempotency keys minimize duplicate actions
Adaptation
Continuous monitoring for UI/API changes with rapid adapter updates
Frequently asked questions
Supergood supports workflows across commonly used modules such as Engagements (status, milestones, teams), Financial Data (Trial Balance, account mapping), Client Collaboration (PBC requests, comments, document exchange), and Workpapers/Evidence (attachments, review notes, sign-offs), subject to your licensing and entitlements. We scope coverage during integration assessment.
We support username/password + MFA (SMS, email, TOTP) and can operate behind SSO/OAuth when enabled. Sessions are refreshed automatically with secure challenge handling.
Yes. We can normalize trial balances and account mappings to match your audit schema and deliver updates via webhooks or polling while complying with rate and permission constraints. We commonly integrate with QuickBooks, Xero, and NetSuite.
Yes. We support downloading submitted artifacts and uploading attachments via signed uploads, with checksum validation and time-limited URLs. Request statuses, comments, and audit trails are modeled explicitly in our normalized responses.
We can surface AI-powered anomaly flags, risk suggestions, and draft workpaper summaries as structured objects alongside DAS records. Firms retain control over acceptance, documentation, and sign-offs to meet audit standards.