The audit process, as defined by standards like ISO 19011 (Guidelines for auditing management systems), consists of several distinct stages. The step that specifically involves examining an organization's policies, procedures, work instructions, and records to determine conformity with audit criteria is the document review. This is often conducted as part of the Stage 1 audit or in preparation for on-site audit activities (Stage 2). It allows the auditor to understand the design of the management system before verifying its implementation.

A. Closing meeting: This is the final step of the on-site audit, where the audit team presents its findings and conclusions to the auditee's management.

B. Audit reporting: This is the process of formally documenting the audit findings, conclusions, and recommendations in a final report after the audit activities are complete.

C. Audit follow-up: This involves verifying the effectiveness of corrective actions taken by the auditee to address nonconformities found during the audit.

1. ISO 19011:2018, Guidelines for auditing management systems, Clause 6.4.5, "Reviewing documented information." This section explicitly describes the activity of reviewing the auditee's relevant documented information as part of conducting the audit.

2. ISO/IEC 42001:2023, Information technology — Artificial intelligence — Management system, Clause 9.2, "Internal audit." This clause requires the organization to conduct internal audits, which would follow the standard process outlined in ISO 19011, including a document review phase.

3. International Accreditation Forum (IAF). (2015). IAF Mandatory Document for the Certification of Management Systems (IAF MD 5:2015). Section 2.2 describes the Stage 1 audit, a primary purpose of which is "to review the client's management system documented information."