Would you be ready for an audit today?

An Unwelcome Visitor

It’s 9:15 AM on a Tuesday. A compliance auditor from a regulator, or perhaps a major tenant’s own governance team, walks into your head office. They don't want a coffee. They want records. Now. They hand you a list of sites, assets, and contractors, and they want to see the complete, auditable history. What happens next in your organisation? Is it a calm, 10-minute exercise in pulling a report from a single system? Or is it the start of a frantic, multi-day scramble involving panicked phone calls to site managers, frantic searches through disparate software, and desperate attempts to stitch together spreadsheets? If you felt a knot in your stomach reading that, you already know the answer. Your fragmented facilities management stack is a compliance failure waiting to happen.

The Auditor's Questions: A Test of Your Stack

An FM audit isn't a vague check-in. It's a precise, forensic examination of your operational governance. The auditor isn't trying to catch you out; they are simply testing if your systems can prove you do what you say you do. Let's walk through the questions they will ask, and the uncomfortable truth of what most disconnected systems reveal.

Contractor Compliance: Are They Cleared to Work?

The auditor points to a contractor. "Show me their current Certificate of Currency for Public Liability insurance, their WHS induction record for Site B, and a list of all work orders they completed there in the last 18 months." For a best-in-class operation, this is one click. The data is linked. For most, it's chaos. Your contractor compliance data lives in a platform like Rapid Global or CM3. Your work orders are in a separate CMMS. Site access might be in a third system. You have to manually export three different reports and pray the contractor names match perfectly. Can you prove, without a doubt, that their compliance was valid at the time the work was performed? With siloed data, that proof is elusive and time-consuming to construct. This isn't just inefficient; it's a critical gap in your facilities management compliance.

Key Access Logs: Who Had the Keys?

"Who accessed the primary data room at Site C between 2 AM and 4 AM on May 12th?" A simple question with profound security and compliance implications. Your KeyWatcher cabinet knows who took the key. But that data is an island. Was that person a technician assigned to a critical after-hours work order? Was it a security guard on patrol? Was it an unauthorised access event? Without a native link between your key management software and your CMMS, you can't answer definitively. You have a log of a key being removed, not the verified context for its use. You're left trying to manually correlate timestamps between two different systems, a process that is both fallible and unconvincing in an FM audit.

Asset Maintenance History: Can You Prove Service Delivery?

The auditor now focuses on a critical asset. "I need the complete service history for the HVAC chiller on the roof of Site A, including all scheduled maintenance, reactive repairs, and parts replaced since installation." For a REIT, proving diligent asset stewardship is non-negotiable. Yet, your CMMS might have work orders that aren't properly tagged to the asset ID. Your financial system has the invoices for parts, but they aren't linked to the work orders. You might have a dozen work orders titled "Fix A/C" that are impossible to attribute to a specific unit. A fragmented system gives you pieces of the puzzle. It cannot provide the single, unbroken chain of evidence that an auditor, or a potential buyer, requires. This is a core challenge for effective REIT facilities management.

WHS Documentation: Where Are Your SWMS?

"Please produce the approved Safe Work Method Statement for the facade cleaning conducted at Site D last quarter." Where is it? Is it attached to an email? Is it in a folder on a local server? Is it in a Dropbox account with three different versions? The real question the auditor is asking is: "Can you prove the contractor reviewed and accepted the correct version of the SWMS before commencing high-risk work?" A standalone document storage system can't prove this link. It can only prove a document exists. Without an integrated compliance management software that connects the document, the contractor, the work order, and the site, you are relying on good faith, not good governance.

The Real Problem Isn't People, It's Plumbing

Let’s be clear. Audit failures rarely happen because facilities managers are negligent. They happen because the very architecture of their technology is broken. You have hired competent people and purchased what you were told were best-of-breed software tools for each function. The problem is that these tools don't talk to each other. The data is structurally disconnected. Each silo, whether it's for contractor management, key tracking, or maintenance, creates a small gap. Across a large property portfolio, these small gaps compound into a massive, unquantified compliance risk. You are spending time and money managing the plumbing between systems instead of managing your