Top 10 Red Flags That Trigger GST Audit Selection

Top 10 Red Flags That Trigger GST Audit Selection

GST audit selection in FY 2026-27 is a data-driven process, not a random draw. The CBIC's Risk Management System (RMS) ingests GSTR filings, e-way bill logs, e-invoice trails, income-tax AIS data, and customs records to build a continuous risk profile for every active GSTIN. The GSTINs that score highest are referred for departmental audit under Section 65 of the CGST Act 2017, triggering an ADT-01 notice. Understanding exactly which data signals push your score up — and correcting them monthly — is the most cost-effective compliance investment you will make this year.

How the CBIC Risk Engine Scores Your GSTIN

The RMS is not a single algorithm but a layered framework. Think of it as three concentric rings:

• Return-level analytics — internal consistency within your own GSTR-1, GSTR-3B, and GSTR-9 filings.
• Cross-filing analytics — reconciliation between your filings and your suppliers'/buyers' filings (GSTR-2B matching, e-way bill correlation).
• Cross-departmental analytics — comparison of your GST universe with income-tax returns, TDS data in Form 26AS, and the AIS/TIS (Annual Information Statement / Taxpayer Information Summary) issued by the Income Tax Department.

Each discrepancy is weighted. A single small mismatch may not matter; a cluster of signals in the same GSTIN in the same financial year can push it into the high-risk cohort that the audit wing reviews. The ten flags below represent the most consistently reported triggers, drawn from publicly available CBIC circulars, CAG observations, and departmental guidelines.

Red Flag 1: GSTR-1 vs GSTR-3B Mismatch — The Single Biggest Trigger

Your GSTR-1 declares your outward taxable supplies to the world. Your GSTR-3B is where you pay the tax. A gap between the two — even a small, recurring one — is almost always the opening paragraph of an audit show-cause notice.

The system flags two variants:

1. GSTR-3B tax > GSTR-1 liability — implies you may have paid tax on supplies not declared, which points to unreported turnover in GSTR-1 (and therefore missing e-way bill/e-invoice trails).
2. GSTR-1 liability > GSTR-3B tax paid — the more common and dangerous variant: supplies reported but tax short-paid.

Worked Example — Rs. Numbers

A Pune-based auto-component distributor (turnover Rs. 7.2 crore, FY 2025-26) filed GSTR-1 correctly each month but consistently deferred the corresponding GSTR-3B liability by reclassifying some B2B supplies as "exempt" in Table 3.1(c). The cumulative GSTR-1-to-3B taxable-value gap over 12 months came to Rs. 84 lakh. At 18% GST, the implied tax short-payment was Rs. 15.12 lakh. Interest under Section 50 at 18% p.a. for an average delay of 9 months works out to roughly Rs. 2.04 lakh — and that is before any penalty. The ADT-01 notice arrived within 60 days of the GSTR-9 filing for that year.

How to Fix It Before the Audit Hits

Run a month-wise GSTR-1 vs GSTR-3B reconciliation using the GST portal's "Return Comparison" tool under Services → Returns → IFF/GSTR-1 vs GSTR-3B. Any mismatch above Rs. 5,000 per tax head deserves an explanation note filed with your records. Material gaps should be corrected via GSTR-3B amendment (Table 10/11 in subsequent returns) before the GSTR-9 for that year is filed.

Red Flag 2: ITC Claimed Beyond GSTR-2B — Rule 36(4) and Section 16(2)(aa)

Section 16(2)(aa) of the CGST Act, inserted by the Finance Act 2022 with effect from 1 January 2022, makes it a statutory condition that Input Tax Credit (ITC) is available only if the supplier has reported the invoice in their GSTR-1 and the credit appears in your GSTR-2B. There is no longer a provisional buffer. If your GSTR-3B ITC claim exceeds your GSTR-2B, the excess is an ineligible credit on the face of the returns data.

Rule 36(4) of the CGST Rules reinforces this: ITC not reflected in GSTR-2B cannot be claimed. The portal-level DRC-01C automated notice is triggered when Table 4(A)(5) of GSTR-3B exceeds the GSTR-2B auto-populated amount.

The "We Will Claim and Reverse Later" Trap

A common practice is to claim full ITC in GSTR-3B (based on invoices in hand) and plan to reverse the excess once the supplier files GSTR-1. This works only if the supplier files promptly. If they file late or not at all, your reversal often never happens — and by the time GSTR-9 is filed, the overclaim has been sitting for months, accruing an 18% interest liability under Section 50(3).

Numbers: An ITC overclaim of Rs. 8 lakh outstanding for 180 days costs Rs. 72,000 in interest alone (Rs. 8,00,000 × 18% × 180/365). Add the potential penalty under Section 122, and the cost of "cash-flow management" through ITC overclaim becomes very expensive.

Red Flag 3: Inverted Duty Structure with Persistent Refund Claims

A registered person is in an Inverted Duty Structure (IDS) when the GST rate on inputs is higher than on outputs — typical in textiles (5% output vs 12% input fabric dyes), footwear, fertilisers, and certain engineering goods. Refund of accumulated ITC is available under Section 54(3), calculated using a specific formula prescribed in Rule 89(5).

The problem: aggressive IDS refund claims, particularly where the classification of inputs or outputs is debatable, attract scrutiny. The department examines whether (a) the output GST rate has been correctly applied, (b) the inputs whose ITC is claimed are genuinely used in making the output supply, and (c) capital goods ITC has not been mixed into the refund computation (which is not permitted).

If you are in an IDS-prone sector, maintain input-output mapping worksheets updated quarterly. The refund claim amount, the formula inputs, and the supporting GSTR-2B data should reconcile to the rupee before you file the RFD-01A application.

Red Flag 4: E-Way Bill vs GSTR-1 Quantity and Value Divergence

Every e-way bill generated is registered on the NIC e-way bill portal and is shared with the GST system. The RMS compares:

• Total e-way bill value generated as consignor vs B2B + B2C outward supply value in GSTR-1
• Total e-way bill value generated as consignee vs inward supply and ITC claims in GSTR-3B

A business that generates e-way bills worth Rs. 5 crore in a quarter but reports only Rs. 4.1 crore in GSTR-1 has a Rs. 90 lakh unexplained gap. The system treats this as potential unrecorded supply. Equally, a business generating e-way bills as the consignee (receiving goods) but claiming ITC far in excess of those documented receipts is flagged for fake-ITC investigation.

Step to check today: Download your e-way bill generation report from the NIC portal (ewaybillgst.gov.in → Reports → Outward EWB Summary), aggregate by month, and tie it to Table 4 of your GSTR-1 for the same period. The reconciliation should be done before GSTR-9 is filed.

Red Flag 5: Sudden Year-on-Year Drop in Output Tax Liability

If your net output tax in FY 2025-26 is 30% lower than in FY 2024-25 while your turnover is stable or growing, expect a query. The system does not know your business reasons — it only sees the number.

Legitimate causes that must be documented in advance:

• Product-mix shift toward exempted or lower-rated goods
• Growth in export turnover (zero-rated supply)
• GST rate rationalisations notified by the GST Council
• Correction of a prior-year classification error

The documentation standard is high: a brief management note cross-referencing the relevant GST notification number, the product/HSN involved, and the quantum of the shift. Keep this in your records file labelled for the financial year — if an ADT-01 lands, this note becomes the first thing your CA submits.

Red Flag 6: High-Risk Sectoral Footprint

The CBIC issues sector-specific audit instructions to field formations. Certain industries are structurally over-represented in audit selections:

If your GSTIN operates in one of these sectors, your baseline risk score starts higher. Sector-specific documentation — such as the land-to-construction cost ratio for real estate projects, or the backend agreement proving export-of-services status for an IT firm — should be assembled for each financial year, not reconstructed post-notice.

Red Flag 7: Habitual Late Filing of Returns

GSTR-1 is due by the 11th of the following month (monthly filers) or the 13th of the month following the quarter (quarterly filers under QRMP). GSTR-3B is due by the 20th/22nd/24th, depending on turnover and state. Late fees under Section 47 apply immediately after the due date — Rs. 50 per day (Rs. 25 CGST + Rs. 25 SGST) for returns with a tax liability, subject to the notified maximum.

But the cost that most businesses underestimate is not the late fee — it is the risk score impact. A GSTIN that files 4 out of 12 GSTR-3B returns late in a year is flagged as having weak compliance controls. Combine late filing with even one of the other flags above and the audit selection probability rises sharply.

Practical rule: Set calendar reminders 5 days before each return due date. Nil returns must also be filed on time — a nil GSTR-1 filed 45 days late is still a late filing and still signals poor discipline to the system.

Red Flag 8: GST Turnover vs Income Tax Return Turnover — The Cross-Departmental Gap

GSTR-9 (annual return, due by 31 December 2026 for FY 2025-26) requires you to declare aggregate turnover. Your income-tax return (ITR) for AY 2026-27 — filed by 31 October 2026 for taxpayers subject to audit — also declares turnover. The AIS consolidates this data for the Income Tax Department, and the two revenue departments now share information under a formal data-exchange mechanism.

Mismatches arise because:

• GST turnover includes exempt supplies; income-tax turnover may not
• GST is based on invoice date; income-tax may follow receipt basis for certain items
• Debit notes and credit notes are treated differently

None of these explanations is illegitimate — but each one needs a reconciliation note. Where GST turnover exceeds IT turnover by more than 5-10%, the income-tax assessing officer also raises a query, creating a two-front compliance problem. Prepare a single reconciliation statement for each financial year that bridges GSTR-9 turnover to ITR turnover, with line-by-line reasoning for each difference.

Red Flag 9: Tainted Supplier Network

Under Section 16(2)(c) of the CGST Act, ITC is available only if the tax on the supply has actually been paid to the government by the supplier. If your supplier is a shell entity, cancels its GSTIN after filing a fake GSTR-1, or is listed on the CBIC's risky-taxpayer watch list, your ITC claim — even if supported by a physical invoice and payment — is vulnerable.

How to Vet Your Suppliers — Monthly Checklist

1. Log in to the GST portal → Search Taxpayer → Search by GSTIN — verify the supplier's GSTIN is active and not suspended.
2. Cross-check whether the supplier's GSTR-1 filings are current (their invoices should be appearing in your GSTR-2B).
3. For new suppliers above Rs. 5 lakh per year, run a basic background check: physical address verification, business registration, PAN linkage.
4. Flag any supplier from whom GSTR-2B credits are persistently missing — this is the first sign of a non-compliant vendor.

If you have already claimed ITC from a supplier now identified as risky, the defence is Section 16(2)(c) read with Rule 86A. The departmental instruction requires the officer to first proceed against the defaulting supplier. However, a Section 65 audit can still raise a demand pending that proceeding. Pre-emptive reversal with interest — and a recovery action against the supplier under commercial contract — is typically better than waiting for a demand.

Red Flag 10: Round-Sum Adjustments and Pattern Credit Notes

Audit analysts look for patterns that humans create but machines do not. Round-figure ITC reversals (exactly Rs. 5,00,000 each month, every month) suggest a manual plug rather than genuine reversal of specific invoices. Identical credit notes issued to the same buyer month after month point to either a real contractual arrangement (document it) or a mechanism to reduce output tax without a genuine commercial basis.

The especially scrutinised scenario: large credit notes raised in March (end of financial year) that sharply reduce the output tax for the year without a corresponding reduction in e-way bill movements or inventory. If your business has genuine year-end price adjustments or volume discounts, the commercial agreement, board resolution, and the GST treatment (GST Rule 26(1) on discounts) should be on file.

Worked Example: How Four Simultaneous Flags Created an ADT-01

Consider a Delhi-based electronics trader with FY 2025-26 turnover of Rs. 6.5 crore. Here is what the RMS would have seen:

No single flag here is catastrophic in isolation. Together, they paint a high-risk picture: possible suppression of turnover, excess ITC claim, and tainted vendor credits. The ADT-01 notice (Section 65(3)) requires at least 15 working days' advance notice and arrives as a message on the GST portal inbox as well as a physical letter to the registered address. The audit is to be completed within 3 months from commencement (extendable by 6 months by the Commissioner).

The cost of not acting in advance: If the audit confirms the GSTR-1 vs 3B gap of Rs. 72 lakh taxable value at 18%, the tax demand is Rs. 12.96 lakh. Interest at 18% for 15 months works out to Rs. 2.92 lakh. Penalty under Section 74 (fraud/suppression) can be up to 100% of tax — i.e., another Rs. 12.96 lakh. Total exposure: approximately Rs. 28.84 lakh, against a voluntary correction cost of near-zero if caught during monthly self-review.

Common Mistakes That Inflate Your Risk Score

• Filing GSTR-9 with a different turnover figure than GSTR-1 without an explanation note in Table 9 or 10 — this alone triggers reconciliation queries.
• Claiming ITC on IGST paid under RCM in the month before the RCM tax is actually remitted — Section 16(4) read with Section 9(3) does not allow this.
• Not recording debit note details in GSTR-1 when a price revision occurs post-supply — the gap between original invoice and final settlement appears as unexplained income.
• Using one GSTIN for both exempt and taxable supplies without maintaining input attribution records under Rule 42/43 — the ITC reversal calculation becomes a flashpoint in every audit.
• Assuming that GSTR-9C self-certification (mandatory above Rs. 5 crore turnover from FY 2020-21) is a formality — auditors use GSTR-9C disclosures as a road map for the audit scope.

What Happens Once an ADT-01 Arrives

1. Acknowledge receipt on the GST portal within the window specified in the notice.
2. Preserve all records for the audit period — purchase registers, sales registers, stock records, bank statements, e-way bill logs, and supplier GSTR-2B downloads.
3. Conduct an internal pre-audit review covering all ten flags above for the period under audit.
4. Prepare reconciliation statements — GSTR-1 vs books, GSTR-3B vs books, GSTR-2B vs ITC register, and GSTR-9 vs ITR.
5. Attend the audit at your registered place of business (or submit records physically/electronically as directed by the officer). The officer issues an audit report in Form GST ADT-02 within 30 days of completion.
6. If discrepancies are confirmed, a DRC-01A (pre-demand intimation for voluntary payment) or DRC-01 (formal demand) follows. Voluntary payment at the DRC-01A stage avoids a 100% penalty — the penalty under Section 73 (non-fraud) is only 10% of tax when paid before the formal notice.

Key Takeaways

• GSTR-1 vs GSTR-3B mismatch is the highest-weighted single trigger — reconcile it monthly, not annually.
• ITC claims beyond GSTR-2B have no legal cover since January 2022; every rupee of excess claim carries 18% interest exposure from the date of claim.
• E-way bill vs GSTR-1 divergence is machine-detected and near-impossible to explain away post-hoc — fix it at the point of entry.
• Cross-filing with income tax is now a live, automated flag; maintain a formal IT-GST turnover reconciliation note for every financial year before the ITR is filed.
• Supplier KYC is not optional — even one significant supplier with a cancelled GSTIN can taint a sizeable ITC claim and trigger an audit.
• Round-sum or patterned adjustments attract analyst attention; ensure every credit note and ITC reversal is traceable to a specific invoice or business event.
• Voluntary correction before ADT-01 costs interest only; correction after a formal demand can cost interest plus up to 100% penalty — the gap between the two is purely a function of how often you run your own reconciliation.