IT audit is a technology that includes the process of checking and evaluating the information system owned by the company. The purpose of using IT audit is to make it easier for auditors to check data security, maintain system quality and control access to company information. Currently, many companies have constraints on the IT audit system they have so that they are very vulnerable to data misuse by irresponsible parties such as what happened to BPJS Kesehatan and Bank Syariah Indonesia in 2023. This case reflects the failure of the company's information system because they were careless in conducting IT audits . This article aims to analyze the effect of IT audit implementation in maintaining data integration and company performance. The method used is a literature study by utilizing relevant books and journals. The results and discussion show that the use of CAATs as part of IT audit techniques can be used to detect security gaps, monitor network activity, and evaluate data integrity on an ongoing basis, thereby helping companies identify and address cyber threats before greater losses occur. In addition, CAATs help companies ensure compliance with regulations related to data protection. With ongoing audits, CAATs can evaluate whether data protection policies and procedures have been followed properly by all parts of the organization so that company performance is more optimal.