Most organisations think EU grant risk starts during an audit.
Why?
Because that is when someone starts asking questions.
But questions don't create problems.
They reveal them.
By the time an auditor asks, "Can you show me the evidence for this cost?", the story is usually already written.
The interesting part is that nobody sets out to create that risk.
Nobody wakes up on a Monday morning and says:
"Today, let's make future reporting unnecessarily difficult."
Quite the opposite.
People are busy doing their jobs.
The grant is signed.
The proposal is approved.
The team is excited.
The project finally starts moving.
Congratulations.
And that is exactly when the real risk begins.
Not because people are careless.
Because people are focused.
Focused on deliverables.
Focused on deadlines.
Focused on getting the work done.
And when everyone is focused on getting the work done, very few people stop to ask:
"How are we going to prove all of this later?"
That question rarely feels urgent.
Until it does.
Invoices arrive.
Partners submit costs.
Researchers start working.
Procurement decisions are made.
Meetings happen.
Files are saved.
Or at least most of them are.
Everything feels productive.
Everything looks under control.
And often, it is.
The problem is that EU grants are not assessed only on what happened.
They are assessed on what can be demonstrated.
Those two things sound similar.
They are not.
A cost may be genuine.
A purchase may be necessary.
A subcontractor may have delivered exactly what was expected.
The work may be excellent.
But if the evidence cannot be found, understood, or connected to the action three years later, the discussion changes.
Now the conversation is no longer about the work.
It is about the proof.
And proof has a funny habit.
Everyone assumes it exists until someone asks for it.
One of the most common situations I encounter is surprisingly simple.
The project is progressing well.
The documentation is not.
Three years later, someone asks about a decision made during the first month.
The person who made the decision has moved on.
The email is somewhere in Outlook.
The supporting file is somewhere else.
And the person now responsible is trying to reconstruct history like an archaeologist examining fragments of an ancient civilisation.
Nobody enjoys that exercise.
Especially when the work was genuinely done.
This is why the first 30 days after grant award matter so much.
Not because that is when the problems appear.
Most problems don't appear for years.
The first 30 days matter because that is when habits are formed.
It is when responsibilities can become clear.
It is when good documentation practices can emerge.
It is when teams decide, consciously or unconsciously, how evidence will be created, stored, reviewed, and explained.
In other words:
The audit doesn't create the risk.
The audit simply discovers whether the first 30 days were used wisely.
The good news?
The first 30 days are also the cheapest, easiest, and least painful moment to get it right.