Update: We’ve added a new role in the policy: Auditor. Users with the Auditor role can view or comment on any report in a policy and export reports to CSV, along with being able to create and submit expense reports. Unlike Policy Admins, Auditors will not be able to invite new employees, make changes to policy settings, export to an accounting system or change the state of a report. This role is especially useful for companies who need to give auditors permission to view reports on a policy for a limited time.
You’ll see the now see the Auditor option when inviting employees to a policy:
You’ll also see the option in user settings in the People tab of the policy: