Your user authorizes your application to access their file storage service (e.g., Google Drive, Dropbox) via an OAuth or similar authorization flow through Merge Link.

Present the Merge File Picker in your application where users can browse through their files and folders in the connected file storage service and select the ones relevant for compliance.

Initiate the download of the selected files and folders from the file storage service. Use API endpoints like GET /files/{id} and GET/folders/{id} to access these, based on the files chosen by your user.

In your application, enable a feature where users can review the uploaded evidence and receive reports on their compliance status, highlighting any gaps or requirements.