The goal of compliance reports is to answer two things: "How am I doing" and "How effectively am I doing it" especially with regard to helping the business understand current and future threats.
This recipe gives an overview on how to plan compliance reports.
Research the regulatory requirements using your country's respective laws, industry standards, and regulation. This will ensure your reports are relative only to your business and technical compliance objectives. For example, there are standards such as SOX section 404 that demand reports with certain criteria.
There are going to be at least two different types of reports you must plan for:
Compliance status or audit reports
Stakeholder-targeted reports