NDIS providers undergo different types of audits depending on their registration class, support type, and compliance history. Understanding which audit applies to you is the first step in effective preparation.
A desktop-based audit primarily reviewing documentation and evidence. Auditors assess your systems remotely without site visits or participant interviews.
Who needs this:
Focus: Documentary evidence of policies, procedures, and records management.
A comprehensive audit including on-site visits, staff interviews, participant interviews, and extensive documentation review. Much more rigorous than verification.
Who needs this:
Focus: Evidence that policies are implemented in practice, not just documented.
A reduced-scope audit conducted part-way through a certification period (typically 18 months after initial certification). Ensures ongoing compliance.
Who needs this:
Focus: Maintaining standards and addressing any previous non-conformities.
An unscheduled audit triggered by compliance concerns, serious incidents, complaints, or service changes. Often requires immediate response.
Common triggers:
Focus: Addressing specific compliance concerns or incident responses.
Different audits require different preparation strategies. We tailor our approach to your specific audit type and registration requirements.
Desktop audit readiness
Documentation Review
Comprehensive review of all policies against Practice Standards
Evidence Organization
Help you structure evidence folders auditors can navigate easily
Gap Remediation
Fix documentation gaps before submission to auditors
Mock Audits
Simulate the full audit experience including site visits and interviews
Staff Coaching
Prepare your team to answer auditor questions confidently
Practice Implementation Review
Verify that documented policies reflect actual practice
Site Preparation Guidance
Help you prepare physical environments for auditor visits
Key difference: Certification audits look for evidence of implementation, not just documentation. We help you demonstrate that your policies are embedded in daily practice.
Surveillance and compliance-triggered audit readiness
Corrective Action Tracking
Document evidence of how previous findings were resolved
Continuous Monitoring Evidence
Show ongoing compliance through regular reviews and updates
Rapid Response Planning
For out-of-cycle audits, immediate triage and evidence preparation
Whether you're preparing for your first audit, maintaining continuous compliance, or responding to an out-of-cycle audit, we tailor our approach to your specific needs.
Explore Our ServicesThe NDIS Practice Standards are a set of nationally consistent requirements that registered NDIS providers must meet to ensure quality and safe supports for participants.
These standards are developed and maintained by the NDIS Quality and Safeguards Commission and cover key areas including governance, service delivery, participant rights, and risk management. The Commission regularly reviews and updates these standards to ensure they remain relevant and effective.
Providers must demonstrate compliance with these standards through audits conducted by approved NDIS quality auditors as part of the certification and re-certification process.
Important: The official NDIS Practice Standards and supporting resources are published on the NDIS Commission website at www.ndiscommission.gov.au
Core modules that apply to all registered NDIS providers
Ensuring participants' rights are respected, promoted, and protected. Covers informed consent, privacy, dignity, and freedom from violence, abuse, neglect, and exploitation.
Effective governance structures, policies, and management systems that support quality service delivery and participant safety.
Delivering high-quality supports that are responsive to participants' needs, goals, and preferences. Covers assessment, planning, service agreements, and support delivery.
Additional requirements for providers delivering high-intensity or complex supports, including specialist behavior support and accommodation services.
For the complete Practice Standards and Quality Indicators, visit the NDIS Commission website:
www.ndiscommission.gov.au/providers/ndis-practice-standardsThe NDIS Quality and Safeguards Commission is undertaking significant reform of the Practice Standards framework
The Commission is modernizing the NDIS Practice Standards to make them clearer, more consistent, and better aligned with contemporary quality and safeguarding expectations.
Clearer, more accessible wording to help providers understand expectations
Streamlined structure removing overlap between standards
Improved consistency with other national quality frameworks
Stronger emphasis on participant outcomes and experience
Official Information: For detailed information about the reform process, consultation opportunities, and timelines, visit:
www.ndiscommission.gov.au/about-us/ndis-regulatory-reform/ndis-practice-standards-reformThe reform represents a significant shift in how compliance will be assessed. Providers should expect a transition period during which both old and new Standards may apply. Understanding the changes early will help you prepare more effectively.
The simplified language suggests a continued (or strengthened) focus on demonstrating actual compliance rather than just having policies in place. Auditors will likely place even greater emphasis on evidence that your documented processes reflect real practice.
The move toward better alignment with contemporary frameworks (like ISO standards) may reinforce risk-based approaches to compliance. Providers with well-developed risk registers and proactive control environments will be better positioned.
The reform period is an ideal time to review and refresh your compliance framework. Rather than waiting for the new Standards to be finalized, providers can use this time to strengthen foundations—ensuring policies are current, risk registers are robust, and staff understand the "why" behind requirements.
SummitPeak's approach: We monitor regulatory developments closely and help providers navigate transitions pragmatically. Our advisory services support you to build compliance frameworks that are resilient to change—not just reactive to the latest update.
Our advisory services support your understanding and implementation of Practice Standards
Identify where your current systems and processes may not meet specific Practice Standard requirements.
Guidance on what documentation and evidence auditors expect to see for each Standard.
Review your policies and procedures against Practice Standards to ensure compliance and consistency.
Build risk registers that demonstrate proactive management aligned to Practice Standard expectations.
Help your team understand the "why" behind the Standards and how to demonstrate compliance in practice.
Conduct internal audits against selected Standards before the certification auditor arrives.
About our advisory role
SummitPeak Risk Advisory is not an approved NDIS Quality Auditor. We provide independent advisory services to help you understand and implement NDIS Practice Standards.
All NDIS certification, re-certification, and mid-term audits are conducted by quality auditors approved by the NDIS Quality and Safeguards Commission. Only the Commission and approved auditors can make compliance determinations and certification decisions.
Our role: We help you interpret the Standards, identify gaps in your current systems, prepare evidence that demonstrates compliance, and implement corrective actions to close findings—independent advice to support your certification journey.