NDIS compliance without the last-minute panic.
ClinicComply gives NDIS-registered providers a single platform to track Practice Standards compliance, organise audit evidence, and stay on top of registration deadlines. Built for Australian healthcare and disability support providers.
What we track for you
Every NDIS compliance requirement in one place. No spreadsheets. No missed deadlines.
What NDIS compliance actually involves
The National Disability Insurance Scheme (NDIS) is Australia's insurance-based approach to funding supports and services for people with disability. The NDIS Quality and Safeguards Commission oversees the quality and safety of supports delivered under the scheme, and sets the compliance requirements that registered providers must meet.
NDIS registration is not a one-time process. Providers must maintain ongoing compliance with the NDIS Practice Standards, manage worker obligations, report incidents to the Commission, and prepare for audits on a rolling three-year cycle. For certification pathway providers, there is also a midterm audit at the 18-month mark.
The Practice Standards cover four core areas: the rights and responsibilities of participants, governance and operational management, the support environment, and support provision. Every registered provider must demonstrate compliance with the modules that apply to their registration groups, using documented evidence.
For allied health providers, disability support organisations, and healthcare practices delivering NDIS-funded services, compliance is a day-to-day operational requirement. ClinicComply makes it manageable by keeping everything organised in one place.
Why NDIS compliance is harder than it looks
These are the compliance problems NDIS providers run into when they rely on spreadsheets and shared drives.
Audit preparation is a last-minute scramble
NDIS certification and verification audits require extensive evidence. Policies, procedures, staff records, incident logs, worker screening clearances. Providers spend weeks hunting down documents that should have been organised from day one.
ClinicComply keeps your evidence organised and audit-ready every day, not just in the week before an auditor arrives.
Incident reporting deadlines are unforgiving
Reportable incidents must be notified to the NDIS Commission within 24 hours for serious events including injury, abuse, neglect, and unlawful physical or sexual contact. Missing a reporting window is a direct compliance breach with real consequences.
Deadline tracking and automated reminders mean your team never misses a reporting window.
The 3-year registration cycle catches providers off guard
NDIS registration must be renewed every three years. Certification pathway providers also face a midterm audit at 18 months. Without a system tracking these dates, renewal and midterm deadlines sneak up on providers who are focused on delivering supports.
Accreditation countdown banners and deadline alerts keep your next audit date front of mind year round.
What NDIS-registered providers must maintain
Registration comes with ongoing obligations that apply every day, not just at audit time.
NDIS Practice Standards
The Practice Standards set out quality requirements across rights and responsibilities, governance, the support environment, and support provision. Every registered provider must demonstrate ongoing compliance with the modules relevant to their registration groups.
Worker Screening Checks
Workers in risk-assessed roles require a valid NDIS Worker Screening clearance. Providers must verify and record clearances for all applicable staff and maintain those records as a condition of registration.
Incident Reporting
Registered providers must record, respond to, and notify the NDIS Commission of all reportable incidents. Serious events require notification within 24 hours. Unauthorised restrictive practices must be reported within 5 business days.
Policies and Procedures
Providers must maintain current, documented policies across governance, risk management, complaints handling, human resources, and service delivery. These documents are central to both certification and verification audits.
NDIS Code of Conduct
All providers and workers must comply with the NDIS Code of Conduct, which covers dignity, privacy, safety, and honesty. Providers are responsible for training workers and maintaining a culture consistent with Code requirements.
Continuous Improvement
Providers must demonstrate a commitment to continuous improvement through complaints management, feedback collection, and internal review processes. Auditors assess how organisations use learnings to improve service quality.
Verification vs Certification: know your audit type
Your registration groups determine which audit pathway applies to your organisation. Both require solid evidence management.
Verification Audit
Desktop reviewLow-risk registration groups
A desktop-based audit for providers delivering low-complexity supports. The auditor reviews documentation remotely against relevant NDIS Practice Standards modules. Examples include non-face-to-face supports and certain therapeutic services.
- Policy and procedure documentation
- Relevant qualifications and registrations
- Insurance certificates
- Worker screening records
- Risk management documentation
Certification Audit
Desktop + onsiteHigh-risk registration groups
A comprehensive audit for providers delivering higher-risk supports such as specialist disability accommodation, behaviour support, or daily personal activities. Includes a desk review followed by onsite assessment and participant interviews.
- Full policy and procedure review
- Governance and leadership assessment
- Staff file and screening verification
- Incident and complaints records
- Participant outcome evidence
- Onsite observation and interviews
The midterm audit at 18 months
Providers on the certification pathway must complete a midterm audit 18 months after registration approval. Auditors focus on governance and operational management under Division 2 of the Core Module. Miss this date and your registration may be suspended. ClinicComply tracks this deadline automatically and alerts your team as it approaches.
One platform for your full NDIS compliance picture
ClinicComply includes the NDIS Practice Standards as one of 10 built-in compliance frameworks. Track your obligations, manage your evidence, and walk into any audit with confidence.
- NDIS Practice Standards checklist mapped to every compliance requirement
- Document and evidence library to organise policies, procedures, and staff records
- Deadline tracking with alerts for renewal dates, midterm audits, and incident reporting windows
- Team management with role-based access so the right people own the right tasks
- Compliance score dashboard showing your readiness at a glance
- Australian data stored in Sydney, never offshore
Your NDIS compliance at a glance
68% complete
NDIS compliance questions answered
- Who needs to be registered with the NDIS Commission?
- Providers delivering certain regulated supports, plan managers, and support coordinators working with NDIS participants under child safe environments requirements must be registered. From late 2025, mandatory registration is expanding to include Supported Independent Living (SIL) providers and platform providers. If you are unsure whether registration applies to your organisation, the NDIS Commission's website has a registration group guide.
- What is the difference between a verification and a certification audit?
- A verification audit is a desktop review for providers in low-risk registration groups. A certification audit is a more comprehensive process including both desktop and onsite components, required for providers delivering higher-risk supports. The type of audit you need depends on your registration groups.
- How long does NDIS registration last?
- NDIS registration is valid for three years. Certification pathway providers must also complete a midterm audit approximately 18 months after registration is approved. Both audits must be passed with an approved quality auditor for registration to continue.
- What happens if we fail a reportable incident deadline?
- Missing a reportable incident notification deadline is a breach of your conditions of registration. The NDIS Commission can take compliance action including issuing directions, imposing conditions, suspending registration, or pursuing civil penalties depending on the severity and pattern of non-compliance.
- Does ClinicComply include the NDIS Practice Standards framework?
- Yes. ClinicComply includes the NDIS Practice Standards as one of its 10 built-in compliance frameworks. Each standard is broken down into actionable checklist items with guidance text, evidence examples, and direct document linking so you can demonstrate compliance at audit time.
Your next accreditation visit starts today.
Join Australian GP clinics and medical practices that have replaced spreadsheets and email threads with a single healthcare compliance platform. Your free trial starts the moment you sign up.