Is your NDIS practice truly audit-ready?
Answer 10 plain-language questions and get a personalised compliance score across the areas the NDIS Quality and Safeguards Commission actually audits. No account. No credit card. Three minutes.
Start your NDIS Provider Compliance Health Check
Answer 10 plain-language questions about how your organisation handles the areas the NDIS Quality and Safeguards Commission audits most often: worker screening, incident management, complaints, restrictive practices, participant rights, insurance, quality management, and emergency planning.
NDIS audits do not fail because of clinical mistakes. They fail because of missing paperwork.
In the most recent public Annual Report from the NDIS Quality and Safeguards Commission, the most common audit findings were not clinical incidents or participant harm. They were gaps in documentation: out-of-date service agreements, missing worker screening records, untested business continuity plans, and unreported incidents that should have been notified to the Commission within 24 hours.
Most NDIS providers we talk to are doing the right thing clinically. The compliance gap is almost always in how the work is recorded, not how it is done. That is good news. It means the gap between where you are and audit-ready is a set of discrete tasks, not a change in your clinical model.
The health check above is built to surface those discrete tasks. Your score tells you how exposed you are. The area breakdown tells you where to start. The priority actions tell you what to do next. If you want a system to manage the evidence, the policies, the incident register, and the audit export in one place, that is what ClinicComply is built for.
The 10 audit areas we benchmark you against
These are the areas most commonly cited in NDIS Commission audit findings. Each maps to one or more NDIS Practice Standards.
Registration
NDIS registration must cover every support class you deliver. Scope creep is one of the most common audit findings. If you have added a new support type, your registration must be updated before you deliver it.
Worker Screening
All workers and volunteers delivering NDIS supports under a registered provider need a current NDIS Worker Screening Check. Track clearance expiry dates centrally; stale clearances are a frequent non-conformance.
Incident Management
You must have a documented incident management system. Certain incidents (abuse, neglect, unlawful physical or sexual contact, use of restrictive practices outside authorisation, serious injury, and unexpected death) must be reported to the NDIS Commission within 24 hours.
Complaints Handling
Complaints processes must be accessible to participants and their families, documented in service agreements, and referenced in plain language. Unresolved or untracked complaints are a red flag for assessors.
Code of Conduct
All workers must receive NDIS Code of Conduct training at induction, and the Commission expects ongoing refresher training. Keep attendance records. This applies to registered and unregistered providers alike.
Restrictive Practices
Any regulated restrictive practice must be authorised by the relevant state or territory body and reported to the NDIS Commission monthly. Unauthorised use is one of the most serious compliance breaches possible.
Participant Rights
Registered providers must issue written service agreements that outline participant rights, including the right to access an advocate, lodge a complaint, and be free from harm. Verbal agreements are not sufficient.
Insurance
Registered providers must hold a minimum of $10M public liability cover plus appropriate professional indemnity. Certificates of currency should be accessible. Gaps here stop an audit before it starts.
Quality Management
You need a documented quality management system with at least annual review cycles. Continuous improvement evidence, including feedback loops and corrective actions, is expected under the Practice Standards.
Emergency Planning
Emergency and business continuity plans must cover participant safety during power outages, natural disasters, pandemics, and staff unavailability. Untested plans are treated as partial compliance only.
Deterministic, transparent, and built around real audit risk.
Every question offers four options, each mapped to a score between 0 and 10. The maximum possible total is 100. Partial compliance receives partial credit. No AI is used. The scoring logic is hand-coded against the NDIS Practice Standards and public Commission guidance.
What to do with your results
A health check is a starting point, not a finish line. Here is the sequence NDIS providers most commonly follow after getting a score.
Triage by colour
Tackle red items first. They are the highest-likelihood audit findings and the most serious compliance risks. Amber items are second priority.
Assign owners and dates
For each gap, nominate a named owner and a realistic target date. Vague timelines are the single biggest reason compliance actions fall through.
Build the evidence
Policies are the starting point. You also need training records, meeting minutes, incident logs, audit cycles, and current service agreements on file.
Track progress weekly
Use a live dashboard, not a spreadsheet. Progress decays without a system. Weekly check-ins keep gaps from re-opening.
Retake in 8 to 12 weeks
Run the health check again after your first block of remediation. The score should move. If it has not, something is blocking progress.
Export an evidence pack
When your audit is scheduled, export everything to one PDF or folder. Your assessor is looking for evidence in a logical shape, not a scattergun.
Everything NDIS providers ask us about the health check.
If your question is not here, email us. A real human replies within the business day.
What is the NDIS Provider Compliance Health Check?
It is a free 10-question self-assessment that scores an NDIS provider's current compliance against the areas the NDIS Quality and Safeguards Commission audits most often. It covers registration, worker screening, incident management, complaints handling, Code of Conduct training, restrictive practices, participant rights and service agreements, insurance, quality management, and emergency and business continuity planning. It takes about three minutes to complete and produces a score out of 100 with a traffic-light grade and an area-by-area breakdown.
Which NDIS Practice Standards does this tool cover?
The questions map to the four NDIS Practice Standards core modules: Rights and Responsibilities, Provider Governance and Operational Management, Provision of Supports, and the Provision of Supports Environment. Specific areas tested include NDIS registration coverage, NDIS Worker Screening Checks, incident management and mandatory 24-hour Commission reporting, complaints handling, restrictive practices authorisation and reporting, service agreements, insurance minimums for registered providers, documented quality management, and emergency and business continuity planning. The tool is designed for small and mid-size registered providers preparing for a verification or certification audit, and is also useful for unregistered providers assessing their NDIS Code of Conduct baseline.
Is the NDIS compliance quiz free?
Yes. The tool is completely free to use. You do not need an account, a credit card, or a paid ClinicComply subscription. Results are visible on screen after you answer the questions. We ask for your email only if you want a copy sent to your inbox, and you can opt out of further emails at any time.
Is my data stored, and where?
Your answers are processed in your browser. If you choose to have the results emailed to you, your email address, name, and score are stored in our Australian infrastructure (Supabase, Sydney region ap-southeast-2) alongside the rest of ClinicComply, and added to our email system (Resend) so we can send the results and, if you opt in, occasional NDIS compliance updates. We do not sell, rent, or share your data with third parties. You can unsubscribe at any time and request deletion by emailing hello@cliniccomply.com.au.
How is the score calculated?
Each question offers four options that map to a score between 0 and 10. The highest score for each question is 10, giving a maximum of 100. Partial compliance options receive partial credit (typically 3 to 6). Your raw score is converted to a percentage (0 to 100). Scores of 75 and above are graded Strong Compliance. Scores between 45 and 74 are graded Moderate Risk. Scores below 45 are graded High Risk. The scoring logic is deterministic and hand-coded; no AI is used.
Will this tool help me pass my NDIS audit?
The tool identifies the highest-likelihood audit findings and surfaces them as red or amber items in the area breakdown. It does not pass an audit for you. To pass an NDIS audit, you need the underlying evidence in place: documented policies, signed service agreements, current worker screening records, incident register entries with Commission notifications where required, complaints logs, Code of Conduct training attendance, restrictive practices authorisation documents, certificates of currency for insurance, a documented quality management system, and a tested emergency plan. Use the health check to prioritise which evidence to build first.
Does this cover verification audits, certification audits, or both?
Both. The question set is designed to be useful regardless of whether you sit in the verification (lower-risk supports) or certification (higher-risk supports including personal care, SIL, SDA) audit pathway. Certification providers will face deeper scrutiny on incident management, restrictive practices, and participant rights, so red items in those areas should be treated as urgent if you are on the certification pathway.
I am an unregistered NDIS provider. Is this still relevant?
Yes, with caveats. Unregistered providers are not audited against the NDIS Practice Standards, but they must still comply with the NDIS Code of Conduct and meet reasonable and necessary standards to continue billing plan-managed or self-managed participants. The questions on Code of Conduct training, incident management, complaints handling, restrictive practices (where relevant), insurance, and participant rights are all applicable. The registration and worker screening items are less applicable, though many plan managers now require NDIS Worker Screening Checks as a condition of engagement.
What should I do after I get my score?
Three practical next steps. First, look at the red items. These are your highest-likelihood audit findings and most serious compliance risks. Assign each one an owner and a target date. Second, look at the amber items. These are partial compliance gaps where a documented process or recent review would close the loop. Third, build or refresh the underlying evidence. Policies, training records, meeting minutes, incident register entries, and audit cycles are all things an assessor will ask to see. ClinicComply provides NDIS-specific templates, registers, and an audit-ready evidence pack if you want a system to manage this in one place.
How often should I retake this self-assessment?
We recommend retaking the health check every quarter, before each internal governance meeting, and 8 to 12 weeks before any scheduled NDIS audit or mid-term visit. Most registered providers find that running the tool quarterly catches drift in worker screening renewals, training currency, and policy review cycles before those drifts become audit findings.
Is this tool a substitute for an NDIS compliance audit or legal advice?
No. The NDIS Provider Compliance Health Check is an educational self-assessment tool. It is not an NDIS audit, legal advice, or a substitute for consultation with an approved quality auditor or the NDIS Quality and Safeguards Commission. For binding advice, particularly around restrictive practices, reportable incidents, or worker screening decisions, consult the NDIS Commission, the relevant state or territory authorising body, and where appropriate your legal advisor.
Keep going from here.
The NDIS Health Check is one of a growing library of free Australian compliance tools from ClinicComply. Browse the hub or jump straight into a free 30-day trial of the full platform.