What is included under High Intensity Daily Personal Activities in the NDIS Practice Standards?

High Intensity Daily Personal Activities (HIDPA) covers complex health-related personal care tasks that carry elevated clinical risk. Examples include complex bowel care, urinary catheter management, enteral feeding and tube management, tracheostomy care, ventilator management, subcutaneous injections, and complex wound management. These are defined under Module 2A of the NDIS Practice Standards.

Who can verify worker competency for HIDPA procedures?

Competency for HIDPA procedures must be verified by a suitably qualified health professional — typically a registered nurse or relevant allied health practitioner. The verification must be specific to the procedure being performed for the individual participant, not just a generic assessment of clinical training.

How often do HIDPA risk management plans need to be reviewed?

The NDIS Practice Standards do not prescribe a fixed interval, but providers are expected to review risk management plans whenever there is a change in the participant's health status, following any incident or near-miss, and at least at the frequency stipulated by their quality management system. Auditors expect evidence of meaningful, triggered reviews — not just annual tick-boxes.

Do HIDPA procedure complications need to be reported to the NDIS Commission?

Many HIDPA-related adverse events will meet the definition of a reportable incident under the NDIS (Incident Management and Reportable Incidents) Rules. Providers should assess each event against the reportable incident categories and lodge a report with the Commission within the required timeframe if the threshold is met. Failure to report is itself a non-conformity.

Can a small SIL provider without in-house nursing staff still register for HIDPA?

Yes, but the provider must have a formal arrangement with a suitably qualified health professional who provides clinical governance and competency verification. The arrangement must be documented, active, and evidenced — not merely a contact name in a policy document. The oversight professional needs to be demonstrably engaged with participant-specific plans.

What happens if an auditor finds a non-conformity in HIDPA during a certification audit?

The auditor will record the non-conformity in their audit report and the provider will be required to submit a corrective action plan within a defined timeframe. Depending on the severity, the NDIS Commission may impose conditions on registration, defer registration approval, or in serious cases refer the matter for regulatory action. Addressing non-conformities promptly and with documented evidence is essential.

High Intensity Daily Personal Activities: Common Audit Non-Conformities

Why High Intensity Daily Personal Activities Attract Elevated Audit Scrutiny

High Intensity Daily Personal Activities (HIDPA) sits within Module 2A of the NDIS Practice Standards and represents one of the highest-risk support types a registered provider can deliver. Unlike standard daily personal activities, HIDPA covers complex health-related tasks — including but not limited to complex bowel care, urinary catheter management, enteral feeding, tracheostomy management, ventilator management, subcutaneous injections, and wound care beyond routine dressing changes.

Because errors in these tasks can result in serious injury, hospitalisation, or death, the NDIS Quality and Safeguards Commission applies a higher threshold of evidence during audits. Approved quality auditors examine not only whether a policy exists, but whether it is operationally embedded — meaning workers follow it, documentation proves it, and participants experience its protections.

Under the strengthened NDIS Practice Standards framework progressively rolling out through 2025 and 2026, expectations around clinical oversight, worker competency, and participant co-design have been raised considerably. Providers who treat HIDPA compliance as a paperwork exercise rather than a practice-quality discipline are the ones most commonly issued with non-conformities.

The Top 7 Non-Conformities Auditors Find in HIDPA

1. Worker Competency Not Verified Against the Specific Procedure

The Practice Standards require that workers delivering HIDPA have demonstrable skills and knowledge for the specific health support tasks they are performing for a specific participant. A generic certificate of completion for a training course — even an accredited one — does not satisfy this requirement on its own.

Auditors look for:

An individualised competency assessment conducted by a suitably qualified person (often a registered nurse or allied health professional) that confirms the worker can safely perform the exact procedure described in the participant's support plan.
Records showing the assessment occurred before the worker began delivering that support independently.
Evidence of regular competency re-verification, particularly when a participant's health status changes.

Common gap: Providers hold training certificates but cannot produce individualised, procedure-specific competency sign-off records. Certificates and completed competency records must be kept separately and cross-referenced to each worker's participant allocation.

2. Risk Management Plans Are Generic or Outdated

Every participant receiving HIDPA must have a documented, individualised risk management plan that reflects their current health status, known complications, and emergency protocols. Auditors regularly find that these plans:

Were completed at intake and never reviewed following a health change or incident.
Use template language that is not personalised to the participant's specific condition or the particular HIDPA procedure being delivered.
Omit escalation triggers — that is, the specific clinical signs that should prompt a worker to contact a nurse, call an ambulance, or cease the procedure.

Fix: Build a scheduled review cycle into your quality management system, triggered at minimum by any incident, hospitalisation, or treating practitioner recommendation. Date-stamp every revision and capture the reviewer's credentials.

3. Absent or Inadequate Clinical Governance Arrangements

The NDIS Practice Standards require that providers have governance arrangements in place to ensure HIDPA is delivered safely. In practice, this means the organisation must have access to suitably qualified clinical oversight — not merely as a theoretical resource but as an active, documented function.

Auditors look for evidence such as:

A named clinical lead or consultancy arrangement with a registered health professional who reviews procedures and provides guidance.
Meeting records or correspondence showing the clinical overseer has reviewed participant support plans and signed off on HIDPA procedures.
A process for workers to escalate clinical concerns to that person promptly.

Common gap: Small providers often list a nurse contact in the staff directory but cannot demonstrate any structured clinical governance activity — no records of reviews, no sign-offs, no escalation logs.

4. Health Support Procedures Incomplete or Not Signed Off by a Health Professional

Each HIDPA must be underpinned by a written procedure that details how the support is to be delivered safely for that individual participant. These procedures should be developed or approved by a suitably qualified health practitioner — not authored solely by the support worker or care coordinator.

Non-conformities commonly arise when:

The procedure document is unsigned or undated by a health professional.
The procedure does not match the participant's current prescription or clinical advice (for example, enteral feeding rates that differ from the dietitian's current plan).
There is no version control, making it impossible to confirm which version workers are following.

5. Incident Reporting Does Not Capture HIDPA-Specific Events

Providers are required to report certain incidents to the NDIS Commission, and the threshold for HIDPA-related incidents is significant. A procedure complication, near-miss, or equipment failure in the context of HIDPA typically meets the definition of a reportable incident and must be recorded and reported appropriately.

Auditors frequently identify:

Internal incident registers that categorise HIDPA complications as minor incidents and fail to escalate them to the Commission.
No root cause analysis or corrective action plan attached to HIDPA-related incidents.
Workers who did not know they were required to report the event at all.

6. Participant and Family Not Involved in Procedure Development or Review

The Practice Standards place participant choice and control at the centre of service delivery. For HIDPA, this means participants (and their nominees or families, where appropriate) should be involved in developing and reviewing their health support procedures — not simply presented with a document to sign.

Auditors look for evidence of genuine co-design: notes from planning conversations, participant confirmation that they understand and consent to the approach, and documentation that they were offered the opportunity to suggest modifications.

7. Equipment Maintenance Records Are Missing or Gaps Are Not Investigated

Where HIDPA involves equipment — suction machines, feeding pumps, ventilators — providers must maintain servicing and calibration records. Auditors also expect evidence that any equipment malfunction is treated as a safety event and investigated accordingly.

Common gap: Equipment log books are kept inconsistently, and there is no process for flagging when servicing intervals have lapsed.

Practical Steps to Close These Gaps Before Your Audit

Map every participant receiving HIDPA to the specific procedure types being delivered and confirm a current, signed health support procedure exists for each.
Pull each worker's competency file and confirm there is a procedure-specific competency assessment, not just a training certificate, cross-referenced to their current participant allocation.
Audit your clinical governance documentation — produce a log showing when the clinical overseer last reviewed each participant's HIDPA plan and what actions resulted.
Run an incident register filter for the past 12 months looking for any event involving HIDPA. Confirm each was classified correctly and, where reportable, lodged with the Commission within the required timeframe.
Review equipment service records against the manufacturer's schedule and log any overdue items as corrective actions with an assigned owner and due date.
Schedule a participant co-design review for every HIDPA plan, capturing the conversation and any updates that resulted.
Version-control all HIDPA procedure documents and ensure the current version is the only one accessible to workers.

A Note on the Strengthened Practice Standards and 2026 Registration

The NDIS Commission has been progressively implementing strengthened Practice Standards and strengthened audit processes. Providers re-registering or applying for registration from 2025 onwards will be assessed against updated quality indicators that place greater emphasis on participant outcomes, clinical safety, and evidence of continuous improvement. For HIDPA specifically, the expectation is not merely that systems exist — auditors will probe whether those systems are alive in day-to-day practice.

Providers who have not conducted an internal gap analysis against the current Module 2A requirements are taking a significant risk entering an audit cycle. Gathering evidence of compliance retrospectively under audit pressure is considerably harder than building it into routine operations.

If your organisation needs a structured starting point, the 74-document audit-ready SIL compliance kit available at ndiscompliant.com.au covers HIDPA procedure templates, competency assessment frameworks, clinical governance policy, and incident classification tools — all formatted to align with current Commission requirements.

Summary: What Auditors Want to See

Requirement Area	Evidence Auditors Seek
Worker competency	Signed, procedure-specific competency assessment per participant
Risk management	Individualised, dated plan with escalation triggers
Clinical governance	Named overseer + records of active review activity
Health support procedures	Health-professional-signed, version-controlled documents
Incident reporting	Correct classification + Commission notification where required
Participant involvement	Co-design notes, consent records, opportunity to review
Equipment maintenance	Current service log, malfunction event records

Important: This article provides general guidance about NDIS compliance requirements. It is not legal or professional advice. Requirements may change as the NDIS Commission updates its policies and Practice Standards. Always verify current requirements with the NDIS Quality and Safeguards Commission or a registered NDIS consultant before making compliance decisions.