Does my SIL service need a certification or verification audit?

SIL (Supported Independent Living) requires a certification audit. Certification applies to all higher-risk support types where participants may be more vulnerable or where the provider has significant influence over daily life. You cannot opt into verification if your registration groups require certification.

How long does an NDIS certification audit take?

The timeline varies by provider size and complexity. Stage 1 (document review) typically takes one to two weeks. Stage 2 (on-site) can range from one day for a small single-site provider to several days across multiple sites. Resolving non-conformances and receiving the final Commission registration decision adds further time, so allow at least three to four months before your renewal deadline.

What happens if my service receives a major non-conformance at audit?

A major non-conformance means your service does not meet a Practice Standard in a way that poses a material risk. Registration cannot be granted or renewed until the non-conformance is resolved and the auditor is satisfied with your corrective action evidence. The NDIS Commission makes the final determination and may impose conditions or refuse registration.

How often do SIL providers need to be audited?

NDIS provider registration is typically renewed on a three-year cycle, and a full certification audit is required at each renewal. Mid-cycle, providers may be subject to Commission-initiated audits or monitoring if concerns arise. The Commission can also require an unscheduled audit following a serious incident or complaint.

Are the 2026 strengthened Practice Standards different from what we were audited against before?

Yes. The NDIS Commission has progressively strengthened the Practice Standards and associated evidence guides, raising expectations particularly around participant outcomes, governance oversight, incident management, and restrictive practice authorisation. Providers should review the current Practice Standards on the Commission's website and update their policies and evidence accordingly before their next audit.

Can the NDIS Commission audit us outside our regular renewal cycle?

Yes. The Commission has powers to conduct audits, investigations, and compliance monitoring at any time. Triggers can include a serious reportable incident, a pattern of complaints, or intelligence from other regulators. Providers should maintain audit-readiness as an ongoing discipline, not just in the months before renewal.

NDIS Certification vs Verification Audit (2026): What SIL Providers Must Know

The Two NDIS Audit Pathways: An Overview

When a provider registers with the NDIS Quality and Safeguards Commission, their registration is assigned to one of two audit pathways: certification or verification. The pathway is not chosen by the provider — it is determined by the risk profile of the support types (registration groups) the provider seeks to deliver.

Understanding the difference is not merely administrative. Getting the wrong audit type, or preparing for the wrong scope, can result in a failed audit, delayed registration renewal, or — in serious cases — cancellation of registration. For SIL providers operating in 2026 under the strengthened NDIS Practice Standards framework, the stakes are higher than ever.

Verification Audits: Lower-Risk Supports

Verification audits are designed for providers delivering lower-risk supports where participants have greater ability to direct their own services and the potential for harm is comparatively limited. Examples include plan management, support coordination (in some configurations), and a range of community participation supports.

What a verification audit involves

A desktop (document-based) review — no mandatory on-site visit is required, though an auditor may request one
Assessment against the core module of the NDIS Practice Standards only: rights and responsibilities, governance and operational management, the provision of supports, and the support provision environment
Submission of documentary evidence such as policies, procedures, insurance certificates, and sample records
Assessment conducted by an NDIS Commission-approved quality auditor

Verification audits are generally less resource-intensive than certification audits, but providers still need documented, current policies and evidence of actual practice — not just paper frameworks.

Certification Audits: Higher-Risk Supports Including SIL

Certification audits apply to registration groups involving higher-risk supports where participants may be more vulnerable, where the provider has significant influence over a participant's daily life, or where the consequences of poor practice are more severe. Supported Independent Living (SIL) sits firmly in the certification pathway.

Other registration groups requiring certification include specialist disability accommodation (SDA), behaviour support, early childhood supports, and any supports involving the use of restrictive practices.

What a certification audit involves

A staged audit process: Stage 1 (document review) followed by Stage 2 (on-site assessment)
Assessment against the core module of the Practice Standards plus all supplementary modules relevant to the provider's registration groups
For SIL providers, this typically includes the supplementary module for Support Provision Environment and, where restrictive practices are used, the module for Behaviour Support
Interviews with workers, participants, and management
Observation of supports being delivered in the home or facility
Review of a sample of participant records and critical incident documentation

The 2026 Strengthened Practice Standards: Key Changes for SIL Providers

From 2026, the NDIS Commission has progressively introduced strengthened Practice Standards and associated audit evidence guides. These changes reflect recommendations from independent reviews and raise the bar for what auditors expect to see at certification.

SIL providers should be aware of the following shifts in audit focus:

Participant outcomes, not just process compliance. Auditors are increasingly looking for evidence that supports are achieving meaningful outcomes for participants, not merely that documented policies exist.
Worker screening and training records. NDIS Worker Screening Checks must be current for all workers in risk-assessed roles, and induction and ongoing training records must be maintained and available on audit.
Incident management systems. The Commission expects a genuine closed-loop incident management process: reporting, investigation, corrective action, and evidence that learning has been applied. SIL providers must report certain incidents to the Commission within prescribed timeframes.
Restrictive practice authorisation. Where any restrictive practices are used in a SIL setting, providers must demonstrate written authorisation from the relevant state or territory body, a behaviour support plan developed by a qualified practitioner, and regular review. Missing authorisation is a common high-risk non-conformance at certification audit.
Complaints management. An accessible, functioning complaints system — with evidence it is promoted to participants and acted upon — is assessed at every certification audit.
Governance and quality management. The Board or senior leadership must demonstrate active oversight of quality and safety, not merely delegate it downward.

How Certification Audits Are Conducted: Stage by Stage

Stage 1 — Document Review

The auditor reviews your policy and procedure suite, governance documentation, staff training records, risk registers, and participant file samples against the applicable Practice Standards. This is conducted prior to the site visit and generates a list of areas requiring further examination on-site.

Stage 2 — On-Site Assessment

The auditor visits your SIL premises (typically across multiple sites if you operate more than one). This includes:

Interviews with the Responsible Person, managers, support workers, and where appropriate, participants and their nominees
Physical inspection of the support environment (fire safety, medication storage, emergency procedures, participant privacy)
Review of a sample of participant files including support plans, behaviour support plans, risk assessments, and incident records
Verification that practice on the ground matches documented policy

Audit Findings and Conformance

Following Stage 2, the auditor issues a report categorising findings as conformant, non-conformance (minor or major), or opportunity for improvement. Major non-conformances must be resolved before registration can be granted or renewed. The NDIS Commission makes the final registration decision — not the auditor.

Common Non-Conformances at SIL Certification Audits

Non-Conformance Area	What Auditors Find	How to Address It
Restrictive practices	No written authorisation, or plan not reviewed within required timeframe	Audit all behaviour support plans; confirm state/territory authorisation is current
Incident reporting	Incidents logged internally but not reported to Commission within required timeframe	Implement a reportable incident triage checklist; train all staff on categories
Worker screening	NDIS Worker Screening Check expired or not obtained before commencement	Maintain a screening register with expiry alerts; do not allow gap in coverage
Support plans	Plans not current, not person-centred, or not signed by participant	Schedule annual reviews with six-month touchpoints; use a plan review register
Complaints system	Complaints process not accessible or not promoted to participants	Use Easy Read materials; document that the process was explained at onboarding

Preparing Your SIL Service for Certification Audit

Map your registration groups to the correct Practice Standards modules — confirm with the Commission's registration guidance which supplementary modules apply to your specific supports.
Conduct an internal gap analysis — systematically compare your current policies and practice evidence against each standard before the auditor does.
Organise your documentary evidence — auditors need to locate documents quickly. A well-indexed policy and evidence folder reduces audit time and signals organisational maturity.
Prepare your team — brief all staff, especially frontline workers, on the audit process, their role, and how to speak to their own practice in participant-centred terms.
Review participant files against a checklist — ensure support plans, risk assessments, and consent documentation are current and signed.
Check restrictive practice authorisation status — this is a high-risk area; resolve any gaps before the audit date.
Confirm worker screening for all risk-assessed roles — no exceptions, no provisional arrangements left unresolved.

Providers seeking a comprehensive head start on documentation can refer to the 74-document audit-ready SIL compliance kit available at ndiscompliant.com.au, which is structured around the current Practice Standards modules and includes policies, procedures, and evidence templates mapped to certification audit requirements.

Choosing an Approved Quality Auditor

Only auditors approved by the NDIS Quality and Safeguards Commission can conduct NDIS registration audits. The Commission maintains a list of approved auditors on its website. Providers should contact multiple auditors to compare availability, experience in SIL services, and fees. The cost of a certification audit is a provider expense and is not NDIS-funded.

Engage your auditor well ahead of your registration renewal date — approved auditors are in high demand, particularly as 2026 renewal cycles converge for many providers registered under the original 2020 framework.

Important: This article provides general guidance about NDIS compliance requirements. It is not legal or professional advice. Requirements may change as the NDIS Commission updates its policies and Practice Standards. Always verify current requirements with the NDIS Quality and Safeguards Commission or a registered NDIS consultant before making compliance decisions.