Do SIL providers need a separate complaints policy or can it be combined with the incident management policy?

These can be in a single combined document provided the distinction between complaints and reportable incidents is clearly defined, and the escalation triggers between the two processes are explicit. Many auditors prefer combined policies as they demonstrate integration, but both functional pathways must be fully described.

What timeframes do NDIS providers need to meet for acknowledging and resolving complaints?

The NDIS Complaints Management and Resolution Rules 2018 require providers to acknowledge complaints and take action to resolve them within a reasonable timeframe. Most providers set internal targets of 24-48 hours for acknowledgement and up to 30 days for resolution of complex complaints, but the Rules do not prescribe fixed numbers — your policy must state your chosen timeframes and then consistently meet them.

Can a participant complain directly to the NDIS Commission without going through the provider first?

Yes. Participants can contact the NDIS Commission at any time without first raising the matter with their provider. Providers are obligated to inform participants of this right at commencement of service and whenever a participant raises a concern. Attempting to discourage direct Commission contact is itself a compliance breach.

What happens if an auditor finds our complaints management system is non-conformant?

A non-conformance in complaints management will typically result in a corrective action request with a timeframe to provide evidence of remediation. Severe or systemic gaps may result in conditions placed on your registration or referral for further NDIS Commission investigation. Providing a corrective action plan and evidence of improvement usually resolves minor non-conformances.

Are there specific requirements for how long we need to keep complaints records?

Under the NDIS Practice Standards and relevant privacy legislation, providers must retain records for a minimum period — for adult participants this is generally seven years from the date of the last entry, and longer for records relating to participants who were minors at the time of service. Your policy should state the retention period applicable to your jurisdiction.

Does every staff member need to be trained in complaints handling, including casuals and agency workers?

Yes. The NDIS Commission's worker obligations extend to all workers delivering NDIS supports, regardless of employment arrangement. Auditors commonly interview front-line and casual staff precisely because providers sometimes omit them from training. Induction-level complaints training and refreshers should be documented for all workers.

NDIS Complaints Management Policy: What Auditors Look For

Why Your Complaints Management Policy Is an Audit Priority

For SIL providers and disability support organisations, complaints management sits at the intersection of participant rights, quality of care, and NDIS Commission regulatory obligations. It is one of the most scrutinised areas in any certification or verification audit because an ineffective complaints system directly harms participants — and auditors know it.

Under the NDIS Practice Standards, all registered NDIS providers must have a complaints management system that is genuinely accessible and functional, not merely a policy document filed away in a folder. The strengthened Practice Standards and accompanying Quality Indicators that took effect progressively from 2023 onwards (with further guidance consolidated ahead of the 2026 mandatory registration requirements) place even greater weight on provider accountability and continuous improvement.

This article walks through the specific elements an approved quality auditor (AQA) will examine, the evidence you need to produce, and the most common non-conformances found during audits.

The Regulatory Foundation

Your complaints management obligations flow from two main sources:

NDIS Practice Standards — Core Module, Support Provision: Providers must have a system to receive, acknowledge, assess, and resolve complaints. The standard requires that participants are told how to make a complaint at the commencement of service and throughout service delivery.
NDIS Code of Conduct: All NDIS workers are required to promptly take action in relation to any concerns about the quality and safety of supports. This creates a direct obligation on individual staff, not just the organisation.
NDIS (Complaints Management and Resolution) Rules 2018: These rules set the specific procedural requirements for registered providers, including timeframes, participant protection, and escalation to the NDIS Commission when complaints cannot be resolved internally.

SIL-specific obligations exist under the High Intensity Daily Personal Activities Practice Standard, which sits within the specialist support category. Auditors examining a SIL provider will apply both the Core Module and the applicable specialist support standards simultaneously.

What Auditors Check: The Eight Key Areas

Approved quality auditors are trained to assess your complaints system against specific Quality Indicators. Below are the eight areas most commonly examined during a certification audit or mid-term review.

1. Documented Policy and Procedure

Auditors will request your complaints management policy as a primary evidence document. They look for:

A clear definition of what constitutes a complaint versus a compliment, feedback, or incident
Named roles with responsibility for receiving, triaging, investigating, and resolving complaints
Step-by-step internal resolution procedure, including timeframes for acknowledgement and resolution
Escalation pathways — both internal (to management) and external (to the NDIS Commission, advocates, or the AAT)
Provisions protecting complainants from any adverse action as a result of making a complaint
A review cycle (typically annual or after a significant complaint)

A common non-conformance: the policy exists but has never been reviewed since initial registration. Auditors look at the version date and will ask who reviewed it and when.

2. Accessibility for Participants and Their Representatives

The NDIS Commission's guidance is explicit — the complaints process must be accessible to all participants regardless of communication ability, language, or disability. Auditors will check:

Whether the policy (or a plain-English/Easy Read summary) is provided to participants at service commencement
Whether complaints can be made verbally, in writing, via a third party, or through a support person
Whether translated versions or alternative formats are available or can be obtained
Whether the NDIS Commission's contact details are clearly communicated as an independent pathway

3. Evidence of Complaints Received and Actioned

This is where many providers stumble. A policy document alone is insufficient. Auditors will examine your complaints register or log to confirm:

Complaints are being recorded, even verbal or informal ones
Each entry captures the date received, nature of complaint, response actions, resolution, and outcome
Timeframes for acknowledgement and resolution are being met
The person who complained was informed of the outcome

A provider who has been operating for two years with zero recorded complaints will attract immediate auditor scrutiny — this typically indicates complaints are being deflected or not recognised as complaints rather than genuine satisfaction.

4. Staff Training and Awareness

Under the strengthened Practice Standards and the updated worker screening and training expectations, auditors will ask staff directly about the complaints process during interviews. They check:

Whether all staff — including casual and agency workers — have received training on how to receive and handle complaints
Whether staff know who to escalate to internally
Whether staff are aware of the NDIS Commission as an independent complaints body
Training records and the date of most recent refresher training

5. Participant Notification at Service Commencement

The Complaints Management Rules require that participants are told about the complaints process at the start of service. Auditors look for:

Reference to complaints in the service agreement or welcome pack
A signed acknowledgement (or documented verbal explanation for participants with limited literacy)
Participant-facing information that includes the NDIS Commission's free-call number and online portal

6. Linkage to Incident Management

Complaints and incidents are distinct but closely related. Auditors assess whether your organisation has clear guidance on when a complaint triggers an incident report — for example, when a complaint discloses an allegation of abuse, neglect, or a reportable incident under the NDIS Act. The two systems must be integrated, not siloed.

7. Continuous Improvement Loop

This is the element most frequently cited as a non-conformance in SIL audit reports. Providers must demonstrate that complaints data is actually used to improve services. Auditors look for:

Complaints discussed at regular management or team meetings (with minutes as evidence)
Identified themes or patterns triggering policy or practice changes
Documented improvements traceable back to a complaint or complaint trend

8. NDIS Commission Complaint Notifications

Where complaints cannot be resolved internally, or where a complaint involves a serious allegation, providers must inform complainants of their right to escalate to the NDIS Commission. Auditors check whether this pathway is documented and whether any such referrals were handled appropriately.

Common Non-Conformances Identified in Audits

Non-Conformance	What Auditors Find	The Fix
Outdated policy	Policy not reviewed in over 12 months, no evidence of review	Schedule annual review, document the reviewer and date
No complaints register	Verbal complaints not recorded; only formal written complaints logged	Create a register capturing all complaints regardless of form
Inaccessible process	Policy uses legal language; no Easy Read or plain-language version	Develop a one-page participant-friendly summary
Staff unaware	Front-line staff cannot describe the complaints process during interviews	Include complaints handling in induction and annual refreshers
No improvement evidence	Complaints closed but no organisational learning documented	Add a standing complaints agenda item to quality meetings
Complaint/incident silo	No documented trigger for when a complaint becomes a reportable incident	Cross-reference both policies with clear decision criteria

What a Compliant Complaints Policy Looks Like: Key Clauses to Include

While every provider's policy will reflect their specific context, an audit-ready complaints management policy for a SIL provider should include clauses addressing the following at minimum:

Purpose and Scope — who the policy applies to and what it covers
Definition of a Complaint — distinguishing complaints from feedback, incidents, and service inquiries
Rights of Complainants — confidentiality, no adverse action, right to support from an advocate
How to Make a Complaint — multiple channels (verbal, written, online, via representative), formats for people with disability
Complaint Receipt and Acknowledgement — timeframe for acknowledging receipt
Assessment and Investigation — who investigates, how conflicts of interest are managed, timelines
Resolution and Outcome Communication — timeframe for resolution, how the complainant is informed
Escalation and External Pathways — internal escalation, NDIS Commission, NDIS Quality and Safeguards, AAT
Continuous Improvement — how complaints data feeds into quality reviews
Record Keeping — retention period, who maintains the register, privacy obligations
Policy Review — frequency and responsibility

Preparing Your Evidence File Before Audit

When an auditor arrives (or begins a desktop audit), prepare a dedicated evidence folder containing: your current signed and dated policy; the complaints register for the audit period; training records showing all staff have completed complaints handling training; a sample service agreement showing complaints information was provided to participants; and at least two examples of meeting minutes where complaints data was discussed and any improvement actions recorded.

If you are building or overhauling your complaints system ahead of the 2026 mandatory registration requirements, ndiscompliant.com.au offers a 74-document audit-ready SIL compliance kit that includes a pre-built complaints management policy, complaints register template, participant information sheet, and linked incident management procedure — all mapped to the current NDIS Practice Standards.

Final Checklist: Audit-Ready Complaints Management

Policy documented, dated, signed, and reviewed within the last 12 months
Complaints register in use, capturing all complaints including verbal
Participant-facing information provided at service commencement and on request
Easy Read or plain-language version available
NDIS Commission contact details included in participant information
All staff trained and able to describe the complaints process
Clear trigger documented for complaint-to-incident escalation
Complaints data reviewed at regular quality meetings with minutes as evidence
Documented improvements traceable to complaints received

Important: This article provides general guidance about NDIS compliance requirements. It is not legal or professional advice. Requirements may change as the NDIS Commission updates its policies and Practice Standards. Always verify current requirements with the NDIS Quality and Safeguards Commission or a registered NDIS consultant before making compliance decisions.