Is a conflict of interest policy mandatory for NDIS registration?

Yes. Registered NDIS providers must demonstrate governance systems that manage organisational and individual conflicts of interest as part of the Core Practice Standards. The NDIS Commission's approved quality auditors assess this during both initial and renewal audits.

What is the difference between an actual, potential, and perceived conflict of interest?

An actual conflict exists now — a worker is currently making a decision that benefits a personal interest. A potential conflict may arise in foreseeable circumstances. A perceived conflict is one that a reasonable observer would consider a conflict, even if the worker believes they are acting impartially. NDIS policy should address all three.

Does a SIL provider who also provides support coordination need a special conflict of interest clause?

Yes. Providing both SIL and support coordination to the same participant creates a structural conflict of interest because the support coordinator's role is to act in the participant's interests, including helping them choose their SIL provider. The NDIS Commission has published guidance on this specific scenario, and auditors will look for explicit governance controls and participant-informed consent.

How often should a COI register be reviewed?

At minimum annually, and whenever a new disclosure is made. Best practice is to require all covered persons — including board members — to submit a declaration (or a nil return) at the start of each calendar or financial year, with the register formally reviewed and signed off by a designated governance officer.

What happens if a worker fails to disclose a conflict of interest under the NDIS Code of Conduct?

Non-disclosure is a breach of the NDIS Code of Conduct. The NDIS Commission can investigate the worker and, where a finding of breach is made, impose sanctions including banning orders. The provider can also face compliance action if it failed to have adequate systems in place to prevent or detect the non-disclosure.

Can a verbal disclosure satisfy the policy requirement?

No. Auditors require documented evidence of disclosure and the management decision taken. Verbal-only disclosures cannot be verified and will not satisfy the quality indicators. All disclosures must be recorded in the COI register with a date, description of the conflict, and a written record of how it was managed.

NDIS Conflict of Interest Policy: What Auditors Look For in 2026

Why Conflict of Interest Is a Priority Focus in NDIS Audits

Conflict of interest (COI) sits at the intersection of governance, safeguarding, and the NDIS Code of Conduct. For Supported Independent Living providers, the risk is especially acute: workers and managers often have long-term relationships with participants, influence over spending decisions, and access to personal and financial information. When those relationships are not managed transparently, participant choice and control is compromised.

The NDIS Commission's strengthened Practice Standards framework, progressively implemented from 2023 and reinforced through 2026 mandatory registration requirements, explicitly requires registered providers to demonstrate how they identify and address conflicts of interest at the organisational, management, and individual worker level. Approved quality auditors are trained to probe beyond the policy document and assess whether COI controls are genuinely embedded in operations.

What the NDIS Practice Standards Require

The NDIS Practice Standards are grouped into core and supplementary modules. Conflict of interest obligations arise primarily from:

Governance and Operational Management (Core module) — providers must have systems to manage risks to participants, including those arising from actual or perceived conflicts involving staff or the organisation.
The NDIS Code of Conduct — workers must act with integrity, avoid actual and potential conflicts of interest, and disclose those conflicts to their employer. Providers must implement and enforce the Code across their workforce.
Human Resources (Core module) — screening, supervision, and performance management processes must include mechanisms for identifying worker conduct risks, including undisclosed secondary employment or personal relationships with participants.
High Intensity Daily Activities and SIL Supplementary Module — for SIL specifically, governance requirements extend to how support coordination, housing decisions, and rostering are managed to ensure they serve participant goals rather than provider convenience or financial interest.

Exactly What an Approved Quality Auditor Checks

Auditors work from the NDIS Practice Standards Quality Indicators and corroborate policy claims against observable evidence. For conflict of interest, expect scrutiny across the following areas:

1. Policy Existence and Currency

Auditors verify that a written COI policy exists, is version-controlled, and has been reviewed within the provider's stated review cycle (typically annually). A policy that has not been updated since registration was first granted — or that references outdated legislative instruments — is a common finding.

2. Scope and Coverage

The policy must cover all relevant persons: board or governing body members, executive management, direct support workers, contractors, and volunteers. Auditors will ask whether the policy applies only to "employees" and probe whether contractor arrangements are separately addressed.

3. The Conflict of Interest Register

Most non-conformances in this area involve the absence or inadequate maintenance of a COI register. Auditors look for:

A current register with named disclosures, dates, and the nature of each conflict
Evidence that disclosed conflicts have been assessed and a management decision recorded
Signatures or acknowledgements from the disclosing person and the authorising officer
Entries reviewed at least annually, with nil-return declarations where applicable

4. Disclosure Obligations and Procedures

The policy must specify how and to whom workers disclose an actual, potential, or perceived conflict. Auditors look for clarity on escalation pathways — particularly where the conflict involves a senior leader or the governing body. If the CEO is the designated disclosure recipient but the CEO is the subject of the conflict, the policy must name an alternative (such as the Board Chair or a governance committee).

5. Management Actions and Recusal

Identifying a conflict is only the first step. Auditors assess whether the provider records what action was taken — recusal from a decision, reallocation of a role, or a documented determination that the risk is low and monitored. Policies that describe disclosure without specifying management responses are consistently flagged.

6. Staff Training and Awareness

Auditors request training records showing workers have received COI awareness training as part of induction and at least periodically thereafter. They may interview a sample of workers to test understanding of what constitutes a conflict, the disclosure process, and the consequences of non-disclosure.

7. Application to Specific SIL Scenarios

For SIL providers, auditors pay attention to scenarios such as:

Workers recommending or facilitating the purchase of goods or services from connected businesses
Providers who also act as support coordinators for participants they house (a structural conflict requiring explicit governance controls)
Rostering decisions that favour particular workers for financial or relationship reasons rather than participant need
Involvement of family members or close associates of management in participant decision-making

Common Non-Conformances Found During Audits

Non-Conformance	Why It Matters	How to Fix It
No COI register or register not maintained	Policy is unverifiable without a live record	Implement a dated register; require nil-return declarations annually
Policy does not cover contractors or volunteers	Incomplete scope leaves a governance gap	Expand coverage; include COI clause in contractor agreements
No escalation path when the conflict involves leadership	Creates a structural blind spot	Name the Board Chair or governance committee as the secondary recipient
Workers unaware of their disclosure obligations	Signals policy is not operationally embedded	Include COI training in induction; record completion dates
No documented management actions against disclosures	Disclosure alone does not constitute management	Record the decision (recusal, monitoring, or deemed low-risk) for every entry
Policy not reviewed in line with stated cycle	Outdated documents signal weak governance	Schedule annual review; record date and reviewer name in the document footer

What a Robust Conflict of Interest Policy Must Include

Auditors use quality indicators as a benchmark. A policy that is likely to achieve conformance will include, at minimum:

Purpose and scope — who the policy applies to and why it exists
Definition of conflict of interest — covering actual, potential, and perceived conflicts, with examples relevant to disability support
Disclosure obligations — when and how to disclose, including timeliness requirements
The disclosure recipient and escalation path — including an alternative where the primary recipient is the subject
Register requirements — format, retention period, and review frequency
Management responses — types of action that may be taken and how decisions are recorded
Consequences of non-disclosure — linked to the Code of Conduct and HR/disciplinary policy
Review cycle and version control — who owns the policy and when it was last updated

Practical Steps Before Your Next Audit

Pull your current COI policy and check the review date against today.
Open your COI register and verify every entry from the past 12 months has a recorded management decision — not just a disclosure date.
Check that your contractor service agreements contain a COI clause and a disclosure obligation.
Run a spot-check: ask two or three support workers what they would do if they realised a family member was supplying goods to a participant they support. Their answer reveals training effectiveness.
Confirm the escalation path is documented for conflicts involving the CEO, director, or governing body members.
Schedule and document your next policy review before the audit window opens.

SIL providers preparing for initial registration or re-registration under the 2026 mandatory framework often find that COI governance is one of several interlocking document gaps. The ndiscompliant.com.au 74-document audit-ready SIL compliance kit includes a ready-to-customise conflict of interest policy, a COI register template, and the supporting governance suite — built to the current Practice Standards quality indicators.

Key Takeaway

An NDIS conflict of interest policy that satisfies auditors is not a single document — it is a system of disclosure, recording, decision-making, and training that can be evidenced in real time. Auditors are looking for proof the system works, not proof that you wrote a policy. The register is your primary evidence. Keep it current, keep it complete, and make sure every worker knows how to use it.

Important: This article provides general guidance about NDIS compliance requirements. It is not legal or professional advice. Requirements may change as the NDIS Commission updates its policies and Practice Standards. Always verify current requirements with the NDIS Quality and Safeguards Commission or a registered NDIS consultant before making compliance decisions.