NDIS Audit Types Explained:
Verification vs Certification

If you're planning to become a registered NDIS provider, one of the first questions you'll encounter is:

What type of NDIS audit do I need?

Many new providers are surprised to learn that there are multiple audit types, and the audit required depends on the supports your organisation plans to deliver.

Understanding the difference between these audits is essential for preparing the correct documentation and avoiding delays in the provider registration process.

In this guide we explain:

• the difference between Verification and Certification audits
• what Mid-Term audits are
• when Condition and Out-of-Cycle audits occur
• what documentation auditors typically review

Why NDIS Providers Must Complete an Audit

When applying to become a registered provider, organisations must complete a quality audit conducted by an Approved Quality Auditor.

The audit assesses whether the provider meets the requirements of the NDIS Practice Standards, which are the quality and safety standards that registered providers must follow when delivering supports to participants.

After submitting an NDIS provider registration application, the provider receives an Initial Scope of Audit document outlining:

• the required audit type
• the relevant registration groups (supports)
• the NDIS Practice Standards that will be assessed

The Five Types of NDIS Audits

There are five main audit types in the NDIS quality auditing framework:

1. Verification Audit

2. Certification Audit

3. Mid-Term Audit

4. Condition Audit

5. Out-of-Cycle Audit

The two most common audits for new providers are Verification and Certification.

Verification Audit

A Verification Audit applies to providers delivering lower-risk and lower-complexity supports.

Unlike certification audits, verification audits are typically conducted as a desktop review of documentation.

The auditor reviews documentation to ensure the organisation meets the Verification Module of the NDIS Practice Standards.

What auditors review in verification audits

Auditors commonly review evidence such as:

• worker identity records
• qualifications and experience
• worker screening checks
• NDIS Worker Orientation completion
• incident management systems
• complaints management processes
• risk management procedures

Verification audits are usually faster and less complex than certification audits because they focus mainly on documentary evidence.

Certification Audit

A Certification Audit is required for providers delivering higher-risk or more complex supports.

Certification audits are more comprehensive and involve two stages.

Stage 1 – Documentation Review

The auditor reviews the organisation’s policies, procedures and systems to determine whether the provider appears capable of meeting the NDIS Practice Standards.

Stage 2 – Operational Assessment

The auditor evaluates how the organisation operates in practice.

This may include:

• interviews with staff
• interviews with participants
• observation of service delivery
• review of incident and complaints management processes

Certification audits assess providers against the Core Module of the NDIS Practice Standards as well as additional supplementary modules depending on the supports delivered.

Mid-Term Audits

Providers who complete a Certification Audit are often required to complete a Mid-Term Audit approximately 18 months after registration.

This audit confirms that the provider continues to operate in accordance with the NDIS Practice Standards.

The mid-term audit may include:

• review of updated documentation
• interviews with staff
• review of service delivery records
• review of incident and complaint systems

Condition Audits

A Condition Audit may be required if the NDIS Commission determines additional auditing is necessary.

This may occur when:

• a provider receives minor non-conformities during an audit
• not all services could be observed during the original audit
• a provider was granted provisional certification

Condition audits allow the Commission to confirm that compliance issues have been addressed.

Out-of-Cycle Audits

An Out-of-Cycle Audit occurs outside the standard audit schedule.

Providers may require this type of audit if they apply to:

• add new registration groups
• expand their service offerings
• change their provider registration scope

Verification vs Certification: The Key Difference

The simplest way to understand the difference is this:

Verification Audits

• for lower-risk supports
• primarily a desktop review
• focused on core documentation

Certification Audits

• for higher-risk or complex supports
• includes documentation review and operational assessment
• involves two audit stages

What Documentation Do Auditors Look For?

Although requirements vary depending on the audit type, auditors commonly request documentation such as:

• Service Agreements
• Incident Management Policies
• Complaints & Feedback Policies
• Staff training records
• Worker screening documentation
• Incident and complaints registers
• Risk management systems
• Quality improvement processes

Preparing these documents early can significantly reduce stress when preparing for an audit.

Preparing for an NDIS Audit

The best way to prepare for an audit is to ensure your organisation has:

• clearly documented policies and procedures
• structured participant documentation
• workforce compliance systems
• incident and complaints registers
• quality improvement processes

Having these systems in place demonstrates that your organisation operates safely and professionally.

Need Help Preparing Your Documentation?

Preparing documentation for an NDIS audit can take weeks or even months if you start from scratch.

Launchly provides editable documentation systems designed to help providers organise the policies, forms and registers commonly required during NDIS audits.

👉 View the NDIS Certification Audit Documentation System