If you’ve ever sat in an NDIS audit interview, you’ll know one thing:
Auditors ask a LOT of questions.

Not to trick you.
Not to “catch you out.”
But to check whether:

1. You understand your policies

2. You follow them

3. You can demonstrate evidence

And the truth?
Most of the questions are predictable.

This guide gives you:

• The 50 most common NDIS audit questions

• Category by category

• PLUS sample answers you can adapt

• PLUS exactly what evidence auditors expect

• PLUS links to the documentation packs that already meet these requirements

👉 Need audit-ready documentation?
Check out the Swell Policy Studio packs that match your provider type:
Core, Module 2, Module 2A, and Module 4 — all audit-aligned and ready to personalise.

Governance, Risk & Quality

1. “How do you manage organisational risk?”

Sample answer:
“We follow our Risk Management Policy and maintain a live Risk Register that we review quarterly. Risks are rated, assigned to responsible staff, and mitigation actions are tracked.”

2. “Do you have a Business Continuity Plan?”

Sample answer:
“Yes. It outlines how we continue services during disruptions such as illness, technology failure or emergencies.”

3. “How do you review your policies and procedures?”

“Using our Document Control Register — policies are reviewed annually or earlier if legislation changes.”

4. “How do you ensure governance oversight?”

“We record decisions in governance meeting minutes, review risk, and track quality improvements.”

5. “How do you ensure your systems are implemented, not just documented?”

“We use registers, meeting minutes, internal audits and supervision records to show our systems are active.”

6. “How do you maintain continuous improvement?”

“We document all improvements in our Continuous Improvement Register and review progress monthly.”

Rights & Responsibilities of Participants

7. “How do you ensure participants know their rights?”

“We provide a Participant Handbook, Easy Reads, explain rights verbally, and check understanding.”

8. “How do participants access advocacy?”

“We provide advocacy contacts at intake and in handbooks, and record any referrals.”

9. “How do you support informed consent?”

“We use an Informed Consent Policy with written consent forms, and we revisit consent regularly.”

10. “How do you support supported decision-making?”

“We offer options, simplify language, involve trusted supports, and document participant choices.”

11. “How do you ensure cultural safety?”

“Through our Cultural Competency Policy, staff training and participant-led cultural preferences.”

✨ Tip: All rights, consent, and advocacy systems are already built into our Core Module Packs — tailored for General, Behaviour Support and Support Coordination providers.
👉 Explore the packs here.

Service Delivery & Participant Outcomes

12. “How do you develop service agreements?”

“We follow our Service Delivery Procedure, ensuring participants understand, agree, and sign.”

13. “How do you document participant progress?”

“With case notes, review meetings, and progress reports.”

14. “How do you assess participant risks?”

“We complete a Participant Risk Assessment at intake and update it after incidents or changes.”

15. “How do you ensure services match participant goals?”

“We use needs assessments, case notes and reviews to align supports to NDIS plan goals.”

16. “How do you communicate with other providers?”

“We use coordination notes, email trails, and documented stakeholder communication.”

17. “How do you manage changes in participant needs?”

“We update support plans, risk assessments and communicate with stakeholders.”

Feedback & Complaints

18. “How can participants give feedback or make a complaint?”

“Verbally, written, anonymously, via the website, or through advocates.”

19. “How do you record complaints?”

“In our Feedback and Complaints Register.”

20. “How do you investigate complaints?”

“We follow our Complaints Handling Procedure, including documenting actions and outcomes.”

21. “How do you use feedback to improve?”

“We review trends in management meetings and update our Continuous Improvement Plan.”

Incident Management

22. “What is your process for reporting incidents?”

“We complete an Incident Form, log it in the Incident Register, notify stakeholders and, if required, notify the NDIS Commission.”

23. “What counts as a reportable incident?”

Use the wording from your Incident and Reportable Incident Policy.

24. “How do you prevent incidents recurring?”

“We perform root cause analysis and document corrective actions.”

25. “Where do you store incident records?”

“In secure digital folders with restricted access.”

Privacy & Confidentiality

26. “How do you store participant information securely?”

“Password-protected systems, restricted folder access, encrypted devices.”

27. “How do you manage privacy breaches?”

“We follow our Privacy Procedure — containment, notification, investigation, and reporting.”

28. “Do staff sign confidentiality agreements?”

“Yes — at onboarding, stored in the HR Register.”

Human Resources

29. “How do you ensure staff are qualified and screened?”

“We verify qualifications, Worker Screening Checks, WWCC, and right-to-work at onboarding.”

30. “How do you train staff?”

“Structured induction, mandatory modules, refresher training, and supervision.”

31. “How do you support staff wellbeing?”

“Supervision, open communication and workload management.”

32. “How do you monitor staff performance?”

“Supervision records, competency checks, and performance reviews.”

Specialist Behaviour Support (Module 2 Providers)

33. “How do you conduct Functional Behaviour Assessments?”

“We follow our FBA Practice Guide, collecting interviews, observations and behavioural data.”

34. “How do you develop BSPs?”

“We follow the BSP Development Procedure — assessment, consultation, drafting, review.”

35. “How do you ensure restrictive practices are authorised?”

“We obtain state-based authorisation and record it in the Restrictive Practices Register.”

36. “How do you reduce restrictive practices?”

“Through proactive strategies, skill building and regular PBS reviews.”

37. “How do you submit plans to the Commission?”

“We follow the PRODA lodgement process and record submission dates.”

⭐ If you're a behaviour support practitioner — all required policies, procedures, restrictive practice templates and FBA tools are ready to download in the Module 2 Pack.

Implementing Behaviour Support Plans (Module 2A)

38. “How do you document restrictive practice use?”

“In the Restrictive Practice Use Log and Monthly Summary Tracker.”

39. “How do you ensure practices are used safely?”

“Staff follow our RP Implementation Procedure and complete RP competency training.”

40. “How do you debrief after incidents?”

“We use the Debriefing Form and conduct team review.”

41. “How do you show you’re working to reduce restrictive practices?”

“We record alternatives trialled, skill-building outcomes and monthly trend reductions.”

Specialised Support Coordination (Module 4)

42. “How do you manage complex risks?”

“With our SSC Risk Matrix and escalation pathways.”

43. “How do you manage interagency collaboration?”

“We keep detailed coordination notes and communication logs.”

44. “How do you escalate issues to the NDIS?”

“We follow the Crisis Escalation Procedure and record all actions in the Critical Issues Register.”

45. “What progress reports do you provide?”

“We provide eight-week, mid-term and nine-month reports using structured templates.”

Audit Process Questions

46. “How do you prepare for audits?”

“Internal audits, evidence folders, staff Q&A practice.”

47. “How do you ensure documentation is current?”

“Using our Document Control Register and scheduled reviews.”

48. “How would your staff answer questions consistently?”

“Induction training, policy refreshers, and pre-audit briefing.”

49. “How do you embed participant voice?”

“Feedback forms, case notes, collaborative support planning.”

50. “What improvements have you implemented recently?”

Pull from your CI Register — auditors love this answer.

TIP!

Make sure you prepare your whole team, not just yourself, for your audit!

This will make sure everyone gives the same answers and you don't get caught out!

Conclusion

If you want to walk into your audit feeling fully prepared, not panicked — your documentation is the foundation.

👉 Explore the policy packs built exactly for your provider type:

• Core Modules (General, Behaviour Support, Support Coordination)

• Module 2: Specialist Behaviour Support

• Module 2A: Implementing Behaviour Support Plans

• Module 4: Specialised Support Coordination

Every pack is fully editable, audit-aligned and written by practising NDIS professionals — so you can trust it will stand up in an audit.