If you’re reading this, chances are your mid-term audit is coming up — or you’re worried it’s coming up. Most providers don’t realise how different the mid-term audit is from the initial certification audit, and that’s exactly why so many panic.

The good news?

You can prepare for a mid-term audit very quickly if you understand what auditors actually look for.

This guide breaks down:

• What a mid-term audit is

• What’s different from your first audit

• What documents auditors check

• What questions they’ll ask you and your staff

• What evidence you need ready

• How to stay compliant all year

• How to avoid the most common mid-term errors

And if you need complete, audit-ready documents already done for you, you can explore the Swell Core Module Packs here.

1. What Is an NDIS Mid-Term Audit?

A mid-term audit happens 18 months after your initial certification audit.
It is not a full certification audit — but it is still mandatory.

Auditors check:

• Whether your systems are actually being used

• Whether you are updating documents and reviewing risks

• Whether you are keeping correct records

• Whether incidents, complaints, and feedback are managed properly

• Whether your governance is consistent

• Whether your staff understand key policies

Think of the mid-term audit as an audit of your implementation, not just your paperwork.

2. How Mid-Term Audits Differ From Initial Audits

This is where providers get surprised.

Here’s what changes:

✔️ More focus on evidence

Initial audits look at policies and procedures.
Mid-term audits look at proof you are following them.

✔️ More staff interviews

Auditors want to know whether staff actually understand key processes.

✔️ More emphasis on incident and complaints management

Auditors check that these systems are functioning, monitored, and reviewed.

✔️ Less document review

You won’t need to supply every document again — only the evidence of implementation.

✔️ Strong focus on continuous improvement

Mid-term audits want to see that you are reviewing, learning, and updating.

3. What Documents You MUST Have Ready for a Mid-Term Audit

This is the single most important section.
Auditors will ask to see current and completed versions of the following:

Governance & Risk Management

• Risk Register (up to date, reviewed quarterly)

• Business Continuity Plan

• Meeting minutes showing risk review

• Incident trend analysis

HR & Training

• Worker Screening checks

• WWCC/Blue Card

• Induction checklist

• Training logs

• Supervision or performance review records

Incident Management

• Incident forms (completed)

• Incident Register

• Evidence of follow-up action

• Reportable incidents & notifications

Complaints & Feedback

• Complaints Register (with dates + resolution actions)

• Feedback forms

• Meeting minutes showing review of complaints

Service Delivery

• Case notes

• Consent forms

• Service agreements

• Participant onboarding checklist

• Risk assessments

Document Control

• Version numbers

• Review dates

• Updated policies

If you’re missing any of these, you are not ready for mid-term audit yet.

If you need all of these documents pre-built and audit-ready, see the Swell Core Module Packs here

4. What Auditors Will Ask You in a Mid-Term Audit

These are the real questions auditors will usually ask small providers:

Governance Questions

• “How do you manage risks in your organisation?”

• “How often do you review your risk register?”

• “Can you show me an example of a risk review?”

Incident Management Questions

• “Can you describe your incident reporting process?”

• “How do you handle reportable incidents?”

• “Can you show evidence of incident follow-up?”

Complaints Questions

• “How can participants make a complaint?”

• “How do you record and track complaints?”

• “Can you show an example of how you used feedback to improve?”

Rights & Consent Questions

• “How do you ensure participants understand their rights?”

• “How do you obtain and record informed consent?”

HR Questions

• “How do you ensure workers have the correct qualifications?”

• “Can you show me training logs and induction records?”

Want more examples? Check out our 50 common questions asked (with sample answers) here!

5. The Evidence You MUST Show

Mid-term audits are all about proof.
You must show that you:

1️⃣ Say it — in your policy

2️⃣ Show it — in your procedure

3️⃣ Prove it — with real records

Examples:

Policy says:
“We respond to complaints within 5 days.”

Procedure shows:
Staff roles + steps

Evidence proves:
Complaints Register → a complaint logged + date + resolution steps + closure date.

Auditors LOVE this level of clarity.

6. Biggest Mistakes Providers Make in Mid-Term Audits

These come up over and over again:

❌ No evidence of review

Policies updated once a year but never reviewed with staff.

❌ Risk register untouched for months

Auditors can see this instantly — and it’s a red flag.

❌ No meeting minutes

Even a one-person provider should have documented review notes.

❌ Staff cannot answer key policy questions

This is why your “Cheat Sheet” performed so well — the fear is real.

❌ Incident register has no follow-up actions

This is the number one mid-term finding.

❌ Not linking documents together

Service agreements not mentioning consent policies
Or
Incident procedures not matching incident register formats

7. How to Stay Audit-Ready All Year (Not Just Before Mid-Term)

Follow this rhythm:

✔️ Monthly

• Update incident register

• Update complaints register

• Review participant risks

✔️ Quarterly

• Review risk register

• Update Continuous Improvement Register

• Staff refresher on key policies

• Internal mini-audit

✔️ Annually

• Full policy review

• Emergency drill

• Participant feedback survey

• Staff training review

If you follow this rhythm, you will breeze through your mid-term audit.

8. How Swell Policy Studio Packs Make Mid-Term Audits Easy

Our packs give providers everything they need for:

• Governance

• Risk

• Safety

• HR

• Incidents

• Complaints

• Evidence

• Internal audits

PLUS editable Word versions so they can customise everything.

Explore our full range of packs here!

9. Final Thoughts: A Mid-Term Audit Shouldn’t Be Stressful

If your systems are running properly day-to-day, your mid-term audit will feel straightforward — not overwhelming.

You don’t need perfection.
You just need:

• Consistency

• Evidence

• Review

• Documentation

• Staff understanding

And you are already well ahead of most providers by being proactive.