If you’re delivering Behaviour Support (Module 2) under the NDIS, you already know the stakes are high. Module 2 is one of the most technical, heavily scrutinised, and risk-sensitive modules in the entire NDIS Practice Standards.

Yet most providers still feel some level of uncertainty when an audit rolls around:

• What exactly will the auditor ask?

• Do I have all the documents I’m supposed to have?

• What counts as "best practice" for Module 2?

• What do I need to show if I’m developing, implementing or monitoring BSPs?

• What happens if restrictive practices are involved?

This guide breaks it all down in simple, practical language — and shows you exactly what auditors look for, what documentation is required, and how to feel confident, compliant and audit-ready every single time.

Whether you’re a solo practitioner or a growing organisation, this is your complete Module 2 road map.

What is NDIS Module 2?

NDIS Module 2 covers Behaviour Support, including:

• Functional Behaviour Assessment (FBA)

• Development of interim and comprehensive Behaviour Support Plans

• Implementation and monitoring of BSPs

• Reporting and reviewing BSPs

• Working with restrictive practices

• Supporting participants with complex needs

• Ensuring rights, safety and dignity

Module 2 applies to:

• Specialist Behaviour Support practitioners

• Providers who implement BSPs

• Providers who use or monitor restrictive practices

• Providers involved in any part of the behaviour support process

Why Module 2 Is So Heavily Regulated

It comes down to safety, human rights, and risk.

Behaviour support involves:

• Vulnerable participants

• High-risk behaviours

• Duty of care

• Human rights legislation

• Restrictive practices (which are human rights infringements)

This is why Module 2 isn’t just about “having documents.”
It’s about demonstrating a robust, ethical, person-centred behaviour support framework.

Auditors want to see that your practice is:

• Evidence-based

• Neuroaffirming

• Trauma-informed

• Collaborative

• Individualised

• Rights-focused

• Well-documented

• Transparent and accountable

And they want to see this consistently — not just at audit time.

What Auditors Ask in NDIS Module 2

After supporting hundreds of providers and reviewing real audit feedback across Australia, these are the most common Module 2 audit questions you can expect.

1. Your Practice Approach

Auditors will ask:

• How do you conduct an FBA?

• What tools do you use?

• How do you involve the participant and their network?

• How do you ensure your practice is evidence-based?

• How does your practice align with contemporary behaviour support values?

They want to see clear methodology, not ad-hoc decisions.

✔ Evidence auditors want:

• Practice Framework

• Practice Guides

• FBA templates

• Assessment tools

• Documented BSP development process

2. Interim vs Comprehensive Plans

Expect questions like:

• When do you issue an interim plan?

• How do you ensure risks are controlled during the interim period?

• How do you transition from interim to comprehensive?

• What does your review process look like?

Auditors want to know you understand timelines, workflows, and risk management.

✔ Evidence auditors want:

• Interim BSP Policy & Procedure

• BSP Development Procedure

• Comprehensive BSP template

• Interim BSP template

• Review Procedure

3. Restrictive Practices & Authorisation

This is where most providers panic.

Auditors will ask:

• How do you identify restrictive practices?

• What is your authorisation process?

• What safeguards are in place?

• How do you ensure the least restrictive alternative is always prioritised?

• How do you lodge monthly reports?

You must show a well-structured, legally compliant process.

✔ Evidence auditors want:

• Restrictive Practices Policy

• Authorisation of Restrictive Practices Procedure

• Restrictive Practice Register

• Monthly RPA reporting workflow

• Training records

4. Monitoring & Review of BSPs

Auditors will ask about:

• How you track progress

• How you engage support workers

• How you revise strategies

• How you ensure consistency of implementation

• How you collect and analyse data

✔ Evidence auditors want:

• Monitoring & Implementation Procedure

• Data collection templates

• Communication templates

• Review report template

5. Participant Involvement & Choice

Auditors need to see:

• How you involve participants in assessment

• How you collect preferences

• How you explain strategies

• How you uphold rights and advocacy

• How you document consent

✔ Evidence they want:

• Informed Consent Policy

• Consent and Decision-Making Guide

• Participant Rights & Advocacy Policy

• Participant Handbook

• Accessible/Easy Read versions

6. Staff Competence & Supervision

Auditors will ask:

• How do you ensure clinical supervision?

• How do you assess practitioner competence?

• How do you provide training for implementing providers?

✔ Evidence they want:

• Supervision records

• Training records

• Practitioner Handbook

• Onboarding & induction processes

The Six Core Requirements of Module 2

The NDIS Practice Standards outline six specific areas for Behaviour Support:

1. FBA and assessment

2. Development of Behaviour Support Plans

3. Implementation of behaviour support strategies

4. Monitoring and review

5. Restrictive practice oversight and reduction

6. Safeguarding and participant rights

Let’s break them down in an easy, practical way.

1. FBA & Assessment Requirements

Your assessment must be:

• Evidence-informed

• Person-centred

• Holistic

• Inclusive of multiple perspectives

• Based on real data, not assumptions

Good auditors will examine a sample of your BSPs and ask:

• Did you clearly identify the function of behaviour?

• Did you collect data from multiple settings?

• Did you reference medical, sensory, environmental, developmental and relational factors?

Your assessment should tell a story about the participant — one that leads logically to the strategies you recommend.

2. BSP Development Requirements

A strong BSP must demonstrate:

• Clear function-based strategies

• Individualised, non-generic content

• Participant strengths

• Evidence of collaboration with stakeholders

• A neuroaffirming, trauma-informed lens

• Practical, proactive strategies

• Skills-building, not compliance-focused techniques

Auditors also look for:

• Implementation guidance

• Crisis and reactive strategies

• A review schedule

• Clear responsibilities for each stakeholder

If your BSPs are written clearly and ethically, the audit portion becomes extremely smooth.

3. Implementation Requirements

Providers must ensure:

• Support workers understand the BSP

• Training is provided

• Documentation is clear

• Strategies are realistic

• Roles and responsibilities are defined

• Consistent data collection occurs

Auditors will ask:

• How do you train implementing providers?

• How do you evidence this training?

• How do you support families and schools?

Implementation is critical — because a brilliant BSP means nothing if it isn’t followed.

4. Monitoring & Review Requirements

Your monitoring must be:

• Regular and documented

• Data-informed

• Collaborative

• Responsive to change

Auditors will ask how you:

• Track progress

• Identify trends

• Adjust strategies

• Consult with the team

• Decide when a plan needs revision

A strong Monitoring & Review Procedure is essential.

5. Restrictive Practice Requirements

Auditors will examine:

• Identification of restrictive practices

• Your commitment to reduction

• Your authorisation processes

• Monthly reporting

• Safeguards

• Justification and risk assessment

• Evidence of least restrictive alternative

• Timeframes for interim plans

This is where many providers run into trouble — not because they’re doing anything unsafe, but because their documentation doesn’t match their practice.

6. Rights, Safeguards & Advocacy

Module 2 requires:

• Strong human rights alignment

• Clear consent processes

• Advocacy support

• Transparency

• Accessible information

• Oversight

• Clear complaint pathways

Auditors want to see that participants are:

• Given choices

• Listened to

• Supported to understand decisions

• Visible in the documentation

• Involved in their own plans

A person-centred approach is a compliance requirement — not a “nice to have.”

The Required Documents for NDIS Module 2

Below is the definitive document list auditors look for. Every audit is slightly different, but these are the standard requirements across certification, verification, and surveillance audits.

Core Module 2 Documents:

Policies & Procedures

• Positive Behaviour Support Policy

• Restrictive Practices Policy

• Interim BSP Policy & Procedure

• BSP Development Procedure

• BSP Review Procedure

• Implementation & Monitoring Procedure

• Authorisation of Restrictive Practices Procedure

Practice Framework & Guides

• PBS Practice Framework

• FBA Guide

• Interim BSP Guide

• Implementation Guide

• Collaboration Guide

• Data Collection Guide

• Restrictive Practice Reduction Guide

Templates

• FBA template

• Interim BSP template

• Comprehensive BSP template

• Monitoring template

• Review template

• RP Assessment & Identification tool

• RP Reduction Plan template

Registers

• Restrictive Practice Register

• Behaviour incident/critical incident registers

• RPA monthly reporting log

Staff Documentation

• Supervision log template

• PDP/Competency documents

• Training records

Participant-Facing Documentation

• Consent forms

• Rights & advocacy information

• Easy-read versions

• Participant handbook

• Complaints and feedback pathways

If you have all of the above and they align with your practice, your Module 2 audit becomes significantly easier.

Common Module 2 Audit Mistakes (and How to Avoid Them)

These are consistently the biggest issues auditors raise.

❌ 1. Generic BSPs

Auditors immediately notice copy/paste content.
They want individualised plans.

❌ 2. Missing documentation for restrictive practices

This includes:

• no RP register

• missing RP reduction strategies

• no RPA authorisation record

• reactive strategies not tied to function

❌ 3. Inconsistent monitoring

Lack of documentation = audit non-conformity.

❌ 4. No evidence of training implementing providers

Even when providers have trained workers — they often fail to document it.

❌ 5. No clear interim plan workflow

Auditors expect you to understand risk escalation and interim timeframes.

❌ 6. Consent forms not up-to-date

Especially for high-risk supports.

❌ 7. Poor data collection

Data must align with:

• goals

• strategies

• functions of behaviour

• review processes

Fixing these issues before audit can save enormous stress.

How to Prepare for a Module 2 Audit (Step-by-Step)

Here’s a simple checklist to feel completely ready.

Step 1: Gather your documentation

Use the list above and ensure each item is:

• Updated

• Branded

• Consistent with your practice

Step 2: Review 3–5 completed BSPs

Ensure they demonstrate:

• Strong assessment

• Clear function

• Person-centred content

• Collaboration

• Justification

Step 3: Check your restrictive practice workflows

Auditors always look closely here.

Step 4: Ensure staff training & supervision is documented

Step 5: Organise your registers

Especially RP register and incident reporting.

Step 6: Make sure your practice framework is clear

Auditors love a clean, well-written practice framework.

Step 7: Prepare examples of stakeholder communication

Emails, training sessions, collaborative meetings.

here Most Providers Struggle (and How Swell Policy Studio Solves It)

Most behaviour support providers aren’t struggling with their clinical practice — they’re struggling with the paperwork.

And honestly?
That’s completely understandable.

Behaviour support compliance is:

• technical

• time-consuming

• admin-heavy

• high-risk

• constantly changing

This is exactly why we built the Module 2 Pack, which gives you:

• All Module 2 policies

• All Module 2 procedures

• All Module 2 practice guides

• All Module 2 registers

• All Module 2 templates

• All Module 2 participant-facing documents

• Fully editable Word format

• Audit-ready, best-practice aligned

It’s the complete foundation for meeting Module 2 requirements with confidence — without the overwhelm.

Final Thoughts: Module 2 Doesn’t Have to Be Stressful

Once you understand:

• what auditors look for

• what documents you need

• what evidence is required

• how to structure your BSP framework

Module 2 becomes far less daunting.

You deserve to feel confident, organised and supported — not stressed, confused or scrambling before each audit.

And if you’d like all your Module 2 documents written for you, in the exact format auditors expect, you can download the complete pack below.

👉 Explore the Module 2 Pack (Behaviour Support)
Your complete, audit-ready solution — professionally written and instantly downloadable.