Compliance Framework

Provider Suitability Comes First

Not every provider is suitable to operate under an established registered NDIS provider framework.

Before a provider can operate under CCG's framework, we need to understand the provider's service model, proposed supports, registration group needs, worker evidence, participant safeguards, compliance systems, incident and complaints processes, risk profile, and operational readiness.

This is not an automatic approval process. It is a compliance led suitability review designed to determine whether a provider can operate safely, transparently, and within the agreed scope of the registered provider framework.

Why suitability matters

Operating Under a Registered Provider Framework Carries Responsibility

Providers must be able to show that they can deliver supports safely, maintain appropriate records, follow reporting pathways, protect participants, manage risks, and comply with the agreed operating requirements.

CCG does not simply process invoices or allow providers to operate without oversight.

Suitability review helps confirm whether a provider has the systems, evidence, and readiness required to operate within a structured and auditable framework.

Deliver supports safely

Providers must demonstrate they can deliver the proposed supports safely and within scope.

Maintain appropriate records

Participant documentation, worker evidence, and service records must be kept and available for review.

Follow reporting pathways

Incidents, complaints, and risks must be reported through the correct channels.

Participate in ongoing oversight

Providers are subject to monitoring and compliance review throughout the arrangement.

What we assess

Before a Provider Can Proceed, CCG May Assess a Range of Suitability Factors

The level of review required will depend on the services being proposed and the level of risk involved.

Higher-risk supports, complex participant needs, or gaps in existing systems will typically require a more thorough review before any decision can be made.

Suitability factors may include:

The supports the provider wants to deliver
The registration groups the provider may require
Whether the proposed supports align with the available framework
The provider's current NDIS experience
Current participant numbers
Worker numbers and roles
NDIS Worker Screening evidence
Worker training and competency evidence
Insurance
Participant risk information
Incident and complaints processes
Reporting capability
Service specific compliance requirements
Higher-risk supports, where relevant
Previous complaints, incidents, audit findings, or compliance issues
Willingness to operate within CCG's framework and oversight requirements
More than paperwork

Suitability Is Not Just About Documents

Documents are important, but suitability is broader than paperwork.

A provider may have policies and templates but still not be ready to operate safely under a registered provider framework.

CCG considers whether the provider can genuinely operate within the framework, follow requirements, communicate transparently, maintain evidence, report issues, and respond appropriately when risks arise.

The goal is not just to collect documents. The goal is to determine whether the provider can operate safely and accountably.

Providers who are transparent about gaps, risks, and previous issues are better placed than providers who present a polished picture that does not reflect their actual operations.

Signs of suitability

What We Look For — and What Raises Concerns

A provider may be suitable if they:

Can clearly explain the supports they want to deliver
Understand the participants they support or intend to support
Have workers with appropriate screening and training evidence
Have current insurance
Have policies and procedures in place
Maintain participant documentation
Understand incident and complaints reporting
Are willing to follow CCG's compliance framework
Are transparent about risks, gaps, or previous issues
Understand that operating under a registered framework requires ongoing oversight
Are prepared to operate only within agreed service scope

A provider may not be suitable if they:

Are only looking for invoice processing
Want to avoid NDIS compliance requirements
Cannot clearly explain the supports they want to deliver
Want to deliver supports outside the agreed registration scope
Do not have worker screening evidence
Do not have appropriate training or competency records
Have limited or missing participant documentation
Do not have clear service agreements
Do not have an incident or complaints process
Are delivering higher-risk supports without appropriate systems
Are unwilling to report incidents, complaints, or risks
Are unwilling to participate in monitoring or evidence review
Have unresolved compliance concerns
Expect automatic approval

CCG would rather identify these issues early than allow a provider to operate in a way that creates risk for participants, workers, or the registered provider framework.

Higher-risk services

Higher-Risk Services Require Greater Review

Some supports may require additional suitability review because they carry higher participant, worker, or compliance risk.

Where higher-risk supports are involved, CCG may require additional evidence, participant specific information, worker competency records, risk documentation, and service specific controls before deciding whether the provider can proceed.

The level of review required will be proportionate to the risk profile of the proposed supports and the provider's current systems.

Supports that may require additional review:

Supported Independent Living
High-intensity daily personal activities
Medication support
Mealtime support
Behaviour support
Restrictive practices
Complex personal care
Supports involving elevated participant risk
Services where participant health, safety, or safeguarding risks are increased
Possible outcomes

After Reviewing Provider Suitability, There Are Three Possible Outcomes

Outcome 1

Suitable to Proceed

The provider may be suitable to move into onboarding.

This means the proposed supports, service scope, evidence, systems, and risk profile appear capable of progressing to the next stage.

Outcome 2

Potentially Suitable, But Gaps Need to Be Addressed

The provider may be potentially suitable, but specific gaps need to be addressed before proceeding.

This may include missing worker evidence, unclear service scope, incomplete participant documentation, weak incident processes, or service specific compliance requirements.

Outcome 3

Not Suitable for the Framework

The provider may not be suitable to operate under CCG's framework.

This may occur where the proposed supports fall outside scope, the provider is not ready to meet compliance requirements, the provider is seeking invoice processing only, or the risk profile is not appropriate.

Why suitability comes first

Suitability Protects Everyone Involved

This is why suitability comes before approval.

Protects Participants

Ensuring providers are assessed before operating.

Protects Providers

Making expectations clear before services commence.

Protects Workers

Ensuring roles, training, evidence, and reporting pathways are understood.

Protects The Framework

Ensuring providers operate within agreed scope and compliance expectations.

Check if your service may be suitable

Check If Your Service May Be Suitable

If you are considering operating under CCG's registered provider framework, the first step is a provider suitability discussion.

We will ask questions about your service model, registration group needs, current systems, worker evidence, participant safeguards, and risk profile.

If your service may be suitable, we will explain the next stage. If there are gaps, we will identify what needs to be addressed. If your service is not suitable for the framework, we will be upfront about that.