How To Become a Registered NDIS Provider in Australia

Becoming a National Disability Insurance Scheme (NDIS) provider is a meaningful way to build a business that supports people with disability, while opening the door to a growing, regulated market.

It can feel complex at first - there are standards to meet, audits to pass and ongoing compliance to manage. The upside is that with a clear plan and the right documents, you can get registered and set your business up the right way.

Below, we break down what NDIS registration actually involves, who needs to register, the step-by-step process, timeframes, costs, and the key laws and contracts you’ll want in place. If you’re planning to launch an NDIS service in Australia, this guide is for you.

What Does It Mean And Do You Need To Register?

NDIS registration is formal approval by the NDIS Quality and Safeguards Commission (the Commission) that your business meets the NDIS Practice Standards and Code of Conduct. Registered providers can support participants whose plans are managed by the National Disability Insurance Agency (NDIA), not just those who self-manage or use a plan manager.

Key benefits include access to a wider client base, increased credibility, and eligibility for certain tenders and referrals that require registration. In return, you’ll take on higher compliance obligations, audits and ongoing reporting.

Do You Have To Register?

Registration is mandatory if you deliver certain support types or interact with risk areas regulated by the Commission. You must register if you plan to provide any of the following:

• Supports that involve regulated restrictive practices.
• NDIS Plan Management services.
• Specialist Disability Accommodation (SDA).
• Supports to participants with NDIA-managed plans (as opposed to self- or plan-managed participants).

If you don’t fall into these categories, you may operate as an unregistered provider and support self-managed or plan-managed participants. That said, many providers choose to register to broaden their client base and demonstrate quality and safeguards.

Step-By-Step: How To Become a Registered NDIS Provider

The process is structured and manageable if you approach it in stages. Here’s a practical roadmap.

1) Scope Your Services And Build Your Plan

Clarify what you’ll deliver (e.g. personal care, community access, therapies, plan management, home modifications) and where. Map your capabilities, qualifications, staffing and supervision needs, and how you’ll meet the relevant Practice Standards for your support types.

At this stage, think about risk and quality systems, budget, pricing, insurance and how you’ll deliver safe, person-centred care. Documenting these decisions now will make your audit much smoother.

2) Choose Your Business Structure And Register

You’ll need an Australian Business Number (ABN). Many providers start as a sole trader, while others set up a company for limited liability and scalability. If you’re planning to grow or bring in co-founders, a company is often the preferred option.

• Sole trader: Simple and low cost, but you’re personally liable for debts and claims.
• Partnership: Shared management and risk; set clear rules in writing to avoid disputes.
• Company: A separate legal entity with limited liability, often better for hiring and growth.

If you’re incorporating, consider a Company Set Up and, if there’s more than one founder, a Shareholders Agreement to agree ownership, decision-making and exit terms. If you’re trading under a brand that’s not your personal or company name, register a Business Name.

3) Prepare Your Policies, Procedures And Workforce Checks

Auditors will assess your quality and safety systems, so you’ll need tailored documents and processes that align with the NDIS Practice Standards. Core items usually include incident and complaints management, risk management, safeguarding, privacy, worker screening and training frameworks, and service delivery procedures.

Make sure your team meets screening requirements for your state or territory, including the NDIS Worker Screening Check (and Working With Children Check where relevant). Keep evidence of qualifications, supervision arrangements and training.

4) Submit Your Application To The Commission

You’ll complete an online application through the Commission’s system describing your organisation, support types, locations, and your policies and workforce. Once submitted, you’ll be directed to engage an approved auditor.

Tip: Keep your application consistent with your policies and the supports you actually intend to deliver - the auditor will check this alignment.

5) Complete Your NDIS Audit (Verification Or Certification)

Audits are carried out by Commission-approved auditing bodies. The type of audit depends on the risk profile of your supports:

• Verification audit: For lower risk supports (e.g. cleaning, lawn mowing). Focuses on documents and practitioner credentials. Generally faster and less costly.
• Certification audit: For higher risk supports (e.g. daily personal activities, behaviour support, accommodation). Includes stage 1 (document review) and stage 2 (on-site assessment) components.

Your auditor issues a report and recommendation to the Commission. If there are minor non-conformities, you may be asked for corrective actions before a final decision is made.

6) Assessment, Outcome And Registration Certificate

The Commission reviews your application and the audit report. If approved, you’ll receive a Certificate of Registration that sets out your registration period (often up to three years), approved registration groups (support types) and any conditions. You must maintain compliance and complete renewal audits before your registration expires.

How Long Does It Take And What Will It Cost?

Timeframes vary. A straightforward verification can be completed in weeks, while certification (especially for multiple support types or larger teams) can take several months. A realistic window from application to approval for many providers is three to six months, depending on service complexity, audit capacity and how prepared your documents are.

Typical Costs To Budget For

• Audit fees: The major cost driver. Verification audits often sit in the low thousands, while certification audits usually cost more (and scale with size, locations and complexity).
• Workforce screening and training: NDIS Worker Screening, Working With Children, and ongoing training or supervision.
• Policies and legal documents: Tailored drafting or review of your core policies and contracts to meet audit standards and reduce risk.
• Insurance and systems: Public liability, professional indemnity (where relevant), and any quality systems or software you adopt.

Note: The Commission does not generally charge a separate application fee. Your main mandated cost is auditing, plus the cost of getting your documents and systems right. Many providers recoup these setup costs through access to NDIA-managed participants and the credibility that supports referrals and partnerships.

Thinking About Buying An Existing NDIS Business?

Buying a business can fast-track operations, but NDIS registration is not transferable. If there’s a change in legal entity or control, the new owner typically must apply for their own registration and complete an audit aligned to the supports they will deliver. You’ll also want robust legal due diligence on existing contracts, workforce compliance, and quality systems before you commit to a purchase.

What Laws And Ongoing Compliance Apply To NDIS Providers?

NDIS registration is just the starting point. You’ll need to comply with NDIS requirements and broader Australian laws throughout your operations.

NDIS Practice Standards And Code Of Conduct

These set the quality, safety and safeguarding benchmarks for service delivery, governance, risk, feedback and complaints, incident management, and participant rights. They underpin your audit and your everyday responsibilities. Non-compliance can lead to sanctions, conditions or loss of registration.

Worker Screening And Safeguarding

Ensure workers hold a valid NDIS Worker Screening Check (and any additional checks your jurisdiction requires, like Working With Children). Keep records current and maintain appropriate supervision and training for the supports you offer.

Privacy And Health Information

Most NDIS providers handle sensitive information. Comply with the Privacy Act 1988 and Australian Privacy Principles. Have a clear, accessible NDIS Privacy Policy, and obtain informed consent to collect, use and share information where required.

Australian Consumer Law (ACL)

When you advertise, sign service agreements, set cancellation terms or handle complaints, the ACL applies. Requirements around fairness, transparency and remedies protect participants and help you build trust.

Employment And Workplace Safety

If you employ staff or engage contractors, ensure compliant Employment Contract terms, correct classification, and safe systems of work. Manage rosters, breaks, pay and entitlements under the Fair Work framework and meet your work health and safety obligations.

Intellectual Property And Brand

Protect your business name and logo, and make sure you’re not infringing someone else’s rights. Registering trade marks and using consistent brand assets supports your reputation in a trust-driven sector.

Finance, Tax And Record-Keeping

Stay on top of ABN, GST (if applicable), super and payroll obligations, and maintain accurate records for audits and reporting. Good governance helps you expand services and locations with confidence.

What Legal Documents Will You Need?

Strong, tailored documents help you pass your audit and manage day-to-day risk. The exact suite depends on your services and risk profile, but most NDIS providers consider the following.

• Service Agreement: Sets the scope of supports, fees, cancellations, variations and feedback/complaints. Clear, plain-English terms reduce disputes and support informed choice. Many providers use a tailored Service Agreement template that can be adapted by program.
• NDIS Privacy Policy: Explains how you collect, use, store and disclose personal and health information, and how participants can access or correct records. Link to it on your website and in onboarding packs via your NDIS Privacy Policy.
• Participant Consent Forms: Obtain informed consent to share information, coordinate with other providers, and use images or data as applicable. A standard Participant Consent Form keeps your processes consistent.
• Incident And Complaints Management Policies: Required under the Practice Standards. These should outline reporting pathways, timeframes, escalation and remediation.
• Risk Management Policy: A practical framework to identify, assess and control risks to participants and your operations.
• Employment Contracts And HR Policies: Role descriptions, duties, confidentiality, IP, code of conduct and performance procedures belong in a compliant Employment Contract and supporting policies (e.g. code of conduct, safeguarding, WHS).
• Safeguarding And Clinical Governance Procedures (if relevant): For higher risk supports, document supervision, escalation, medication and behaviour support pathways.
• Website Terms & Conditions: If participants can enquire, book or pay online, include clear rules for site use and disclaimers through Website Terms and Conditions.
• Internal Governance Documents: If you run a company, keep board or director resolutions, delegations, and quality accountability clear.
• NDA/Confidentiality: Use an Non-Disclosure Agreement when discussing partnerships, clinical collaborations or acquisitions so you can share information securely.

Your documents should reflect what you actually do in practice. Auditors look for alignment between policy and reality, so keep your processes practical and embed them in day-to-day operations and training.

Key Takeaways

• NDIS registration lets you support NDIA-managed participants and signals quality and safeguards - but it also brings audit and ongoing compliance responsibilities.
• Be clear on your support types, choose the right structure, and prepare your policies and workforce evidence before you apply to streamline your audit.
• The Commission doesn’t typically charge an application fee; your major costs are auditing, workforce screening, insurance, and getting tailored documents in place.
• Allow three to six months from application to approval in many cases; strong preparation and quick responses to auditor or Commission queries can shorten timelines.
• Comply with the NDIS Practice Standards and Code, worker screening requirements, privacy law, the ACL, and Fair Work and WHS rules throughout your operations.
• Put core documents in place - a clear Service Agreement, an NDIS Privacy Policy, a Participant Consent Form and compliant Employment Contract terms - and keep your policies aligned with real practice.
• Buying an NDIS business won’t transfer registration; a new entity generally must apply and be audited, so plan for this in your timeline and budget.

If you’d like a consultation on becoming a registered NDIS provider in Australia, you can reach us at 1800 730 617 or team@sprintlaw.com.au for a free, no-obligations chat.