If you work in Queensland's community sector, the chances are that the words "HSQF audit" produce at least a small knot of anxiety somewhere in your chest. That is completely understandable. Audits feel high stakes, the documentation requirements are significant, and for many organisations particularly smaller ones operating with lean teams the preparation process can feel like a project on top of every other project you are already carrying.
This post is written for you. Not to add to the pressure, but to demystify the process, help you understand where to focus your energy, and share what years of supporting Queensland organisations through HSQF audits has taught me about what actually matters.
The good news is this: organisations that approach audits with genuine curiosity about their own systems, rather than simply trying to tick boxes, tend to do well. The framework is designed to reflect good practice and if your organisation is genuinely doing good work, the job of an audit is largely to document and demonstrate that.
What Is the HSQF and Why Does It Exist?
The Human Services Quality Framework is Queensland's quality assurance framework for assessing and improving human services funded by state government departments. It was developed in genuine collaboration with the non-government sector, and its intent is not to create administrative burden for its own sake. It exists because the people accessing community services deserve consistent, safe, rights-respecting support — and because government has a responsibility to ensure that the services it funds are delivering that.
The framework is administered by the Department of Families, Seniors, Disability Services and Child Safety (DFSDSCS) and applies to a broad range of human service providers across Queensland. It sits at the intersection of governance, service quality and human rights, and it asks organisations to demonstrate those values in practice, not simply on paper.
Understanding that intent rather than viewing the framework as an external imposition is the most useful shift any organisation can make as it prepares for certification.
The Six Human Services Quality Standards
The Human Services Quality Standards set the benchmark for service quality in Queensland. Each standard is supported by performance indicators that define what an organisation must be able to demonstrate in order to meet it. Together, the six standards cover the core elements of quality service provision:
- Governance and management
- Service access
- Responding to individual need
- Safety, wellbeing and rights
- Feedback, complaints and appeals
- Human resources
The standards are underpinned by principles of human rights, social inclusion, participation and choice. They reflect a service delivery approach that is person-centred, rights-based and grounded in dignity. When you read through the standards with that lens, most of what they require will feel familiar because it reflects the values that drew most people to this sector in the first place.
Which Compliance Pathway Applies to Your Organisation?
Organisations can demonstrate compliance with the HSQF through one of three pathways:
- Certification under the HSQF an independent third-party audit conducted by a JASANZ accredited certification body. This pathway applies to organisations delivering direct services to vulnerable people.
- Evidence of accreditation against another quality framework approved by the Department.
- Self-assessment, applicable to lower-complexity or lower-risk service types.
The pathway that applies to your organisation depends on the nature and complexity of your services, the vulnerability of the people you support, and the level of government funding investment. If you are unsure which pathway applies, your service agreement is the first place to check and if it is still unclear, contacting your departmental contract officer is the right next step.
This post focuses primarily on the certification pathway, as it is the most involved and the one that most often prompts organisations to seek support.
Preparing for Your HSQF Audit: Practical Tips
Audit preparation is not about making your organisation look good for a few days in the year. It is about building and maintaining systems that genuinely support your people, your clients and your obligations to the community. The tips below are grounded in that intent.
1. Start Earlier Than You Think You Need To
The Department recommends engaging a certification body and commencing preparation at least 12 months before your certification due date. In practice, this advice is sound. Leaving engagement too late limits your choice of certification body, reduces the time available to address any gaps identified during internal review, and creates avoidable pressure on your team at a time when they are likely already stretched.
If your audit is within six months and preparation has not commenced in earnest, the time to move is now — and to do so strategically rather than reactively.
2. Use the Current Version of the User Guide
The HSQF User Guide - Certification Version 10.0 is the current consolidated guide. It explains each standard in detail and sets out the evidence requirements for different service types. Make sure your internal preparation is mapped against the current version, not a document from a previous audit cycle. The framework is updated periodically, and requirements do evolve. It is worth taking the time to read the amendments document alongside the User Guide so you understand what has changed since your last audit.
3. Conduct an Honest Internal Gap Analysis
Before your auditor arrives, conduct a structured and documented internal review of your organisation's performance against each standard and its indicators. Approach it with honesty and curiosity rather than anxiety. It is far better to identify and address gaps before your audit than to encounter them during it.
Treat your internal gap analysis as a practice run. Ask the same questions your auditor will ask, look for the same evidence they will seek and, where gaps exist, document them and develop a clear, time-bound corrective action plan. This process itself becomes evidence of your commitment to continuous improvement.
4. Align Your Policy Library to the Standards
Each standard is supported by evidence requirements, and your policies, procedures and practice documents need to be current, accessible and demonstrably implemented not simply in existence. A policy that sits in a shared drive but is unknown to staff, or that has not been reviewed in three years, will not satisfy an auditor.
Implementation evidence matters just as much as the documents themselves. Signed acknowledgements, training records, version histories and staff meeting minutes that reference policies all contribute to a credible and cohesive evidence base.
5. Prepare Your People, Not Just Your Paperwork
Auditors will speak with staff, volunteers and in many cases service users. Your workforce needs to understand the standards at a practical level how they connect to day-to-day work, what your organisation's policies require and how to speak clearly and confidently to their own practice.
This is not about coaching staff to perform for an auditor. It is about ensuring that the knowledge and intent embedded in your policies is genuinely understood and enacted by the people delivering your services. Induction records, supervision logs, training registers and team meeting minutes all contribute to the story your organisation tells about how it supports and develops its workforce. That story should be coherent, current and evidenced.
6. Get Your Governance Documents in Order
Standard 1 - Governance and Management is consistently one of the areas where organisations are most exposed, and it is worth giving it careful, focused attention. Boards and management committees need to demonstrate active, informed and accountable oversight of the organisation not just the existence of a governance structure.
This means current governance policies, documented board decisions, a functioning conflict of interest register, a live risk management framework and evidence of meaningful strategic planning are all in order before your audit. It also means your board members understand their roles and can speak to their responsibilities if asked. If your board has not engaged substantively with the HSQF or your organisation's compliance obligations, an audit is a good prompt to change that.
7. Engage Your Service Users Meaningfully
The standards require that people using services are genuinely included in decision-making about those services and have the opportunity to make real choices about how support is delivered. Auditors look for authentic evidence of consumer participation not a checkbox exercise or a survey that was conducted once and never acted upon.
Feedback mechanisms, complaints data, consumer advisory input, and service planning documents all tell this story. Consider honestly whether your current approach reflects the voices of the people you support, or whether there is an opportunity to strengthen this before your audit. Meaningful consumer engagement is not just a compliance requirement it is the point of the work.
8. Choose the Right Certification Body for Your Organisation
All certification bodies conducting HSQF audits must be accredited by JASANZ, and a current list of accredited bodies is available on the DFSDSCS website. However, not all certification bodies bring the same experience to every service context.
Request a fee structure and obtain comparative quotes from a number of bodies before making a decision. Ask about their experience with organisations similar to yours, and with your service type specifically. A certification body that understands the community sector context will make for a more productive, less stressful and ultimately more useful audit experience.
Common Areas Organisations Miss - or Misunderstanding
Years of supporting Queensland community sector organisations through HSQF audits reveals a consistent pattern. The gaps are rarely in the headline governance documents. They are in the operational detail the things that feel routine until an auditor asks a pointed question and no one has a clear answer.
The following areas are raised not to cause alarm, but because they are genuinely and repeatedly misunderstood. Addressing them before your audit is entirely achievable once you know where to look.
Work Health and Safety: Beyond the Checklist
Most organisations have a WHS policy. Far fewer can demonstrate that their WHS obligations are being actively and consistently managed at an operational level. The distinction is important, and auditors are trained to look for it.
Safety Data Sheets (SDS)
Formerly known as Material Safety Data Sheets (MSDS), Safety Data Sheets are required for any hazardous chemicals or substances present in your workplace. This includes everyday items such as cleaning products and certain first aid supplies items that many organisations overlook entirely because they feel too ordinary to qualify as hazardous.
Your SDS register must be current, the relevant sheets must be accessible to the staff who work with those products, and those staff must have been trained accordingly. A folder in the cleaner's cupboard that no one has opened since your last audit cycle will not meet this requirement. Accessibility and awareness are the operative words here.
Personal Emergency Evacuation Plans (PEEPs)
If your organisation supports people with disability, mobility limitations or other circumstances that may affect their ability to evacuate independently, you are required to have individual Personal Emergency Evacuation Plans (PEEPs) in place. This is not a single generic evacuation procedure it is a documented, personalised plan for each person who may need individual assistance to exit safely.
Organisations frequently have evacuation procedures in place but have not considered whether those procedures account for every person in the building on any given day, including staff, service users and regular visitors with relevant needs. It is a genuinely easy gap to overlook. Auditors will ask about it specifically, and it is worth reviewing your current evacuation documentation with that question in mind.
WHS Inspections and their follow-through
Scheduled workplace inspections are good practice and a clear requirement. What auditors look for is evidence that inspections actually occurred, that hazards identified were formally recorded, and that corrective actions were completed and signed off by a responsible person. An inspection checklist with no date, no signature and no evidence of follow-up tells a concerning story about an organisation's safety culture even when the intent behind the inspection was entirely genuine. The record is the evidence.
CCTV: Signage, Placement and Privacy Obligations
Many organisations have CCTV installed for the safety of staff and service users, and that is entirely appropriate. What is frequently overlooked is that operating CCTV creates ongoing obligations under privacy legislation, and those obligations must be actively and visibly managed.
Auditors will consider whether your CCTV signage is placed at every point of entry where cameras operate not just at your main entrance. They will consider whether the signage is legible, sufficiently prominent and current. A single sign at the front door of a building with cameras across multiple entry points, corridors and outdoor areas will generally not meet the standard.
Beyond signage, your organisation should have a documented CCTV policy, staff should understand the purpose and limits of surveillance, and footage should be stored and accessed only in accordance with your privacy obligations. If your policy states that footage may be used for purposes such as incident review or safety monitoring, your auditor may ask when footage was last accessed for those purposes and what that process looked like. That is a reasonable question, and you should have a clear and honest answer ready.
Registers: Monitoring and Use Matter as Much as Existence
This is one of the most consistently misunderstood areas across HSQF audits, and it is worth dwelling on because the gap is so common and so avoidable.
Organisations invest real time and care in creating registers conflict of interest registers, complaints registers, incident registers, risk registers, maintenance registers and more. They then, quite understandably, treat the act of creating the register as the completion of the obligation.
An auditor does not simply want to see that a register exists. They want to see evidence that the register is actively monitored, regularly reviewed and genuinely used to inform decisions and drive improvement. A register that lives in a file but has not been meaningfully engaged with is not evidence of a functioning system it is evidence of good intentions that were not followed through.
Consider each of the following:
- A complaints register should show not only that complaints were recorded, but that they were reviewed at a governance level, that trends were identified and reported to the board or management committee, and that systemic issues informed policy or practice changes. The loop must be visible.
- A risk register should demonstrate that risks are reviewed at defined intervals, that risk ratings are reassessed as circumstances change, and that the register is a live document informing strategic and operational planning; not a static spreadsheet last opened during the previous audit cycle.
- A maintenance register for your premises and equipment should show scheduled and completed maintenance, outstanding items, responsible persons and sign-off upon completion. It should be clear that someone is actively accountable for monitoring it and that items are not simply accumulating unresolved.
- A training register should link to your supervision records, performance review processes and identified capability needs demonstrating that your organisation knows what training has occurred, what is outstanding and how gaps are being actively addressed.
The question to ask yourself before your audit is not simply "do we have this register?" The more useful question is: can we show an auditor how this register is used, who reviews it, how often, and what decisions it has informed?
If the honest answer is that the register exists but has not been meaningfully engaged with in some time, that is a gap and it is one that is entirely within your control to address before your auditor arrives.
What Happens If Non-Conformities Are Identified?
Non-conformities identified during an audit are not automatically a crisis, and it is worth approaching that possibility with some equanimity before your audit begins. A non-conformity is a formal signal that improvement is required in a specific area, and the certification process includes structured pathways for organisations to address them within defined timeframes.
What matters is that your organisation responds promptly, substantively and with documented evidence of corrective action. A non-conformity that is clearly understood, genuinely addressed and thoroughly evidenced actually demonstrates something positive about your organisation it shows a willingness to engage honestly with improvement, which is precisely what the HSQF is designed to encourage.
If your organisation has experienced non-conformities in previous audit cycles, the most valuable thing you can do in preparing for your next audit is revisit those areas with fresh eyes. Ensure that the changes made were systemic rather than surface-level, and that you can evidence not just what changed, but how the change has been embedded and sustained.
How Neat Consulting Can Help
At Neat Consulting, I work directly with Queensland community sector organisations to prepare for HSQF audits from gap analysis and policy library development through to governance reviews, staff capability building and evidence collation. I have supported organisations through full certification cycles with no non-conformities, and I understand the very real pressures that small and medium-sized community organisations carry into this process.
Audit preparation does not have to be overwhelming. With the right guidance and a clear plan, it becomes an opportunity to genuinely strengthen your organisation not just to pass an audit, but to build systems that serve your people well every day of the year.
If your audit is approaching and you would like an expert, practical assessment of your readiness, early engagement makes all the difference.
Contact us at neatco.com.au to discuss how Neat Consulting can support your organisation.