{"title":"GOVERNANCE AND COMPLIANCE","description":"\u003cp class=\"MsoNormal\" style=\"margin-bottom: 10.0pt;\"\u003eStrong governance is the foundation of every successful community organisation. This collection provides the essential policy templates your board and leadership team need to meet regulatory requirements and demonstrate accountability to stakeholders.\u003c\/p\u003e\n\u003cp class=\"MsoNormal\" style=\"margin-bottom: 10.0pt;\"\u003eOur governance and compliance templates address HSQF Standard 1 (Governance and Management), covering indicators 1.1 through 1.6. Each document has been developed specifically for the Queensland community sector, referencing the Corporations Act 2001, Associations Incorporation Act 1981 (Qld), and Australian Charities and Not-for-profits Commission Act 2012.\u003c\/p\u003e\n\u003cp class=\"MsoNormal\" style=\"margin-bottom: 10.0pt;\"\u003eThis collection includes policies for board structure and operations, strategic planning, delegation of authority, constitutional compliance, legislative compliance registers, insurance requirements and contract management. Whether you operate as an incorporated association, company limited by guarantee or Indigenous corporation, these templates provide the framework your organisation needs.\u003c\/p\u003e\n\u003cp class=\"MsoNormal\" style=\"margin-bottom: 10.0pt;\"\u003eIdeal for registered charities, incorporated associations, social enterprises and community service providers preparing for HSQF certification audits or seeking to strengthen their governance foundations. Each template includes guidance notes explaining how to customise the document for your organisation and implementation checklists to support rollout to your team.\u003c\/p\u003e\n\u003cp class=\"MsoNormal\" style=\"margin-bottom: 10.0pt;\"\u003eAll templates are provided in editable Word format and include 12 months of updates as legislation changes apply.\u003c\/p\u003e","products":[{"product_id":"governance-policy-template","title":"DELEGATION OF AUTHORITY","description":"\u003cp\u003eUnclear authority is a root cause of governance risk. When staff and board members are unsure of the boundaries of their decision-making power, organisations face financial exposure, regulatory non-compliance and internal conflict. This bundle provides a structured, adaptable framework to define and document delegations at every level of your organisation.\u003c\/p\u003e\n\u003cp\u003e\u003cstrong\u003eWhat Is Included\u003c\/strong\u003e\u003c\/p\u003e\n\u003cul\u003e\n\u003cli\u003eDelegation of Authority Policy Template — setting out the principles and parameters for delegating decision-making authority\u003c\/li\u003e\n\u003cli\u003eDelegation of Authority schedule\u003c\/li\u003e\n\u003cli\u003eDelegation of Authority Matrix \u003c\/li\u003e\n\u003cli\u003eDelegation of Authority Implementation Guide\u003c\/li\u003e\n\u003c\/ul\u003e\n\u003cp\u003e\u003cstrong\u003eKey Features\u003c\/strong\u003e\u003c\/p\u003e\n\u003cul\u003e\n\u003cli\u003eCovers financial delegations, operational delegations and board-reserved matters\u003c\/li\u003e\n\u003cli\u003eIncludes a tiered delegation schedule framework adaptable to organisations of any size\u003c\/li\u003e\n\u003cli\u003eAligned with ACNC governance standards, Incorporated Associations Act obligations and Indigenous Corporations governance requirements\u003c\/li\u003e\n\u003cli\u003eGuidance on documenting, communicating and reviewing delegations as your organisation grows or restructures\u003c\/li\u003e\n\u003cli\u003eSupports accountability and transparency across board, management and operational levels\u003cbr\u003e\n\u003c\/li\u003e\n\u003c\/ul\u003e\n\u003cp\u003e\u003cem\u003e*This is a template for guidance only and requires customisation to your specific organisational context, structure and compliance obligations. The template does not constitute legal or professional advice.\u003c\/em\u003e\u003c\/p\u003e","brand":"neat.","offers":[{"title":"Default Title","offer_id":45998091075778,"sku":null,"price":249.0,"currency_code":"AUD","in_stock":true}],"thumbnail_url":"\/\/cdn.shopify.com\/s\/files\/1\/0707\/8173\/1010\/files\/Delegation_of_Authority_Policy.jpg?v=1772542465"},{"product_id":"conflict-of-interest","title":"CONFLICT OF INTEREST","description":"\u003cp\u003eConflicts of interest are one of the most common and most mishandled governance risks. Without a clear, documented framework, organisations expose themselves to regulatory scrutiny, reputational damage, and the erosion of stakeholder trust. This ready-to-use bundle gives you everything you need to identify, declare, and manage conflicts of interest with confidence.\u003c\/p\u003e\n\u003cp\u003e\u003cstrong\u003eWhat Is Included\u003c\/strong\u003e\u003c\/p\u003e\n\u003cul\u003e\n\u003cli\u003eConflict of Interest Policy Template drafted to cover board members, staff, volunteers and contractors\u003c\/li\u003e\n\u003cli\u003eConflict of Interest Implementation Guide step-by-step guidance for introducing the policy, managing declarations and maintaining a register\u003c\/li\u003e\n\u003cli\u003e12 months of updates included from the date of purchase, so your policy stays current with regulatory and best practice changes\u003cstrong\u003e\u003c\/strong\u003e\n\u003c\/li\u003e\n\u003c\/ul\u003e\n\u003cp\u003e\u003cstrong\u003eKey Features\u003c\/strong\u003e\u003c\/p\u003e\n\u003cul\u003e\n\u003cli\u003eWritten in plain language with legal precision meets ACNC governance standards and aligns with AICD good governance principles\u003c\/li\u003e\n\u003cli\u003eIncludes guidance on conflicts across all organisational roles\u003c\/li\u003e\n\u003cli\u003eCovers declaration processes, register maintenance and decision-making protocols when a conflict exists\u003c\/li\u003e\n\u003cli\u003eImmediately editable in Microsoft Word customise to your organisation's name, structure and context\u003cbr\u003e\n\u003c\/li\u003e\n\u003c\/ul\u003e\n\u003cp\u003e\u003cem\u003e*This is a template for guidance only and requires customisation to your specific organisational context, structure and compliance obligations. The template does not constitute legal or professional advice.\u003c\/em\u003e\u003c\/p\u003e","brand":"neat.","offers":[{"title":"Default Title","offer_id":47004383805634,"sku":null,"price":149.0,"currency_code":"AUD","in_stock":true}],"thumbnail_url":"\/\/cdn.shopify.com\/s\/files\/1\/0707\/8173\/1010\/files\/Conflict_of_Interest_Policy.jpg?v=1772542466"},{"product_id":"compliance-management-policy","title":"COMPLIANCE MANAGEMENT POLICY","description":"\u003cp\u003eCompliance management is not just about ticking boxes it is about building an organisation that operates with integrity, meets its legal and contractual obligations, and earns the trust of funders, regulators and communities. This bundle gives you a structured framework to identify, monitor and respond to your compliance obligations as they evolve.\u003c\/p\u003e\n\u003cp\u003e\u003cstrong\u003eWhat Is Included\u003c\/strong\u003e\u003c\/p\u003e\n\u003cul\u003e\n\u003cli\u003eCompliance Management Policy Template establishing your organisation's approach to identifying and meeting legislative, regulatory and contractual obligations\u003c\/li\u003e\n\u003cli\u003eCompliance Management Implementation Guide including a compliance planning framework, roles and responsibilities, and guidance for integrating compliance into operations\u003c\/li\u003e\n\u003cli\u003e12 months of updates included from the date of purchase\u003c\/li\u003e\n\u003c\/ul\u003e\n\u003cp\u003e\u003cstrong\u003eKey Features\u003c\/strong\u003e\u003c\/p\u003e\n\u003cul\u003e\n\u003cli\u003eCovers legislative compliance, contractual compliance, regulatory reporting and internal policy adherence\u003c\/li\u003e\n\u003cli\u003eAligns with the Human Services Quality Framework (HSQF) and ACNC compliance reporting requirements\u003c\/li\u003e\n\u003cli\u003eIncludes guidance on compliance risk assessment, monitoring schedules and breach response\u003c\/li\u003e\n\u003cli\u003eSupports integration with your existing risk management framework\u003cbr\u003e\n\u003c\/li\u003e\n\u003c\/ul\u003e\n\u003cp\u003e\u003cem\u003e*This is a template for guidance only and requires customisation to your specific organisational context, structure and compliance obligations. The template does not constitute legal or professional advice.\u003c\/em\u003e\u003c\/p\u003e","brand":"neat. ","offers":[{"title":"Default Title","offer_id":47004415197378,"sku":null,"price":149.0,"currency_code":"AUD","in_stock":true}],"thumbnail_url":"\/\/cdn.shopify.com\/s\/files\/1\/0707\/8173\/1010\/files\/Compliance_Management_Policy.jpg?v=1772542466"},{"product_id":"reportable-conduct","title":"REPORTABLE CONDUCT","description":"\u003cp\u003eQueensland's reportable conduct scheme places mandatory obligations on organisations employing or engaging people who work with children. Getting your reportable conduct framework right is not optional it is a legal requirement that directly affects the safety of children in your care and the integrity of your organisation. This bundle gives you everything you need to respond to, investigate and report reportable conduct matters correctly.\u003c\/p\u003e\n\u003cp\u003e\u003cstrong\u003eWhat Is Included\u003c\/strong\u003e\u003c\/p\u003e\n\u003cul\u003e\n\u003cli\u003eReportable Conduct Policy Template covering definitions, reporting obligations, investigation processes and confidentiality requirements under the Child Protection Act 1999 and the Working with Children (Risk Management and Screening) Act 2000\u003c\/li\u003e\n\u003cli\u003eReportable Conduct Implementation Guide step-by-step guidance for responding to allegations, conducting internal reviews and meeting reporting deadlines with the Office of the Public Guardian and Blue Card Services\u003c\/li\u003e\n\u003cli\u003e12 months of updates included from the date of purchase\u003c\/li\u003e\n\u003c\/ul\u003e\n\u003cp\u003e\u003cstrong\u003eKey Features\u003c\/strong\u003e\u003c\/p\u003e\n\u003cul\u003e\n\u003cli\u003eAligned with Queensland's reportable conduct scheme requirements and Blue Card Services obligations\u003c\/li\u003e\n\u003cli\u003eCovers all categories of reportable conduct including sexual misconduct, physical violence, ill-treatment and significant neglect\u003c\/li\u003e\n\u003cli\u003eIncludes a structured investigation framework that balances procedural fairness with child safety imperatives\u003c\/li\u003e\n\u003cli\u003eAddresses mandatory reporting timelines, confidentiality obligations and record-keeping requirements\u003c\/li\u003e\n\u003cli\u003eSupports compliance with the Child Safe Organisations Act 2024 and Child Safe Standards\u003cbr\u003e\n\u003c\/li\u003e\n\u003c\/ul\u003e\n\u003cp\u003e\u003cem\u003e*This is a template for guidance only and requires customisation to your specific organisational context, structure and compliance obligations. The template does not constitute legal or professional advice.\u003c\/em\u003e\u003c\/p\u003e","brand":"neat.","offers":[{"title":"Default Title","offer_id":47004564095170,"sku":null,"price":149.0,"currency_code":"AUD","in_stock":true}],"thumbnail_url":"\/\/cdn.shopify.com\/s\/files\/1\/0707\/8173\/1010\/files\/Reportable_Conduct.jpg?v=1772542466"},{"product_id":"strategic-planning-policy","title":"STRATEGIC PLANNING POLICY","description":"\u003cp\u003eThis bundle gives your organisation a structured policy and practical process to guide genuine, inclusive and evidence-informed strategic planning that drives organisational direction and funder confidence.\u003c\/p\u003e\n\u003cp\u003e\u003cstrong\u003eWhat Is Included\u003c\/strong\u003e\u003c\/p\u003e\n\u003cul\u003e\n\u003cli\u003eStrategic Planning Policy Template establishing the approach to strategic planning cycles, stakeholder engagement, environmental scanning and plan review\u003c\/li\u003e\n\u003cli\u003eStrategic Planning Implementation Guide with facilitation tools, planning process timelines, stakeholder consultation approaches and reporting frameworks\u003c\/li\u003e\n\u003cli\u003e12 months of updates included from the date of purchase\u003c\/li\u003e\n\u003c\/ul\u003e\n\u003cp\u003e\u003cstrong\u003eKey Features\u003c\/strong\u003e\u003c\/p\u003e\n\u003cul\u003e\n\u003cli\u003eCovers the full strategic planning cycle from environmental scanning through to plan monitoring and review\u003c\/li\u003e\n\u003cli\u003eIncludes guidance on board and management roles in strategic planning, including community and stakeholder engagement\u003c\/li\u003e\n\u003cli\u003eAligns with HSQF continuous improvement requirements\u003c\/li\u003e\n\u003cli\u003eSupports the development of theory of change and logic model approaches to strategic planning\u003cbr\u003e\n\u003c\/li\u003e\n\u003c\/ul\u003e\n\u003cp\u003e\u003cem\u003e*This is a template for guidance only and requires customisation to your specific organisational context, structure and compliance obligations. The template does not constitute legal or professional advice.\u003c\/em\u003e\u003c\/p\u003e","brand":"neat.","offers":[{"title":"Default Title","offer_id":47004568846530,"sku":null,"price":149.0,"currency_code":"AUD","in_stock":true}],"thumbnail_url":"\/\/cdn.shopify.com\/s\/files\/1\/0707\/8173\/1010\/files\/Strat_Planning_Policy.jpg?v=1772542466"},{"product_id":"blue-card-working-with-childrens-check","title":"BLUE CARD - WORKING WITH CHILDRENS CHECK","description":"\u003cp\u003eBlue Card compliance is a non-negotiable legal requirement for any Queensland organisation providing child related services. It is an offence to allow a person to commence child related work without satisfying the No Card No Start rule.  Blue Card compliance is also one of the first things an HSQF auditor will check. This bundle gives you the policy framework, the procedural guidance and the register structure to manage your Blue Card obligations with confidence.\u003c\/p\u003e\n\u003cp\u003e\u003cstrong\u003eWhat Is Included\u003c\/strong\u003e\u003c\/p\u003e\n\u003cul\u003e\n\u003cli\u003eBlue Card and Working with Children Check Policy Template covering legal obligations under the Working with Children (Risk Management and Screening) Act 2000 (Qld), the No Card No Start rule for volunteers and paid employees, Blue Card register requirements, pre-employment verification obligations, renewal management, negative notification response obligations, responsibilities across all levels of the organisation and conditional sections for NDIS providers and organisations that do not work directly with children\u003c\/li\u003e\n\u003cli\u003eBlue Card and Working with Children Check Policy Implementation Guide step-by-step guidance for registering your organisation with Blue Card Services, identifying all child related positions, verifying and linking existing workers, establishing a Blue Card register, updating your recruitment processes and managing ongoing compliance including expiry alerts and periodic portal audits\u003c\/li\u003e\n\u003cli\u003e12 months of updates included from the date of purchase\u003c\/li\u003e\n\u003c\/ul\u003e\n\u003cp\u003e\u003cstrong\u003eKey Features\u003c\/strong\u003e\u003c\/p\u003e\n\u003cul\u003e\n\u003cli\u003eAligned with HSQF Standard 4 Indicators 4.3 and 4.4 and Standard 6 Indicator 6.2 with a compliance mapping table included in the policy\u003c\/li\u003e\n\u003cli\u003eCovers the No Card No Start rule in full including the distinction between paid employees (who may commence once an application is lodged and linked) and volunteers (who must have their card before starting)\u003c\/li\u003e\n\u003cli\u003eBlue Card register framework covering card number, card type, issue and expiry dates, linking status and renewal tracking\u003c\/li\u003e\n\u003cli\u003eNegative notification response obligations clearly set out, including the requirement to immediately remove a worker from child related work on receipt of a suspension, cancellation or Negative Notice\u003c\/li\u003e\n\u003cli\u003eRecruitment process requirements including advertisement wording, pre-employment verification and linking timelines\u003c\/li\u003e\n\u003cli\u003eExemption card provisions covering registered teachers and guidance on other professional exemptions\u003c\/li\u003e\n\u003cli\u003eNDIS Worker Screening section addressing the separate clearance requirement for NDIS providers and how it operates alongside Blue Card obligations\u003c\/li\u003e\n\u003cli\u003eGuidance on Board member Blue Card obligations\u003c\/li\u003e\n\u003cli\u003eOrganisation size adaptations covering register management, verification processes, renewal reminders and auditing for small through to large organisations\u003c\/li\u003e\n\u003cli\u003eSupporting seven-phase implementation timeline from organisation registration through to ongoing monthly compliance monitoring\u003c\/li\u003e\n\u003c\/ul\u003e\n\u003cp\u003e\u003cem\u003e*This is a template for guidance only and requires customisation to your specific organisational context, structure and compliance obligations. The template does not constitute legal or professional advice.\u003c\/em\u003e\u003c\/p\u003e","brand":"neat.","offers":[{"title":"Default Title","offer_id":47006931452098,"sku":null,"price":149.0,"currency_code":"AUD","in_stock":true}],"thumbnail_url":"\/\/cdn.shopify.com\/s\/files\/1\/0707\/8173\/1010\/files\/Blue_Card_Policy.jpg?v=1772542466"},{"product_id":"business-continuity","title":"BUSINESS CONTINUITY AND DISASTER RECOVERY","description":"\u003cp\u003eHSQF Standard 1.3 requires community services organisations to have systems for responding to emergencies and critical incidents. Many Queensland Government funding agreements also require documented service continuity plans as a contract condition. For organisations delivering services to vulnerable clients, the consequences of being unprepared can be significant. This bundle gives you a practical, scalable framework that satisfies both your HSQF auditor and your funders without requiring specialist expertise.\u003c\/p\u003e\n\u003cp\u003e\u003cstrong\u003eWhat Is Included\u003c\/strong\u003e\u003c\/p\u003e\n\u003cul\u003e\n\u003cli\u003eBusiness Continuity and Disaster Recovery Policy Template covering the full policy framework including principles, responsibilities, business impact analysis requirements, continuity plan development, IT disaster recovery, a seven-step incident response procedure and testing obligations, with two built-in size options for small and larger organisations\u003c\/li\u003e\n\u003cli\u003eBusiness Continuity and Disaster Recovery Implementation Guide step-by-step guidance including how to conduct a business impact analysis, typical critical functions for community services organisations, a nine-week implementation timeline, funder requirement guidance and a thirteen-item implementation checklist\u003c\/li\u003e\n\u003cli\u003e12 months of updates included from the date of purchase\u003c\/li\u003e\n\u003c\/ul\u003e\n\u003cp\u003e\u003cstrong\u003eKey Features\u003c\/strong\u003e\u003c\/p\u003e\n\u003cul\u003e\n\u003cli\u003eAligned with HSQF Standard 1 Indicator 1.3 with a compliance mapping table included in the policy\u003c\/li\u003e\n\u003cli\u003eScalable framework aligned with AS\/NZS ISO 22301:2020 adapted to be practical without dedicated business continuity resources\u003c\/li\u003e\n\u003cli\u003eTwo built-in size options: Option A for small organisations (CEO coordination, annual desktop exercise) and Option B for larger organisations (Business Continuity Committee, tiered testing schedule)\u003c\/li\u003e\n\u003cli\u003eBusiness impact analysis framework with five assessment criteria prioritising client safety and wellbeing\u003c\/li\u003e\n\u003cli\u003eBusiness continuity plan development requirements including activation triggers, alternative work arrangements, communication protocols and return-to-normal procedures\u003c\/li\u003e\n\u003cli\u003eIT disaster recovery requirements covering backups, offsite storage, system redundancy and tested recovery procedures\u003c\/li\u003e\n\u003cli\u003eAddresses WHS Act 2011 (Qld) emergency planning obligations and funding body service agreement requirements\u003c\/li\u003e\n\u003cli\u003eImplementation Guide includes guidance on planning for cyber and pandemic scenarios, not just natural disasters\u003c\/li\u003e\n\u003cli\u003eOrganisation size adaptations table covering small through to large organisations\u003c\/li\u003e\n\u003c\/ul\u003e\n\u003cp\u003e\u003cem\u003e*This is a template for guidance only and requires customisation to your specific organisational context, structure and compliance obligations. The template does not constitute legal or professional advice.\u003c\/em\u003e\u003c\/p\u003e","brand":"neat.","offers":[{"title":"Default Title","offer_id":47006946918594,"sku":null,"price":149.0,"currency_code":"AUD","in_stock":true}],"thumbnail_url":"\/\/cdn.shopify.com\/s\/files\/1\/0707\/8173\/1010\/files\/Bus_Continuity_Recover_Policy.jpg?v=1772542466"},{"product_id":"code-of-conduct","title":"CODE OF CONDUCT","description":"\u003cp\u003eA Code of Conduct is often the first policy new workers encounter and one of the most scrutinised documents during an HSQF audit. A well-drafted Code does more than tick a compliance box. It sets the foundation for how everyone in your organisation behaves, makes decision-making in difficult situations clearer and protects clients, workers and the organisation. This bundle gives you a professionally structured Code that reflects your values and is practical enough to actually shape your workplace culture.\u003c\/p\u003e\n\u003cp\u003e\u003cstrong\u003eWhat Is Included\u003c\/strong\u003e\u003c\/p\u003e\n\u003cul\u003e\n\u003cli\u003eCode of Conduct Policy Template covering organisational values, five conduct standards (Respect and Dignity, Professional Behaviour, Safety and Wellbeing, Honesty and Integrity and Working with Clients), a prohibited conduct table, reporting obligations, consequences and responsibilities for the Board, CEO, managers and all workers\u003c\/li\u003e\n\u003cli\u003eCode of Conduct Implementation Guide step-by-step guidance for defining your values, managing acknowledgements, selecting conditional sections, rolling out the Code and embedding it in everyday practice\u003c\/li\u003e\n\u003cli\u003e12 months of updates included from the date of purchase\u003c\/li\u003e\n\u003c\/ul\u003e\n\u003cp\u003e\u003cstrong\u003eKey Features\u003c\/strong\u003e\u003c\/p\u003e\n\u003cul\u003e\n\u003cli\u003eAligned with HSQF Standard 1 Indicator 1.1 and Standard 4 Indicators 4.2 and 4.3 with a compliance mapping table included in the policy\u003c\/li\u003e\n\u003cli\u003eValues table with placeholder for your organisation’s actual values prompting genuine reflection rather than generic statements\u003c\/li\u003e\n\u003cli\u003eFive conduct standards covering all key areas of expected behaviour in community services settings\u003c\/li\u003e\n\u003cli\u003eProhibited conduct table covering eight categories including abuse and neglect, discrimination, harassment, dishonesty, safety breaches, confidentiality breaches, boundary violations and insubordination\u003c\/li\u003e\n\u003cli\u003eConditional section for NDIS providers aligning the Code to all seven NDIS Code of Conduct requirements\u003c\/li\u003e\n\u003cli\u003eConditional section for whistleblower arrangements\u003c\/li\u003e\n\u003cli\u003eVolunteer scope provision with a delete option for organisations without volunteers\u003cbr\u003e\n\u003c\/li\u003e\n\u003cli\u003eImplementation Guide includes a six-phase rollout timeline, organisation size adaptations and five common questions \u003cbr\u003e\n\u003c\/li\u003e\n\u003c\/ul\u003e\n\u003cp\u003e\u003cem\u003e*This is a template for guidance only and requires customisation to your specific organisational context, structure and compliance obligations. The template does not constitute legal or professional advice.\u003c\/em\u003e\u003c\/p\u003e","brand":"neat.","offers":[{"title":"Default Title","offer_id":47006947541186,"sku":null,"price":149.0,"currency_code":"AUD","in_stock":true}],"thumbnail_url":"\/\/cdn.shopify.com\/s\/files\/1\/0707\/8173\/1010\/files\/Code_of_Conduct_Policy.jpg?v=1772542466"},{"product_id":"fraud-prevention","title":"FRAUD AND CORRUPTION PREVENTION","description":"\u003cp\u003eFraud prevention is a governance obligation, not just a financial one. Funders expect it. The ACNC requires it. Boards are responsible for it. And for community services organisations, the stakes are particularly high because fraud diverts resources away from the people and communities you exist to serve. A well-designed fraud prevention framework reduces opportunity, establishes a culture of integrity and gives your people clear guidance on what to do if something does not look right. This bundle gives you everything you need to put that framework in place.\u003c\/p\u003e\n\u003cp\u003e\u003cstrong\u003eWhat Is Included\u003c\/strong\u003e\u003c\/p\u003e\n\u003cul\u003e\n\u003cli\u003eFraud and Corruption Prevention Policy Template covering fraud prevention principles, a fraud risk framework addressing the full range of fraud types relevant to community services organisations, prevention controls, gift and hospitality provisions, conflict of interest requirements, reporting channels, investigation obligations, protections for people who report concerns and responsibilities across all levels of the organisation\u003c\/li\u003e\n\u003cli\u003eFraud and Corruption Prevention Policy Implementation Guide step-by-step guidance for assessing your fraud risk profile, customising controls to reflect what your organisation actually does, setting gift thresholds, establishing reporting channels, meeting funder notification obligations and adapting the framework to your organisational size\u003c\/li\u003e\n\u003cli\u003e12 months of updates included from the date of purchase\u003c\/li\u003e\n\u003c\/ul\u003e\n\u003cp\u003e\u003cstrong\u003eKey Features\u003c\/strong\u003e\u003c\/p\u003e\n\u003cul\u003e\n\u003cli\u003eAligned with HSQF Standard 4 Indicators 4.1 (Sound governance), 4.2 (Ethical practice) and 4.5 (Risk management) with a compliance mapping table included in the policy\u003c\/li\u003e\n\u003cli\u003eFraud risk framework covering six fraud types common in community services: expense fraud, timesheet fraud, procurement fraud, asset theft, cash handling fraud and grant fraud, each with examples and common controls\u003c\/li\u003e\n\u003cli\u003eFraud Triangle model embedded in the risk framework, focusing prevention effort on reducing opportunity through strong controls and an integrity culture\u003c\/li\u003e\n\u003cli\u003eGift and hospitality provisions with a configurable threshold amount and guidance on gifts registers\u003c\/li\u003e\n\u003cli\u003eReporting channels framework including direct management reporting, Board Chair escalation for matters involving the CEO and guidance on establishing anonymous reporting channels\u003c\/li\u003e\n\u003cli\u003eProtections for people who report concerns in good faith, with reference to the Public Interest Disclosure Act 2010 (Qld)\u003c\/li\u003e\n\u003cli\u003eSeparation of duties principle with practical compensating controls for small organisations that cannot fully segregate key functions\u003c\/li\u003e\n\u003cli\u003eGuidance on funder notification obligations and when to involve police for significant fraud matters\u003c\/li\u003e\n\u003cli\u003eOrganisation size adaptations covering segregation of duties, approval processes, audit arrangements, reporting channels and monitoring for small through to large organisations\u003c\/li\u003e\n\u003cli\u003eImplementation Guide includes a six-phase implementation timeline, five common questions and practical tips covering culture, high risk areas, oversight and documentation\u003c\/li\u003e\n\u003c\/ul\u003e\n\u003cp\u003e\u003cem\u003e*This is a template for guidance only and requires customisation to your specific organisational context, structure and compliance obligations. The template does not constitute legal or professional advice.\u003c\/em\u003e\u003c\/p\u003e","brand":"neat.","offers":[{"title":"Default Title","offer_id":47006948982978,"sku":null,"price":149.0,"currency_code":"AUD","in_stock":true}],"thumbnail_url":"\/\/cdn.shopify.com\/s\/files\/1\/0707\/8173\/1010\/files\/Fraud_Policy.jpg?v=1772542465"},{"product_id":"data-breach-response","title":"DATA BREACH RESPONSE","description":"\u003cp class=\"font-claude-response-body break-words whitespace-normal leading-[1.7]\"\u003eA data breach can happen to any organisation — a misdirected email, a lost device, a ransomware attack or an employee accessing records without authorisation. \u003c\/p\u003e\n\u003cp\u003eFor community services organisations, the stakes are particularly high. The people whose information you hold are often among the most vulnerable in the community. A breach involving their health information, safety disclosures or financial details can cause serious, lasting harm.\u003c\/p\u003e\n\u003cp\u003eThe regulatory environment has never been more demanding. The Privacy and Other Legislation Amendment Act 2024 (Cth), which took effect on 11 December 2024, significantly strengthened privacy obligations and OAIC enforcement powers.\u003c\/p\u003e\n\u003cp\u003e Organisations that cannot demonstrate adequate technical and organisational measures to protect personal information now face tiered civil penalties, compliance notices and the risk of individual damages claims.\u003c\/p\u003e\n\u003cp\u003eThis bundle gives you a legally current, HSQF-aligned framework to implement before you need it.\u003c\/p\u003e\n\u003cp\u003e\u003cstrong\u003eWhat Is Included\u003c\/strong\u003e\u003c\/p\u003e\n\u003cul\u003e\n\u003cli\u003eData Breach Response Policy Template covering the four-step response framework (contain, assess, notify, review), when notification to the OAIC and affected individuals is required under the Notifiable Data Breaches scheme, responsibilities across governance, management and worker levels, breach register requirements, the 30-day notification deadline and its correct application, related legislation including the Privacy Act 1988 (Cth) as amended, and a clarifying note on the scope of the Information Privacy Act 2009 (Qld) as it applies to community sector organisations\u003c\/li\u003e\n\u003cli\u003eData Breach Response Policy Implementation Guide covering how to determine whether the Privacy Act applies to your organisation, step by step customisation instructions, conditional sections for NDIS providers, health service providers and Queensland Government contracted organisations, organisation size adaptations, implementation timeline, common questions including a plain English explanation of eligible data breaches and serious harm, and practical tips including guidance on tabletop testing\u003c\/li\u003e\n\u003cli\u003e12 months of updates included from the date of purchase\u003c\/li\u003e\n\u003c\/ul\u003e\n\u003cp\u003e\u003cstrong\u003eKey Features\u003c\/strong\u003e\u003c\/p\u003e\n\u003cul\u003e\n\u003cli\u003eReflects the Privacy and Other Legislation Amendment Act 2024 (Cth) in force from 11 December 2024, including strengthened APP 11 obligations requiring both technical and organisational measures, enhanced OAIC enforcement powers and the introduction of a statutory tort for serious invasions of privacy\u003c\/li\u003e\n\u003cli\u003eFour-step breach response framework: contain, assess, notify, review — structured to meet the 30-day assessment and notification deadline under the Notifiable Data Breaches scheme\u003c\/li\u003e\n\u003cli\u003eCorrectly scopes the Information Privacy Act 2009 (Qld), clarifying that it applies to Queensland public sector agencies and not directly to community sector organisations, with a conditional section for organisations whose funding contracts impose Queensland Privacy Principles obligations by reference\u003c\/li\u003e\n\u003cli\u003eCovers the full range of breach types relevant to community services, including misdirected communications, lost or stolen devices, cyber-attacks, ransomware, phishing, and improper record disposal\u003c\/li\u003e\n\u003cli\u003eRisk assessment matrix distinguishing factors indicating higher and lower risk of serious harm to support the eligible data breach determination\u003c\/li\u003e\n\u003cli\u003eConditional sections for NDIS registered providers, health service providers and Australian Government contracted service providers\u003c\/li\u003e\n\u003cli\u003eResponsibilities table covering Board, CEO, Privacy Officer and all workers with clearly defined accountability at each level\u003c\/li\u003e\n\u003cli\u003eAligned to HSQF Standard 1.4 (Records management) and Standard 4.5 (Risk management) with a compliance mapping table\u003c\/li\u003e\n\u003c\/ul\u003e\n\u003cp\u003e\u003cem\u003e*This is a template for guidance only and requires customisation to your specific organisational context, structure and compliance obligations. The template does not constitute legal or professional advice.\u003c\/em\u003e\u003c\/p\u003e","brand":"neat.","offers":[{"title":"Default Title","offer_id":47010162639042,"sku":null,"price":149.0,"currency_code":"AUD","in_stock":true}],"thumbnail_url":"\/\/cdn.shopify.com\/s\/files\/1\/0707\/8173\/1010\/files\/Data_Breach_Response_Policy_Tile_b8f6a08e-664d-43fa-9adb-a7170dc6d0aa.jpg?v=1772587939"}],"thumbnail_url":"\/\/cdn.shopify.com\/s\/files\/1\/0707\/8173\/1010\/collections\/neat_Governance_and_Compliance.jpg?v=1764302634","url":"https:\/\/www.neatco.com.au\/collections\/governance-and-compliance.oembed","provider":"neat. ","version":"1.0","type":"link"}