A Fair Work inspector walks into your office unannounced. "We'd like to see your payroll records."
Your stomach drops.
A$2 billion. That's what the Fair Work Ombudsman has recovered in underpayments over five years.
These organisations had HR teams, payroll systems, and professional advisors. They still got it wrong.
And as of January 2025, intentional underpayment isn't just expensive, it's criminal. Up to 10 years imprisonment.
This guide shows you how to audit your HR compliance before someone else does it for you. You'll get a comprehensive 10-section checklist covering both Australia and New Zealand, real case studies that reveal exactly what goes wrong, and practical frameworks to fix what you find.
Think of an HR audit as a comprehensive health check for your people management practices. You're examining everything from recruitment and onboarding processes to payroll compliance, performance management, and workplace health and safety. But unlike a medical check-up that happens once a year, an HR audit is both a diagnostic tool and a preventive measure that can save your organisation from costly compliance failures.
At its core, an HR audit is a systematic review of your organisation's:
Here's where it gets interesting for businesses operating in Australia and NZ: both countries have distinct legal frameworks that create unique compliance requirements. You can't simply apply Australian practices in New Zealand or vice versa – each country's employment law has evolved differently, with different terminology, different obligations, and different enforcement approaches.
In Australia, you're navigating:
In New Zealand, you're working within:
Getting it wrong in either country isn't just expensive, though it absolutely can be. It damages employee trust. It triggers reputational harm that can take years to repair. And it consumes leadership time and energy that should be focused on growing your business, not firefighting compliance disasters.
An HR audit helps you identify problems while they're still small and fixable. It streamlines inefficient processes that are costing you time and money. Most importantly, it builds a foundation for sustainable growth based on fair, compliant employment practices.
Before you dive into your HR audit, you need to understand the compliance frameworks you're working within. The good news? While Australia and New Zealand have different legislation, they share similar underlying principles around fair treatment, good faith, and worker protection. ⬇️
The Fair Work Act 2009 is hands-down the most important piece of employment legislation in Australia.
It establishes the National Employment Standards (NES) – 11 minimum entitlements covering maximum weekly hours, annual leave, personal/carer's leave, parental leave, and more.
Your Fair Work Act compliance audit needs to verify employees receive correct NES entitlements, modern awards are properly applied, and employment contracts don't undercut minimum standards.
Modern awards set industry-specific minimum pay rates and conditions, and getting award classification wrong is one of the most common compliance failures.
In 2024-25, the Fair Work Ombudsman's investigations revealed that 60% of recoveries came from large corporate sector employers, with nearly A$213 million back-paid to almost 118,000 underpaid employees. Since July 2020, the large corporate sector has had A$1.11 billion back-paid to workers.
Privacy and record-keeping obligations also matter. For private sector employers in Australia, employee records used directly for employment purposes are generally exempt from the Privacy Act 1988. However, this exemption doesn't extend to job applicants, and keeping accurate records is mandatory under the Fair Work Act – you'll need employee information retained for seven years.
Work Health and Safety laws vary by state and territory, but all Australian jurisdictions follow the model WHS Act. Workplace health and safety fines can exceed A$3 million for serious breaches, making your workplace health and safety audit AU a critical component of risk management.
The Employment Relations Act 2000 forms the backbone of employment relationships in NZ. Unlike Australia's award system, New Zealand requires all employees to have written individual employment agreements before they start work. The ERA establishes principles of good faith, fair process, and dispute resolution that permeate every aspect of employment.
Your NZ employment law HR audit checklist needs to verify all employees have compliant written agreements, good faith obligations are being met, and personal grievance procedures are properly documented. Recent legislative changes have extended the timeframe for raising personal grievance claims related to sexual harassment from 90 days to 12 months, and strengthened health and safety committee requirements.
The Holidays Act 2003 has been a compliance minefield for many NZ employers. Leave calculation complexity, particularly for employees with varying hours or multiple pay rates, has led to widespread underpayment issues. If you're conducting an NZ payroll and leave compliance audit, consider engaging specialist review for this area, it's genuinely complex.
The Health and Safety at Work Act 2015 establishes primary duty of care obligations for PCBUs (persons conducting a business or undertaking). Your H&S NZ requirements for an HR audit include documented policies, worker participation processes, hazard management, and incident investigation procedures.
Privacy Act 2020 creates obligations around personal information collection, storage, use, and disclosure. Unlike Australia's exemption for employee records, NZ employers must comply with the Privacy Act for all employee and applicant information, making data handling a critical audit focus.
Immigration compliance has become increasingly important. Since January 2024, the Worker Protection (Migrant and Other Employees) Act has strengthened enforcement measures.
Employers must provide employment documentation to Immigration Officers within ten working days when requested. In the first year of the Immigration Employment Infringement Scheme, 121 infringement notices were issued to 118 employers, totalling NZ$363,000 in penalties. Employers who breach employment standards face 6-24 month "stand-down" periods where they can't support migrant visa applications.
You wouldn't start building a house without laying proper foundations. Same goes for an HR audit.
For small businesses, this might just be you and perhaps an external HR consultant. Larger organisations should include representatives from HR, Finance/Payroll, Health and Safety, IT (for HRIS systems), and Legal or compliance.
Cross-functional representation means you don't miss blind spots that only become obvious when systems are viewed holistically.
Are you conducting a comprehensive annual review covering everything, or focusing on specific high-risk areas?
Common focused audits include payroll compliance (pure wages, leave, and superannuation/KiwiSaver), recruitment and onboarding processes, performance management systems, or employee records verification. Your scope should be driven by previous audit findings, known risk areas, recent regulatory changes, specific compliance concerns, and available time and resources.
You'll need policy documents (employee handbook, workplace policies, code of conduct, WHS/H&S procedures), employment agreements and job descriptions, payroll and leave records, recruitment and onboarding materials, performance review templates, health and safety documentation, and system access details for your HRIS platforms.
Having these documents organised before starting saves enormous time and prevents the audit from stalling while people hunt for information. Create a central repository (physical or digital) where all audit-related documents can be accessed by the audit team.
Ten critical areas you need to audit, with specific requirements for both Australia and New Zealand. ⬇️
Where your employment relationship starts matters. Get recruitment wrong, and you're setting yourself up for problems before someone even starts work.
In Australia, you must:
In New Zealand, you must:
Regardless of where you're operating, your selection criteria should be objective and role-related. Interview questions need to be consistent and non-discriminatory across all candidates. Document your reference checking procedures. And when you're letting candidates down? Keep it professional.
➡️ Audit this by: Reviewing your last 10-20 recruitment processes. Pull the job ads, selection criteria, interview notes, and hiring decisions. Look for consistency and compliance across the board.
This is your foundation. Get the employment agreement wrong, and you're building everything else on shaky ground.
In Australia, you must:
In New Zealand, you must:
⚠️ Immigration compliance in New Zealand got significantly stricter in January 2024 when the Worker Protection (Migrant and Other Employees) Act strengthened enforcement measures:
Your onboarding compliance checklist should cover both countries: collect tax file numbers (AU) or IRD numbers (NZ), complete superannuation or KiwiSaver forms, verify bank details, obtain emergency contact information, and ensure workplace policies are acknowledged in writing.
➡️ Audit this by: Pulling a sample of employment agreements from different time periods – say, five from this year, five from two years ago, five from five years ago. Verify they contain all mandatory clauses and reflect current legal requirements. Then check your induction checklist actually ensures all required forms get completed.
This is where HR audits uncover the most significant (and most expensive) issues. Payroll compliance failures account for the majority of Fair Work Ombudsman recoveries. The complexity of modern awards in Australia, combined with New Zealand's infamous Holidays Act, creates the perfect storm for errors that compound over years.
In Australia, start with minimum wage verification. As of 1 July 2025, the national minimum wage is A$24.95 per hour (up from A$24.10). But here's where it gets tricky – most employees aren't actually paid the national minimum wage. They're covered by modern awards that set higher rates depending on their classification, their experience level, and the specific type of work they're doing.
Modern award classification must be spot-on. During your audit, pull a sample of position descriptions and verify they match the award classification being applied. Don't just assume HR got it right when someone was hired three years ago.
Penalty rates and allowances need proper application. Weekend work, public holidays, shift work, overtime: each attracts specific loadings under most awards. Yes, your payroll system should handle this automatically. But during an audit, manually check a sample of payslips against the award requirements. I've seen countless systems configured incorrectly that nobody questioned for years, accumulating errors that eventually became catastrophically expensive.
Superannuation contributions must meet the 12% minimum (increased from 11.5% on 1 July 2025). Be aware that the maximum super contribution base is now A$62,500 per quarter (down from A$65,070), which affects how you calculate super for higher earners.
Payslips must be provided within one working day of payment and contain all required Fair Work information. During your audit, verify you're actually meeting this requirement consistently.
The maximum superannuation contribution base is now A$62,500 per quarter (down from A$65,070), which affects how you calculate super for higher earners. From 1 January 2025, intentionally underpaying employees became a criminal offence under the Fair Work Legislation Amendment Act.
In New Zealand, minimum wage compliance requires paying at least NZ$23.50 per hour for adult employees (as of 1 April 2025), with starting-out and training minimums at NZ$18.80 per hour. Leave calculations under the Holidays Act 2003 are genuinely complex, particularly for employees with varying hours or multiple pay rates. Many major underpayment cases in NZ stem from Holidays Act miscalculation – consider specialist review for this area.
KiwiSaver contributions must be properly calculated (minimum 3% employer contribution, with KiwiSaver paid on top of minimum wage, not included in it), PAYE must be correctly calculated using progressive tax rates from 10.5% to 39%, and ACC Work Account levies must be applied correctly. Employer Superannuation Contribution Tax (ESCT) on KiwiSaver contributions ranges from 10.5% to 39% based on employee income.
Record-keeping requirements differ between countries: Australia mandates seven years retention for employee records, while New Zealand requires six years for pay records, leave records, and employment agreements (six years after employment ends).
➡️ Audit action: Conduct a payroll compliance audit for a sample of employees across different classifications, employment types, and pay structures. Verify calculations manually against award/agreement requirements. Check record retention compliance. If you find errors, extend the audit scope immediately, as payroll errors rarely occur in isolation.
Leave entitlements represent another major compliance risk, particularly in New Zealand where the Holidays Act 2003 has created widespread confusion.
Australian employers must provide four weeks annual leave (five for shiftworkers), track personal/carer's leave accrual and usage correctly, calculate long service leave according to state/territory requirements, communicate parental leave entitlements properly, and calculate public holiday payments correctly. With recent Fair Work changes, you'll also need to verify casual conversion rights are being offered after 12 months of regular service.
In New Zealand, annual leave calculation is where things get complex, especially for employees with varying hours or multiple pay rates. You need to provide sick leave properly (10 days after six months' service), communicate bereavement leave provisions, manage alternative holidays for working public holidays, and implement domestic violence leave provisions (10 days). The Holidays Act calculation complexity has led to numerous high-profile underpayment cases – if you're uncertain, engage specialist advice.
➡️ Audit action: Review leave balances for accuracy across employee groups. Test annual leave calculations for employees with varying hours or multiple pay rates. Verify leave is being accurately accrued and properly paid out when taken. Check that your HRIS system calculations align with legislative requirements.
Misclassification is expensive. Very expensive. It's also one of the most common issues uncovered in HR compliance audits.
In Australia, you need to correctly distinguish between permanent full-time, part-time, and casual employees. Casual employment must be correctly defined under section 15A of the Fair Work Act, with casual loading (typically 25%) properly applied where required. After 12 months of regular service, casual employees have conversion rights that must be communicated.
New Zealand requires clear definition of employee status (full-time, part-time, casual, fixed-term) in agreements. The employee versus independent contractor distinction must be correctly determined using the multi-factor test. Fixed-term agreements need genuine reasons for their use, and if you're using 90-day trial periods, they must be properly documented and applied (noting that proposed legislative changes may affect this).
➡️ Audit action: Review your contractor agreements and relationships. Apply the multi-factor test for employee versus contractor distinction. For casual employees, verify they truly have no firm advance commitment to continuing work and can refuse shifts without consequence. Check that fixed-term agreements have genuine business reasons documented.
How you manage performance and handle discipline directly impacts your exposure to unfair dismissal claims and personal grievances.
Australian requirements centre on procedural fairness. Performance review procedures should be fair and documented, disciplinary processes must comply with Fair Work Act unfair dismissal protections, progressive discipline needs documentation, termination procedures must follow proper process, and final pay must include all entitlements within required timeframes. Remember that the high income threshold for unfair dismissal increased to A$183,100 on 1 July 2025 – employees earning above this (and not covered by awards or enterprise agreements) cannot bring unfair dismissal claims.
New Zealand's framework emphasises good faith in all performance discussions. Personal grievance procedures must be clear and accessible, disciplinary processes must follow natural justice principles, serious misconduct must be properly defined and evidenced before summary dismissal, and redundancy processes must comply with ERA requirements for fair selection and consultation. Since June 2023, employees have 12 months (not 90 days) to raise personal grievances related to sexual harassment.
➡️ Audit action: Review performance management records. Check that reviews happen consistently across the organisation. Examine recent disciplinary cases for procedural fairness and documentation quality. Verify termination paperwork includes all required elements and final payments were calculated correctly.
Workplace health and safety is a critical business risk. In Australia, WHS fines can exceed A$3 million for serious breaches. In New Zealand, WorkSafe enforces penalties including significant fines and potential imprisonment for serious offences.
Your Australian WHS audit should verify current and communicated policies, documented hazard identification and risk assessment processes, provided and recorded safety training, incident reporting and investigation procedures, WHS consultation arrangements (committees, representatives where required), provision of necessary PPE, and available first aid facilities with trained officers.
New Zealand's H&S audit focuses on whether PCBUs have fulfilled primary duty of care obligations, worker participation practices enable meaningful involvement, hazards are identified with risks assessed and controls implemented, competent persons are identified for specialist tasks, notifiable events are reported to WorkSafe NZ, and worker health monitoring is conducted where required.
➡️ Audit action: Conduct a workplace inspection. Review your hazard register—is it current and comprehensive? Check training records for currency and coverage. Examine incident reports for patterns that might indicate systemic issues. Verify consultation mechanisms are actually functioning, not just documented.
Your policies set the framework for how your organisation operates. Outdated or missing policies create compliance gaps and cultural issues.
Anti-discrimination and harassment policies must comply with Australian Human Rights Commission guidelines or NZ Human Rights Act 1993, complaint mechanisms must be accessible, investigation procedures must be clear, and training must be provided to managers and staff. Data privacy and security requires compliance with Privacy Act 1988 (AU) or Privacy Act 2020 (NZ), security measures to protect sensitive information, data breach response procedures, and employee access to their personal information.
Other essential policies include bullying and harassment prevention, equal employment opportunity, workplace diversity and inclusion, social media and electronic communications, flexible working arrangements, and (in Australia from August 2024 for larger employers, August 2025 for smaller) right to disconnect provisions.
Technology can streamline compliance, or create massive problems if incorrectly configured. The Woolworths underpayment case demonstrated that sophisticated systems still fail if set up incorrectly.
Your technology compliance audit should verify employee data is stored securely, access controls limit who can view sensitive information, backup and disaster recovery procedures are tested, data retention schedules comply with legal requirements, and system integrations (payroll, time tracking, recruitment) function correctly.
Record accuracy matters too: Are employee contact details current? Bank details verified? Tax declarations up to date? Emergency contacts accessible? Position titles and reporting structures accurate?
➡️ Audit action: Run data integrity reports from your HRIS. Identify duplicate records, missing information, or inconsistencies. Review user access permissions—do former employees still have system access? Test data backup and recovery procedures.
Beyond pure compliance, effective HR audits examine whether practices support business objectives.
Review key metrics: turnover rates (overall and by department/role), time to hire, cost per hire, training hours per employee, absenteeism rates, workers compensation claims frequency, performance review completion rates, and employee engagement scores if measured.
Ask strategic questions: Do HR practices support business strategy? Are workforce plans aligned with growth objectives? Does recruitment attract candidates with needed skills? Are development programs building necessary capabilities?
➡️ Audit action: Analyse HR metrics for trends. Compare against industry benchmarks where available. Identify areas for operational improvement beyond compliance. Look for correlations between HR practices and business outcomes.
For most organisations, a comprehensive annual review is the baseline minimum. This is genuinely non-negotiable best practice, especially for small to mid-sized organisations. Think of it like an annual financial audit or tax return. You don't skip it just because it's inconvenient.
Larger organisations typically need more frequent reviews. If you've got multiple sites, diverse employment arrangements, or operations across both Australia and New Zealand, annual comprehensive audits should be supplemented with quarterly focused reviews on high-risk areas. High-risk industries (aged care, hospitality, construction, universities) need even more rigour given the Fair Work Ombudsman's enforcement priorities.
But don't wait a full year to address everything. Certain events should trigger immediate focused audits, regardless of when your last comprehensive review happened ⬇️
This is one of the most common questions I get asked. The answer isn't straightforward because it depends on your capabilities, your risk profile, and what you need to achieve.
The key is honest assessment of your internal capabilities. We’ve seen organisations try to save money with in-house audits that miss critical issues because the team doesn't know what they don't know.
You've completed your comprehensive HR compliance audit. Now comes the critical part: actually addressing what you've found. Because an audit without remediation is just expensive documentation.
Not all findings demand equal urgency.
Document the specific issue identified, the root cause, your recommended solution, who's responsible for implementation, target completion date, resources required, and how you'll measure success.
Critical and high-priority items demand immediate action. If you've discovered wage underpayments, work with legal counsel on a remediation strategy. Fair Work Ombudsman guidance suggests voluntary disclosure and prompt back-payment significantly reduces penalties. For policy gaps, draft or update policies, have them reviewed by employment law specialists, communicate changes clearly to all staff, and document acknowledgment.
Establish regular check-ins to monitor remediation progress. For boards or senior leadership, provide summary reports showing number of findings by category, remediation progress percentage, outstanding critical items, estimated cost of compliance, and risk mitigation achieved.
Don't treat HR audits as one-off exercises. For high-risk areas, schedule focused reviews (like six-month payroll compliance checks) to make sure improvements stick.
Here's what you need to remember:
Your next HR audit might just be the most valuable business investment you make all year. 👏
Need help managing HR compliance across Australia and New Zealand? Subscribe-HR provides cloud-based HR software designed specifically for ANZ businesses navigating complex employment legislation. From automated award interpretation to compliant leave calculations, our platform helps you maintain compliance without the administrative headache.
Explore these related HR compliance guides ⬇️
Visit the Subscribe-HR blog for more expert insights on Australian and New Zealand employment law, compliance updates, and HR best practices.
Disclaimer: This article provides general information about HR audit processes in Australia and New Zealand. It should not be relied upon as legal advice. Employment laws change regularly, and specific circumstances vary. Consult qualified employment law professionals for advice specific to your organisation's situation.