Sherm Login

Tag: WorkplaceCompliance

Audit Evidence: What to Keep, What to Drop, What to Digitise

Posted on by Marnie Cruickshank

If you’ve ever prepared for a WHS audit, you know the temptation: keep everything.

Folders expand. Shared drives overflow. Email chains get archived “just in case.”

But experienced auditors don’t reward volume — they look for relevance, reliability, and traceability.

Whether you’re preparing for a regulator interaction, client audit, or certification against ISO 45001, here’s how to decide what audit evidence to keep, what to drop, and what to digitise.

First: What Counts as “Audit Evidence”?

Audit evidence is any information that demonstrates your WHS management system:

  • Meets legal requirements (e.g. Work Health and Safety Act 2011 and state equivalents)
  • Is implemented in practice
  • Is effective and reviewed

Evidence must be:

  • Accurate
  • Current
  • Accessible
  • Traceable

If it doesn’t support those criteria, it’s probably clutter.

What to Keep

These are documents and records that auditors consistently request and rely on.

  1. Core Governance Documents

Keep:

  • WHS policy signed by senior leadership
  • Roles and responsibilities
  • Organisational chart
  • Legal compliance register
  • Risk management procedure

These demonstrate structure and accountability.

  1. Risk Management Records

Keep:

  • Current risk assessments
  • SWMS (where applicable)
  • Hazard registers
  • Control implementation records
  • Review evidence

Important: Outdated risk assessments that no longer reflect operations should be archived — not active.

  1. Training and Competency Records

Keep:

  • Induction records
  • High-risk work licences
  • Verification of competency (VOC)
  • Refresher training logs
  • Supervisor competency evidence

Auditors look for proof that workers are competent at the time of work, not just when they were first hired.

  1. Incident and Corrective Action Records

Keep:

  • Incident reports
  • Investigation findings
  • Root cause analysis
  • Corrective action tracking
  • Evidence of close-out

What matters most is showing that actions were implemented and verified.

  1. Consultation Evidence

Keep:

  • Safety committee minutes
  • HSR records
  • Toolbox talk records
  • Worker consultation feedback

WHS legislation places strong emphasis on consultation — auditors expect to see evidence of it.

What to Drop (or Archive Properly)

Not all documents need to stay in your active audit folder.

  1. Superseded Policies and Procedures

If a document has been replaced:

  • Archive it with version control
  • Remove it from operational folders
  • Ensure only current versions are accessible

Auditors often identify “document control failures” when outdated procedures remain in circulation.

  1. Redundant Forms

Many organisations collect forms no one reviews:

  • Pre-start checklists never analysed
  • Hazard reports with no follow-up
  • Meeting minutes no one reads

If a record doesn’t inform decisions or improvements, question why it exists.

  1. Excessive Email Evidence

Email chains are weak audit evidence unless:

  • They demonstrate formal approval
  • They verify a decision
  • They confirm action completion

Where possible, convert critical decisions into controlled records.

  1. Duplicated Records

If information exists in multiple systems:

  • Choose one “source of truth”
  • Eliminate manual duplication
  • Reduce reconciliation errors

Duplication creates audit risk.

What to Digitise

Digitisation isn’t just about convenience — it improves traceability and audit readiness.

  1. Training Registers

Move from spreadsheets to:

  • Centralised training management systems
  • Automated refresher alerts
  • Licence expiry tracking

This reduces non-compliance risk.

  1. Risk Registers

Digital risk systems allow:

  • Version control
  • Review tracking
  • Control verification
  • Dashboard reporting

Auditors appreciate systems that clearly show when risks were last reviewed.

  1. Corrective Action Tracking

Manual spreadsheets often fail because:

  • Actions aren’t assigned clearly
  • Deadlines aren’t monitored
  • Close-outs aren’t verified

Digital systems provide accountability and audit trails.

  1. Contractor Management

Digitise:

  • Prequalification documents
  • Insurance currency
  • SWMS approvals
  • Induction records

This is especially valuable for construction, logistics, and multi-site businesses.

How Long Should You Keep WHS Records?

Retention requirements vary depending on the type of record and state legislation, but common examples include:

  • Incident records involving serious injury: often 5+ years
  • Health monitoring records (e.g. asbestos exposure): decades
  • Training records: duration of employment + additional period

Always align with applicable WHS regulations and industry-specific requirements.

The “Audit-Ready” Test

Ask these five questions about any document:

  1. Does this demonstrate compliance or effectiveness?
  2. Is it current?
  3. Is it controlled (versioned and authorised)?
  4. Can we retrieve it within minutes?
  5. Does it show follow-through, not just intent?

If the answer is “no” to most of these, reconsider its place in your system.

The Biggest Mistake Businesses Make

They build systems for the audit — not for the business.

Auditors (including those assessing against ISO 45001) are trained to detect:

  • Over-documented systems
  • Forms created purely for compliance
  • Records that exist but aren’t used

Strong evidence is:

  • Simple
  • Relevant
  • Consistent
  • Embedded in daily operations

Final Thoughts

Good audit evidence isn’t about volume — it’s about clarity and control.

Keep what proves your system works. Drop what adds noise. Digitise what improves visibility and accountability.

An audit-ready organisation isn’t the one with the most folders. It’s the one where evidence is accurate, current, and easy to find — every day, not just before the auditor arrives.

Sherm Software will help you to become an audit-ready organisation, book a demo today to see how.

Our Audit Readiness guide explains how businesses can design systems that withstand multiple audit regimes simultaneously.

What WHS Auditors Actually Look For

Posted on by Marnie Cruickshank

Work Health and Safety (WHS) audits can feel intimidating. Whether you’re preparing for a regulator visit, a client prequalification, or certification against ISO 45001, many businesses aren’t entirely sure what auditors are really assessing.

The good news? WHS auditors aren’t looking for perfection. They’re looking for evidence of a functioning safety management system that is practical, understood, and consistently applied.

Here’s what WHS auditors actually focus on.

Legal Compliance with WHS Legislation

First and foremost, auditors assess compliance with the relevant state or territory WHS legislation, such as:

  • Work Health and Safety Act 2011
  • SafeWork NSW requirements
  • WorkSafe Victoria guidance

They want to see that your organisation understands its primary duty of care, officer due diligence obligations, and worker responsibilities.

Typical evidence requested:

  • WHS policy signed by senior management
  • Documented responsibilities
  • Legislative compliance register
  • Evidence of periodic legal reviews

Risk Management Processes

WHS law is risk-based. Auditors expect to see a structured process for:

  • Hazard identification
  • Risk assessment
  • Implementation of controls
  • Review of control effectiveness

They’ll check whether your process aligns with the hierarchy of control (elimination, substitution, engineering, administrative, PPE).

Common areas reviewed:

  • High-risk construction work
  • Plant and equipment
  • Manual handling
  • Hazardous chemicals
  • Psychosocial hazards (increasingly important)

They’re not just checking paperwork — they’ll verify that controls exist in practice.

Consultation and Worker Participation

Under WHS laws, consultation is mandatory. Auditors will examine:

  • Health and Safety Representative (HSR) arrangements
  • Safety committee meeting minutes
  • Toolbox talks
  • Worker feedback mechanisms

They may interview workers directly. If employees can’t explain safety procedures or feel disconnected from the system, that’s a red flag.

Training and Competency

Auditors look for proof that workers are competent to perform their tasks safely.

Evidence may include:

  • Induction records
  • High-risk work licences
  • Verification of Competency (VOC) records
  • Supervisor training
  • Contractor onboarding systems

They’ll also check whether refresher training is scheduled and tracked.

Incident Reporting and Investigation

A strong WHS system treats incidents as learning opportunities.

Auditors review:

  • Incident reports
  • Investigation findings
  • Root cause analysis
  • Corrective actions
  • Evidence that actions were closed out

They may ask:

“Show me an incident from the last 12 months and what changed because of it.”

Documentation vs. Reality

One of the biggest misconceptions is that WHS audits are purely document checks.

They aren’t.

Auditors conduct:

  • Site inspections
  • Worker interviews
  • Observation of work practices

If your procedures say one thing but work is done differently, that gap will be identified. Consistency between Policy, Procedure and Practice is critical.

Contractor and Supplier Management

If you engage contractors, auditors will examine:

  • Prequalification processes
  • SWMS (Safe Work Method Statements)
  • Contractor induction
  • Monitoring and supervision
  • Performance reviews

Principal contractors and businesses conducting high-risk work receive particular scrutiny.

Emergency Preparedness

Auditors assess whether you are prepared for reasonably foreseeable emergencies.

They’ll review:

  • Emergency plans
  • Evacuation diagrams
  • Fire warden training
  • Drill records
  • First aid arrangements

And they’ll often ask workers what they would do in an emergency.

Continuous Improvement

A mature WHS system shows evidence of ongoing improvement.

Auditors look for:

  • Internal audits
  • Management review meetings
  • KPI tracking (e.g. TRIFR, LTIFR)
  • Corrective and preventive action systems

Certification audits (such as ISO 45001) place strong emphasis on leadership commitment and system improvement over time.

Officer Due Diligence

Under WHS law, company officers must exercise due diligence. Auditors may review whether directors and executives:

  • Receive WHS performance reports
  • Allocate adequate resources
  • Understand critical risks
  • Verify the implementation of controls

Board-level visibility of safety is increasingly expected.

What Auditors Are Not Looking For

  • A perfect safety record
  • Zero incidents
  • Overly complex documentation
  • A 500-page safety manual no one reads

They want to see a system that is:

  • Practical
  • Proportionate to your business size and risk
  • Understood by workers
  • Actively maintained

Final Thoughts

WHS audits are about evidence, consistency, and effectiveness.

If your safety system:

  • Identifies real risks
  • Implements appropriate controls
  • Involves workers
  • Learns from incidents
  • Demonstrates leadership commitment

…you’re already aligned with what auditors actually look for.

The key is not preparing for the audit the week before — it’s building a safety system that works every day.

Sherm Software is that safety system, book a demo today and see for yourself.

For a deeper explanation of how these expectations come together, see our guide to Audit Readiness for WHS, ISO and Principal Contractor Audits.

Common Reasons Businesses Fail WHS, ISO or Principal Contractor Audits

Posted on by Marnie Cruickshank

Workplace audits, whether for Work Health and Safety (WHS), ISO certification, or principal contractor compliance, are designed to ensure businesses operate safely, legally, and systematically.

Audits may be conducted under state-based WHS regulators such as Safe Work Australia (policy body), enforcement authorities like SafeWork NSW, or as part of ISO certification through standards developed by International Organisation for Standardisation. Principal contractors on construction projects also conduct prequalification and ongoing compliance audits to manage site risk.

Despite good intentions, many businesses fail these audits for preventable reasons. Below are the most common causes, and how to avoid them.

Incomplete or Outdated Safety Management Systems

A common failure point is having a WHS or ISO system that looks good on paper but hasn’t been updated, or implemented, in practice.

Typical issues include:

  • Policies not reviewed annually
  • Procedures that don’t reflect current operations
  • Missing version control
  • Documents that reference outdated legislation

Auditors look for evidence that your system is live, current, and embedded, not just a template stored in a folder.

How to avoid it:

Schedule annual management reviews and document revisions. Ensure procedures match actual site practices.

Poor Hazard Identification and Risk Assessments

Under harmonised WHS laws, businesses must identify hazards and implement effective controls.

Audit failures often arise from:

  • Generic, copy-paste risk assessments
  • Missing Safe Work Method Statements (SWMS)
  • No evidence of site-specific risk review
  • Controls not aligned with the hierarchy of control

Principal contractors in construction are especially strict about SWMS compliance and site-specific risk management.

How to avoid it:

Ensure risk assessments are task-specific, signed, dated, and reviewed when conditions change.

Inadequate Training and Competency Records

You may have competent workers, but if you can’t prove it, you can fail the audit.

Common documentation gaps include:

  • Expired high-risk work licences
  • Missing VOC (Verification of Competency) records
  • No training matrix
  • No induction records
  • No refresher training evidence

ISO standards such as ISO 9001 and ISO 45001 require documented competency evidence.

How to avoid it:

Maintain a live training register and monitor expiry dates proactively.

Lack of Consultation and Worker Participation

WHS laws require consultation with workers on safety matters.

Auditors may ask:

  • How are workers consulted about hazards?
  • Are toolbox talks documented?
  • Is there evidence of safety meetings?
  • Are HSRs (Health and Safety Representatives) involved?

If consultation is informal and undocumented, it may not meet compliance requirements.

How to avoid it:

Keep minutes of toolbox talks and safety meetings. Record attendance and action items.

Incident Reporting and Investigation Failures

Many businesses fail audits not because incidents occurred, but because they weren’t managed correctly.

Red flags include:

  • No incident register
  • No investigation reports
  • No root cause analysis
  • Corrective actions not tracked
  • Notifiable incidents not reported

Regulators expect a structured approach to incident management and corrective actions.

How to avoid it:

Use a formal incident reporting system and track corrective actions through to completion.

Contractor Management Gaps

Principal contractor audits often focus heavily on subcontractor compliance.

Common issues:

  • No contractor prequalification process
  • Missing insurances
  • No SWMS review process
  • No evidence of subcontractor induction
  • Lack of monitoring and supervision

If you can’t demonstrate oversight of subcontractors, you may fail site audits.

How to avoid it:

Implement a documented contractor management procedure with checklists and approval records.

Internal Audits Not Conducted (or Not Effective)

For ISO-certified businesses, internal audits are mandatory.

Frequent problems include:

  • No internal audit schedule
  • Superficial audits with no findings
  • No evidence of corrective action follow-up
  • Management reviews not conducted

Auditors expect to see continuous improvement, not just compliance.

How to avoid it:

Conduct structured internal audits annually and document management review outcomes.

Poor Document Control

Document control is a major ISO audit focus area.

Typical failures:

  • Uncontrolled forms in circulation
  • Staff using outdated procedures
  • Missing document registers
  • No approval signatures

Even strong systems can fail audits if document control is weak.

How to avoid it:

Use a controlled document register with version numbers and review dates.

Leadership and Due Diligence Gaps

Under WHS laws, company officers must exercise due diligence.

Auditors may question:

  • How leadership monitors WHS performance
  • Whether safety KPIs are reviewed
  • If directors receive safety reports
  • How compliance obligations are tracked

If leadership cannot demonstrate active involvement, this can result in major non-conformances.

How to avoid it:

Document board-level WHS reporting and decision-making processes.

“Paper Compliance” Without Real Implementation

One of the biggest audit failures is when systems exist, but workers don’t follow them.

Auditors commonly:

  • Interview workers
  • Observe work practices
  • Compare procedures against actual behaviour

If there’s a disconnect between documentation and practice, it’s a serious red flag.

How to avoid it:

Ensure supervisors enforce procedures and conduct regular site inspections.

Final Thoughts

Most WHS, ISO, and principal contractor audit failures aren’t caused by catastrophic breaches, they’re caused by:

  • Inconsistent documentation
  • Lack of follow-through
  • Poor monitoring
  • Weak leadership engagement

The key to passing audits is embedding safety and compliance into everyday operations, not treating audits as one-off events.

If your systems are current, documented, implemented, and regularly reviewed, audits become far less stressful, and far more predictable.

Proactive compliance doesn’t just help you pass audits, it strengthens your business resilience, protects workers, and enhances your reputation in competitive industries like construction, manufacturing, and civil works.

This article expands on concepts covered in our Audit Readiness pillar page, which explains how these failures can be prevented structurally.

The Importance of Conducting a Gap Analysis

Posted on by Marnie Cruickshank

In an increasingly regulated and risk-aware business environment, organisations are expected to demonstrate robust management of work health and safety (WHS), quality, and environmental responsibilities. These expectations are driven by legislation, industry standards, customer requirements, and broader societal demands for safe, ethical, and sustainable operations. One of the most effective ways for companies to ensure their management systems meet these obligations is through conducting a comprehensive gap analysis.

A gap analysis is a structured assessment that compares an organisation’s current practices against relevant legal requirements, standards, and best-practice frameworks. When applied across WHS, quality, and environmental management systems, it becomes a critical tool for identifying weaknesses, managing risk, and driving continual improvement.

Understanding Management System Gaps

Management systems such as WHS, quality, and environmental frameworks are often aligned with recognised standards, including ISO 45001 (Work Health and Safety), ISO 9001 (Quality), and ISO 14001 (Environmental Management). However, simply having policies or certifications in place does not guarantee compliance or effectiveness.

A gap analysis examines the difference between what is currently being done and what should be done to meet:

  • Legislative requirements (such as WHS Acts and Regulations)
  • International and Australian Standards
  • Industry codes of practice
  • Client, contractor, and supply-chain expectations

By identifying these gaps, organisations gain a clear and evidence-based understanding of where systems fall short, are inconsistent, or are not fully implemented.

Strengthening Legal and Regulatory Compliance

One of the most compelling reasons to conduct a gap analysis is to ensure compliance with laws and regulations. Under WHS legislation, organisations have a primary duty of care to provide a safe working environment. Failure to comply can result in serious incidents, prosecutions, financial penalties, and reputational damage.

Similarly, environmental legislation imposes strict obligations regarding pollution control, waste management, and resource use, while quality requirements are often embedded in contractual and consumer protection frameworks.

A gap analysis helps organisations:

  • Identify areas of non-compliance before regulators do
  • Address outdated procedures that no longer align with current legislation
  • Demonstrate due diligence and proactive risk management

This proactive approach significantly reduces the likelihood of enforcement action and supports defensible decision-making if incidents occur.

Improving Risk Management and Performance

Effective risk management is central to WHS, quality, and environmental systems. Without a clear understanding of system gaps, risks may remain unrecognised or inadequately controlled.

A gap analysis enables organisations to:

  • Identify missing or ineffective risk controls
  • Highlight inconsistencies between documented procedures and actual practice
  • Detect areas where staff competency, training, or awareness is insufficient

By addressing these gaps, organisations can reduce workplace injuries, product or service failures, and environmental incidents. This leads to improved operational performance, reduced downtime, and lower costs associated with rework, claims, and remediation.

Supporting Certification and Integrated Management Systems

Many organisations seek or maintain certification to ISO standards as a way of demonstrating credibility and consistency. A gap analysis is often the first step in achieving certification or transitioning between standards (for example, upgrading from older versions of ISO standards).

For organisations operating integrated management systems—where WHS, quality, and environmental requirements are managed together—a gap analysis helps:

  • Identify duplication or conflicting processes
  • Streamline documentation and governance
  • Align objectives and performance measures across systems

This integration improves efficiency and ensures that compliance efforts support broader business goals rather than operating in silos.

Enhancing Governance and Leadership Oversight

Strong governance requires visibility over risks and controls. Boards and senior leaders are increasingly accountable for WHS and environmental outcomes, particularly in high-risk industries.

A structured gap analysis provides leadership with:

  • Clear, objective insights into system maturity
  • Prioritised actions based on risk and impact
  • Evidence to support strategic investment in safety, quality, and sustainability initiatives

This level of insight allows leaders to make informed decisions and demonstrates a genuine commitment to responsible corporate management.

Building a Culture of Continuous Improvement

Beyond compliance, gap analysis plays a key role in fostering a culture of continuous improvement. It encourages organisations to move beyond “minimum compliance” and focus on effectiveness, efficiency, and resilience.

When conducted regularly, a gap analysis:

  • Encourages open discussion about system weaknesses
  • Engages workers and managers in improvement initiatives
  • Tracks progress over time and measures the effectiveness of corrective actions

This continuous improvement mindset supports long-term sustainability and adaptability in a changing regulatory and business landscape.

Conclusion

Conducting a gap analysis of work health and safety, quality, and environmental management systems is not merely a compliance exercise—it is a strategic business imperative. It enables organisations to identify risks, meet legal obligations, improve performance, and strengthen governance.

By investing time and resources into a thorough gap analysis, companies position themselves to protect their people, deliver consistent quality, minimise environmental impact, and build trust with regulators, clients, and the broader community. Ultimately, a well-executed gap analysis supports safer, more efficient, and more sustainable business operations.

Get in touch with us and make conducting your gap analysis easier. Or better still, subscribe to Sherm Software and you will be able to see and rectify gaps as they arise.

New Workplace Exposure Limits: What’s Changing and Why It Matters

Posted on by Marnie Cruickshank

What are Workplace Exposure Limits (WEL)?

Workplace Exposure Limits (WEL) are the maximum concentrations of airborne contaminants (dust, fumes, vapours, gases, mists) that a person can be exposed to in the workplace without suffering serious or long-term harm.

Starting 1 December 2026, WEL will officially replace the current Workplace Exposure Standards (WES) in Australia. While the old WES already served as protective benchmarks, the shift to WEL is more than just a name change — it reinforces that these are limits that must not be exceeded, not simply best-practice standards.

Why the Change?

  1. Better Health Protection – The WES were reviewed against more up-to-date health evidence. Based on this, many exposure limits have been revised. Some have been lowered to reflect newer research, while others have been raised, and a number of previously unlisted substances are now included.
  2. International Alignment – Renaming “standards” to “limits” brings Australian WHS terminology more in line with international practice.
  3. Regulatory Clarity – Calling them limits underscores a stricter compliance requirement: they aren’t aspirational targets but enforceable boundaries.

What Exactly Is Changing?

Safe Work Australia has published a detailed list of WELs showing how each airborne contaminant will be affected. Here are the key types of changes to expect:

  • Adjustments to Existing Limits: Some substances will have lower or higher exposure thresholds.
  • New Substances Added: Certain airborne contaminants not previously subject to a limit will now be regulated.
  • Merged or Split Groups: For example, some chemical groups are being combined, others split to reflect different health impacts or particle behaviours.
  • Removal of Some Limits: There are airborne contaminants known as Non-Threshold Genotoxic Carcinogens (NTGCs). These are substances for which no “safe” exposure level can be reliably established. For those, no WEL will be assigned — so PCBUs must eliminate, substitute, or reduce exposure “as much as reasonably practicable.”
  • Types of Limits: There are three kinds of exposure limits in the WEL:
    • TWA (8-hour time-weighted average) — average exposure over a standard shift.
    • STEL (Short-Term Exposure Limit) — average for a short period, typically 15 minutes.
    • Peak Limitation — the maximum instantaneous exposure allowed, even for very short moments.

What Does This Mean for Employers (PCBUs) and Workers?

For Employers / PCBUs:

  • Risk Assessment – Begin reviewing which airborne contaminants you generate or use. Compare your current exposure data (or planned data) against the new WEL values.
  • Control Measures – Use the hierarchy of controls: try to eliminate or substitute harmful substances first, then use engineering controls (ventilation, isolation), administrative controls, and only then PPE / respiratory protection.
  • Monitoring – Air monitoring may need to be reviewed or redone under the new limits. Consider engaging an occupational hygienist to help design monitoring programs.
  • Training and Consultation – Inform and consult with workers about the coming changes. Review Safety Data Sheets (SDS) and talk through exposure risks and controls.
  • Health Surveillance – Depending on the substances, you may need to introduce or upgrade health monitoring for workers.
  • Regulatory Compliance – Ensure you understand how WEL will be implemented under your jurisdiction’s WHS laws.

For Workers:

  • Know Your Rights – You are entitled to understand the risks in your environment, what airborne contaminants you’re exposed to, and what the new limits will mean for you.
  • Use PPE Properly – If respiratory protective equipment (RPE) is required, make sure you know how to fit and use it correctly.
  • Ask Questions – If you’re unsure about exposure, speak to your safety rep or management. Ask if air monitoring has been done or is planned.
  • Stop Work If Necessary – If you believe exposure levels are unsafe, you can raise this concern.

Challenges and Considerations

  • Non-Threshold Carcinogens: For NTGCs (chemicals where there’s no safe threshold), compliance isn’t about meeting a numerical limit — it’s about eliminating or reducing risk as much as reasonably practicable.
  • Multiple Contaminant Exposure: In practice, workers may be exposed to more than one airborne contaminant. The combined (or interactive) effects may be more harmful than each on its own, so a holistic risk assessment is necessary.
  • Resource Constraints: Especially for small businesses, implementing more rigorous monitoring, bringing in occupational hygienists, or upgrading engineering controls can be a cost and resource challenge.
  • Transition Period Awareness: Until 30 November 2026, the old WES still apply. But businesses should not delay preparation.

Next Steps — How to Prepare

  1. Audit Your Current Exposure
    • List all airborne contaminants in use or generated in your workplace
    • Check current exposure levels (or plan monitoring)
    • Compare with the upcoming WEL values (once published)
  2. Engage Experts
    • Consider hiring an occupational hygienist or WHS consultant
    • Use their expertise to design control measures and exposure monitoring
  3. Update Risk Management Plans
    • Review your WHS risk register and update it for WEL risks
    • Revise safe work method statements (SWMS) or SOPs if needed
  4. Train Your Team
    • Run training on the new limits, on appropriate PPE, and on hazard recognition
    • Encourage consultation with workers — especially those working directly with the contaminants
  5. Health Monitoring
    • Where relevant, implement medical surveillance / health-check programs for workers exposed to airborne contaminants.
  6. Stay Informed
    • Subscribe to Safe Work Australia’s “Exposure Standards” mailing list for updates.
    • Check your regulator’s website for local guidance, as implementation details may vary by state / territory

Conclusion

The move to Workplace Exposure Limits (WEL) marks a major step forward for occupational health in Australia. By tightening and updating exposure thresholds, introducing new substances, and changing the language to reinforce these as non-negotiable limits, the transition strengthens protection for workers against airborne hazards.

But it’s not just a regulatory change — it’s a call to action. Employers need to assess, plan, control, monitor, and train. Workers need to stay informed, engage in safety discussions, and make sure protections are in place.

As we all know, time flies. 1 December 2026 seems far away, but there’s a lot to do prior to the implementation date, so the time to prepare is now.

Sherm Software can be a lifesaving tool for your workers and workplace. Sherm’s Registers module includes the Chemical Register which documents all chemicals used within the business, monitors SDS expiry with notification sent when renewal is required, and retains completed Risk Assessments uploaded as an attachment or Sherm gives you the ability to complete an Electronic Risk Assessment. Workers can access SDS on Sherm’s Mobile App.

Your SWMS’s and SOP’s are maintained in Sherm’s Documentation module making them available to workers at any time using the Mobile App.

Training on new limits, appropriate PPE, and on hazard recognition can be scheduled using Sherm’s Training and Competency module ensuring workers are informed and safe, and your obligations have been met.

Sherm’s People module ensures all Health Information is retained with the workers details where medical surveillance / health-check programs have been implemented, with notification sent when retesting is due.

Get in touch with us today and let Sherm help you.

Work Health and Safety Risk Management Strategies

Posted on by Caroline Kingston

Introduction

Work Health and Safety (WHS) is a fundamental aspect of business operations, ensuring that workplaces remain safe and free from hazards that could cause injury, illness, or death. The WHS framework is governed primarily by the Model Work Health and Safety Act (2011), which has been adopted by most states and territories. This legislation places a legal obligation on businesses and individuals to identify, assess, and manage risks to protect workers and others from harm. Effective WHS risk management strategies are essential for compliance, employee wellbeing, and organisational sustainability.

  1. The Legislative Framework

The Model WHS Act and Regulations, developed by Safe Work Australia, provide a nationally consistent approach to managing workplace health and safety. Key elements include:

  • Primary Duty of Care: Employers, or Persons Conducting a Business or Undertaking (PCBUs), must ensure, as far as reasonably practicable, the health and safety of workers and others affected by their operations.
  • Consultation Requirements: PCBUs must consult with workers and health and safety representatives (HSRs) on matters that affect their health and safety.
  • Due Diligence: Officers (such as company directors) must demonstrate proactive management of WHS risks.

Each state and territory enforces these laws through its own regulatory authority, such as SafeWork NSW, WorkSafe Victoria, and WorkSafe Queensland.

  1. The Risk Management Process

The WHS risk management process follows a systematic approach outlined in the Code of Practice: How to Manage Work Health and Safety Risks. The four key steps are:

Step 1: Identify Hazards

This involves recognising potential sources of harm, such as physical hazards (machinery, noise), chemical hazards (toxic substances), biological hazards (infections), psychosocial hazards (stress, bullying), and ergonomic hazards (poor workstation design). Hazard identification can be done through workplace inspections, incident reports, and worker consultation.

Step 2: Assess Risks

Risk assessment determines the likelihood and consequence of harm occurring. Tools such as risk matrices help organisations prioritise which risks require immediate control. While not always mandatory, formal risk assessment is recommended for complex or high-risk tasks.

Step 3: Control Risks

The hierarchy of control is a key WHS principle used to eliminate or minimise risks. It prioritises control measures as follows:

  1. Elimination – Remove the hazard entirely.
  2. Substitution – Replace the hazard with something safer.
  3. Engineering Controls – Isolate people from the hazard.
  4. Administrative Controls – Change the way people work (e.g., procedures, training).
  5. Personal Protective Equipment (PPE) – Use protective gear as a last resort.

Step 4: Review and Monitor Controls

Risk control measures must be regularly reviewed to ensure they remain effective, particularly after incidents, workplace changes, or the introduction of new equipment or processes.

  1. Key Strategies for Effective WHS Risk Management

To embed WHS risk management within organisational culture, the following strategies are recommended:

  • Leadership and Commitment: Senior management must demonstrate visible commitment to WHS through policies, resources, and active participation.
  • Worker Involvement: Engaging workers in decision-making fosters a safety culture and improves hazard identification and compliance.
  • Training and Education: Ongoing WHS training ensures that workers understand risks and know how to manage them effectively.
  • Incident Reporting and Investigation: A transparent reporting system encourages early identification of hazards and prevents recurrence.
  • Use of Technology: Digital WHS management systems and real-time monitoring tools enhance data collection, risk assessment, and compliance tracking.
  • Continuous Improvement: Organisations should use performance indicators and audit results to improve their WHS systems continuously.

  1. Emerging WHS Challenges

Modern workplaces face new challenges that require adaptive risk management strategies, including:

  • Psychosocial Risks: Managing mental health, workplace stress, and harassment.
  • Remote and Hybrid Work: Ensuring home office safety and ergonomic compliance.
  • Automation and AI: Addressing safety risks linked to human-machine interaction.
  • Climate Change: Mitigating heat stress, air quality issues, and extreme weather impacts on outdoor workers.

Conclusion

Effective Work Health and Safety (WHS) risk management is not only a legal obligation but also a cornerstone of sustainable business practice. By systematically identifying, assessing, controlling, and reviewing workplace risks, organisations can protect their workforce, enhance productivity, and foster a positive safety culture. As the nature of work continues to evolve, businesses must remain proactive, innovative, and compliant in managing health and safety risks for all.

If you are unsure as to what potential risk exposures your organisation may be facing, get in touch with us today. At Safety for Life we provide practical assistance in the development of an effective Risk Management Program and strategies to assist you to minimise your risk exposures.

If you are considering a safety software application for the management of risk, then please consider Sherm. Sherm Software is an essential safety management system for your organisations WHS Risk Management. Worker involvement, training and incident reporting and investigation ensure real-time monitoring is easily achieved. Sherm’s new dashboard performance indicator helps with continuous improvement of your organisations WHS Management System without the need to go searching.

Sherm Software empowers businesses to prioritise safety, achieve compliance, and build a resilient workplace culture. Get in touch today and learn more.

National Safe Work Month 2025

Posted on by Caroline Kingston

Every October, businesses across Australia take part in National Safe Work Month, an initiative led by Safe Work Australia to promote workplace health, safety, and wellbeing. It’s an important opportunity for employers to reflect on their current safety practices, engage employees in meaningful discussions about risk prevention, and strengthen their overall safety culture.

Below are key considerations for employers to focus on during this month—and beyond.

Review and Refresh Work Health and Safety (WHS) Policies

National Safe Work Month is an ideal time to review WHS policies and procedures. Check that all documentation aligns with current legislation, codes of practice, and the specific risks associated with your industry.

  • Are your safety policies up to date with recent regulatory changes?
  • Do they clearly outline responsibilities, reporting mechanisms, and emergency procedures?
  • Are they communicated effectively to all employees?

A brief annual audit can ensure your systems remain compliant and practical.

Reassess Risk Management and Control Measures

Conduct a risk assessment review to ensure all control measures remain effective. Workplaces evolve—new technologies, materials, and processes can introduce new hazards.

Employers should:

  • Revisit existing risk registers.
  • Update safety data sheets (SDS) and signage.
  • Check that personal protective equipment (PPE) is suitable and well maintained.
  • Consult with workers about any emerging risks they’ve noticed.

This proactive approach helps prevent incidents rather than reacting to them.

Reinforce Training and Competency

A strong safety culture depends on knowledge and consistency. National Safe Work Month is a good time to:

  • Review your induction and refresher training programs.
  • Ensure high-risk work licences and first aid certifications are current.
  • Provide targeted toolbox talks or workshops focusing on this year’s safety theme (for example, “Working Together for Safe, Healthy, and Productive Workplaces”).

Well-trained employees are more confident, productive, and less likely to be injured.

Promote Mental Health and Wellbeing

Workplace safety extends beyond physical hazards. Employers should consider how their practices support psychosocial wellbeing, including workload management, bullying prevention, and work-life balance.
Encourage open conversations about mental health, offer Employee Assistance Programs (EAPs), and provide training for leaders to recognise signs of stress and burnout.

Safe Work Australia’s Model Code of Practice: Managing Psychosocial Hazards offers useful guidance for all industries.

Encourage Worker Participation and Consultation

Safety works best when everyone is involved. During National Safe Work Month, employers can strengthen engagement by:

  • Holding safety forums, toolbox talks, or team challenges.
  • Recognising workers who contribute to safer practices.
  • Reviewing consultation mechanisms with Health and Safety Representatives (HSRs) and committees.

When employees feel heard and empowered, safety becomes a shared value rather than a compliance task.

Celebrate Success and Set Future Goals

Finally, use October to acknowledge achievements and set safety goals for the next 12 months.

Highlight improvements—such as reduced incident rates, successful audits, or new wellbeing initiatives—and discuss areas for ongoing development.

Recognition reinforces commitment and motivates continuous improvement.

Final Thoughts

National Safe Work Month is more than a campaign—it’s a reminder that every worker deserves to return home safe and healthy every day. Employers play a central role in making that happen by leading with commitment, consistency, and care.

By reviewing policies, engaging staff, and fostering open communication, businesses can build safer, stronger, and more resilient workplaces all year round.

Let us help you make reviewing your WHS Management System easier by subscribing to our safety management software, Sherm.

With Sherm, Auditing has never been easier to ensure your systems remain compliant.

Conduct Risk Assessments, ensure Training is completed and your workers are Competent, encourage worker participation and promote mental health and wellbeing all within our easy to use software system.

Sherm Software has it all, get in touch today and see for yourself.

Implementing Psychosocial Risk Controls: A National Strategy

Posted on by Caroline Kingston

Why a National Approach is Essential

Psychosocial hazards are now recognised in every Australian jurisdiction under WHS laws, with specific Codes of Practice and regulator guidance in place. While terminology and commencement dates vary between states and territories, the core duties are consistent:

  • Identify psychosocial hazards
  • Assess the associated risks
  • Implement effective control measures
  • Review and maintain those controls

A national strategy ensures multi-site organisations apply consistent processes, meet local legal requirements, and maintain a unified safety culture across all operations.

Key Principles for a National Strategy

Embed Psychosocial Risk into Existing WHS Systems

  • Integrate mental health hazard identification into current safety inspections, risk registers, and incident investigations.
  • Use a unified template for psychosocial risk assessments, adaptable to local needs.

Apply the Hierarchy of Controls

  • Prioritise eliminating hazards (e.g., redesigning work to avoid excessive demands).
  • Follow with substitution, engineering, administrative controls, and training — noting PPE is rarely applicable for psychosocial risks.

Use Evidence-Based Frameworks

  • Align controls with regulator-endorsed guidance (e.g., Safe Work Australia and state-specific Codes of Practice).
  • Incorporate recognised models to design safer work.

Build a Reporting and Feedback Culture

  • Provide confidential, accessible channels for workers to raise concerns.
  • Ensure managers are trained to recognise and respond to psychosocial hazards sensitively and constructively.

Monitor, Review, and Improve

  • Collect data from hazard reports, surveys, exit interviews, and absenteeism trends.
  • Review controls at scheduled intervals and after any incident or organisational change.

How SHERM Supports a National Rollout

  • Centralised Risk Management: One platform to log, assess, and control psychosocial hazards across all sites.
  • Custom Templates: Risk assessment forms mapped to each state’s Code of Practice while maintaining a consistent company-wide standard.
  • Training and Compliance Tracking: Automated reminders for mandatory psychosocial hazard awareness training.
  • Incident and Concern Reporting: Mobile and web-based reporting for early intervention.
  • Audit-Ready Evidence: Comprehensive records to satisfy any regulator, in any jurisdiction.

The Payoff

A coordinated national strategy not only ensures compliance in every state and territory, but also:

  • Reduces incidents linked to mental health harm
  • Improves employee engagement and retention
  • Strengthens organisational reputation as a mentally safe workplace

National Psychosocial Risk Control Strategy

A consistent approach to meeting mental health duties across Australia

National Compliance Snapshot

Jurisdiction Primary Legislation Key Psychosocial Duty Current Code of Practice/Guidance Commencement
QLD Work Health and Safety Act 2011 Identify, assess, control, and review psychosocial hazards Managing the Risk of Psychosocial Hazards at Work Code of Practice 2022 1 Apr 2023
NSW Work Health and Safety Act 2011 Manage psychosocial risks as WHS hazards Code of Practice: Managing Psychosocial Hazards at Work (2021) 1 Oct 2022
VIC Occupational Health and Safety Act 2004 Identify, assess and control psychosocial hazards (Regulation 2022) OHS Amendment (Psychological Health) Regulations 1 Sep 2022
WA Work Health and Safety Act 2020 Same duty of care for psychological and physical safety Code of Practice: Psychosocial Hazards in the Workplace (2022) 24 Dec 2022
SA Work Health and Safety Act 2012 Manage psychosocial hazards under general duty Code of Practice: Managing Psychosocial Hazards at Work (SA adopted) 1 Jul 2023
TAS Work Health and Safety Act 2012 Treat psychosocial hazards like other WHS risks Guidance: Psychosocial Hazards in the Workplace Ongoing
NT Work Health and Safety (National Uniform Legislation) Act 2011 Eliminate or minimise psychosocial risks so far as reasonably practicable Code of Practice: Managing Psychosocial Hazards at Work Ongoing
ACT Work Health and Safety Act 2011 Identify and control psychosocial hazards Code of Practice: Managing Psychosocial Hazards at Work Ongoing

National Control Strategies

Core Risk Control Principles (Applies in All States/Territories)

  • Eliminate hazards where possible (e.g., redesign roles to avoid excessive demands).
  • Engineering controls (e.g., improved rostering systems to manage workloads).
  • Administrative controls (e.g., clear policies, fair change management processes).
  • Training and support (e.g., leadership training in psychological safety, staff awareness sessions).
  • Ongoing monitoring (e.g., regular staff surveys, review of absenteeism and turnover data).

Example Risk Controls

  • Workload Management → Monitor workloads, redistribute tasks, and avoid prolonged excessive demands.
  • Clear Role Expectations → Maintain up-to-date job descriptions and ensure they are discussed during performance reviews.
  • Bullying and Harassment Prevention → Implement zero-tolerance policies and accessible reporting procedures.
  • Remote or Isolated Work Safety → Provide regular contact, mental health resources, and technological support.
  • Critical Incident Support → Offer employee assistance programs and structured post-incident debriefs.

National Implementation Tips

  1. Integrate into Existing WHS Systems — Build psychosocial hazard checks into current risk registers, inspections, and incident investigations.
  2. Use a Standardised Risk Assessment Template — Keep the same core format nationally, adjusting for state-specific guidance.
  3. Train Managers and Workers — Ensure leaders can recognise and respond appropriately to psychosocial hazards.
  4. Maintain an Evidence Trail — Record hazard identification, risk assessments, control measures, and review dates for audit readiness.
  5. Review Controls Regularly — Especially after incidents, organisational change, or workforce feedback.

With SHERM, your organisation can meet psychosocial hazard duties in every Australian jurisdiction — with one, consistent, audit-ready system.

Get in touch today and discover more.

Modifications to Plant and Equipment Guards

Posted on by Caroline Kingston

Modifications to plant and equipment guards should not be made without proper assessment and approval due to several legal, safety, and compliance reasons.

Work Health and Safety (WHS) Regulations

  • Under the Work Health and Safety Act 2011 and associated regulations, employers must ensure that machinery and equipment are safe for use.
  • Modifying guards may create new hazards, making the equipment non-compliant with Safe Work Australia standards.

Manufacturer’s Specifications and Warranty

  • Modifications may void the manufacturer’s warranty and liability coverage.
  • Manufacturers design guards to meet AS/NZS safety standards, and unauthorised changes can compromise their effectiveness.

Risk of Injury and Legal Liability

  • Guards are designed to prevent entanglement, crushing, cutting, and impact injuries.
  • Unauthorised modifications can expose workers to serious injuries, leading to workers’ compensation claims, legal penalties, and prosecution.

Compliance with Australian Standards

  • This standard governs the safety of machinery and requires guards to be designed and installed to prevent operator exposure to hazards.
  • Modifying guards may render the equipment non-compliant, leading to legal consequences and enforcement actions by Safe Work regulators.

Consultation and Risk Management Requirements

  • WHS laws require employers to consult with workers and safety representatives before altering plant and equipment.
  • A formal risk assessment is required before making any changes to safety controls.

Potential for Increased Maintenance Costs and Downtime

  • Unapproved modifications can cause equipment failure, breakdowns, or inefficiencies, increasing downtime and repair costs.

What Should Be Done Instead?

  • If changes to guards are necessary, they should be:
    • Assessed by a qualified engineer or safety professional.
    • Approved by the manufacturer where possible.
    • Tested and documented through a risk assessment process.
    • Compliant with relevant Australian Standards and WHS laws.

Plant and Equipment Emergency Stops

In addition to avoiding unauthorised modifications to plant and equipment guards, it is essential to check the operation and positioning of emergency stops to ensure compliance with safety regulations.

Compliance with WHS Regulations and Australian Standards

  • The Work Health and Safety (WHS) Act 2011 mandates that plant and equipment must have effective emergency stops.
  • AS/NZS 4024.1604 (Emergency Stop Principles) specifies that emergency stops must be:
    • Easily identifiable and accessible.
    • Located in positions where operators can quickly activate them.
    • Designed to override all other controls and stop the machine immediately.

Risk of Delayed Emergency Response

  • Poorly positioned or non-functional emergency stops can delay critical responses, leading to serious injuries or fatalities.
  • Regular checks ensure that emergency stops are operational and within easy reach of workers.

Prevention of Equipment Damage and Downtime

  • A functional emergency stop prevents further mechanical damage to equipment in case of malfunction.
  • Proper positioning helps reduce machine downtime and costly repairs.

Legal and Financial Consequences

  • Failure to ensure emergency stops are functional and correctly positioned may result in Safe Work Australia enforcement actions, penalties, or even prosecution.

Best Practices for Emergency Stop Checks

Visual Inspection – Ensure emergency stop buttons are clearly marked (red with a yellow background) and not obstructed.
Operational Testing – Regularly test emergency stops to confirm they work as intended.
Worker Accessibility – Ensure emergency stops are within easy reach of operators and maintenance personnel.
Training and Awareness – Educate workers on proper emergency stop usage and procedures.

Sherm Software will schedule routine Workplace Inspections to ensure plant and equipment safety guards and emergency stops are regularly tested, while Sherm’s Training and Competency module will leave employers with the peace of mind that their workers have been educated on the importance of proper emergency stop usage and procedures.

Streamline Workplace Safety with Sherm’s ISO 45001 Software

Posted on by Caroline Kingston

Workplace safety is critical to business success, and having the right tools to manage occupational health and safety (OHS) efficiently is essential. Sherm Software offers an advanced ISO 45001-compliant solution that streamlines safety processes, ensuring compliance, reducing risks, and fostering a proactive safety culture.

What is ISO 45001 Software?

ISO 45001 is the international standard for OHS management systems, helping businesses identify risks, control hazards, and maintain compliance with safety regulations. Traditional safety management methods often involve manual documentation and disconnected systems, leading to inefficiencies. Sherm Software simplifies these processes by automating incident reporting, risk assessments, compliance tracking, and audit management.

With a centralised, cloud-based platform, Sherm Software enables organisations to monitor safety performance, track corrective actions, and ensure seamless communication among team members. This proactive approach helps prevent workplace accidents and reinforces a culture of continuous improvement.

Why Choose Sherm Software for ISO 45001 Compliance?

Sherm Software is designed to meet the unique safety needs of businesses, offering a user-friendly platform with key features such as:

The Benefits of Implementing Sherm Software

Investing in Sherm Software brings significant advantages, including:

  • Reduced Workplace Incidents – Proactive hazard identification and risk management prevent accidents, ensuring a safer work environment.
  • Increased Efficiency – Automating OHS processes saves time, reduces administrative burdens, and improves overall productivity.
  • Improved Regulatory Compliance – Businesses remain compliant with ISO 45001 and other legal requirements, reducing risks of penalties and fines.
  • Enhanced Employee Engagement – A user-friendly platform empowers employees to report hazards, participate in safety programs, and stay informed about workplace safety.

How Sherm Software Streamlines Safety Management

Sherm Software centralises all safety data, ensuring that businesses can monitor key performance indicators (KPIs) and safety trends in real time. With built-in analytics and reporting, businesses can make data-driven decisions, optimise safety processes, and demonstrate compliance during audits.

Additionally, Sherm’s cloud-based system allows access from any device, ensuring that safety managers, supervisors, and employees can collaborate seamlessly, regardless of location. Automated workflows eliminate the need for manual record-keeping, reducing human error and ensuring that safety initiatives are executed effectively.

Invest in Workplace Safety Excellence with Sherm

Ensuring workplace safety is not just about compliance—it’s about creating a secure and productive work environment. Sherm Software provides the tools needed to manage safety proactively, reduce risks, and drive operational excellence.

By implementing Sherm’s ISO 45001 software, businesses can stay ahead of regulatory requirements, build a safety-first culture, and enhance overall performance.

Discover how Sherm Software can revolutionise your workplace safety management today!

App Login