Risks include incorrect or inefficient performance of
practice procedures, loss of intellectual capital when staff leave, workplace
bullying or staff disharmony, theft and fraud, unauthorised internet activity
and privacy breaches.
Have a staff induction
program and conduct ongoing training about your organisation’s key policies and
procedures. Ensure that training records are kept of attendance at
Have job descriptions, clear
position responsibilities and an organisation chart.
Have clearly defined lines of communication
Have clearly defined authorities and limits to authority for all
Ensure there is a policy and procedures
manual that is indexed, signed as read and understood by all staff, has
amendments dated and is made known to staff. The policy and procedures manual
should be reviewed and amended as required.
Ensure that the manual includes a confidential complaint procedure
and outlines the consequences of failing to adhere to acceptable standards of
Ensure that staff performance
and conduct issues are dealt with in a timely and consistent way.
Hold regular staff meetings.
Provide positive and
constructive feedback to staff. Praise in public, reprimand in private.
Avoid key person dependency by multi-skilling
Have clear systems for checking
finances (e.g. control of petty cash, practice banking, external bookkeeper).
Implement IT auditing processes (e.g. to
detect unauthorised internet access and to mitigate fraud).