CQC policies and procedures: a practical guide for domiciliary care providers

CQC policies and procedures are the formal, documented framework that every registered domiciliary care provider in England must have in place to meet regulatory requirements.

‍

They define how your agency operates, how care is delivered, and how your team responds when things go wrong. For registered managers, they're not just compliance paperwork: they're the operational backbone of a safe, well-led service, and the primary evidence you'll draw on during a CQC inspection.

‍

This guide covers what CQC policies and procedures are, which core ones you are required to have, how to keep them current, and how to develop policies that genuinely work in practice rather than just on paper.

‍

Whether you're setting up a new service, preparing for a scheduled inspection, or reviewing documents that have not been updated in a year, this is a practical framework to work from.

‍

What CQC policies and procedures actually are

‍

Policies and procedures are two distinct but connected things, and the difference matters:

- A policy sets out your organisation's position on a particular matter: what you commit to and the standards you hold yourself to.

- A procedure is the step-by-step guidance that tells your team how to implement that policy in practice.

‍

Take medication management as an example. Your medication policy sets out your organisation's commitment to safe administration, accurate recording, and risk reduction. Your medication procedure then walks a care professional through exactly what to do when they arrive at a client's home: how to check the MAR chart, what to do if a dose has been missed, how to store medication correctly, and when to escalate a concern. The policy articulates the standard; the procedure makes it actionable.

‍

CQC policies and procedures must align with the Health and Social Care Act 2008 (Regulated Activities) Regulations 2014, which underpins the CQC's five fundamental standards: safe, effective, caring, responsive and well-led. Inspectors use these standards, and the Key Lines of Enquiry that sit beneath them, as the framework for assessing your service. Your policies must demonstrably address each of these five areas.

‍

Why your CQC policies and procedures matter more than you think

‍

There are three concrete reasons why well-maintained CQC policies and procedures are worth the time you invest in them.

‍

First, they protect the people you support. Clear, evidence-based policies reduce the risk of harm by setting consistent standards for high-risk activities such as medication administration, safeguarding, and infection control. When care professionals know exactly what to do in a given situation, there's less room for error and less reliance on individual judgement in the moments that matter most.

‍

Second, they create operational consistency. Without documented procedures, the quality of care depends on who happens to be rostered that day. Strong policies ensure that every care professional, whether experienced or newly joined, follows the same standards. This consistency is what makes the difference between a service that is reliably good and one that is unpredictable.

‍

Third, they're your primary means of demonstrating compliance. CQC inspectors don't just want to see that you have policies. They want evidence that those policies shape how care is delivered. As Birdie's guide to policies and procedures in domiciliary care puts it, the gap between what's written and what's practised is where most providers struggle at inspection.

‍

Well-designed policies, backed by audit trails and staff training records, close that gap. Failing to maintain compliant policies can result in a breach of Regulation 17 (Good Governance), enforcement action, and a poor rating that affects your ability to maintain local authority contracts and attract private clients.

‍

The core CQC policies every domiciliary care provider must have

‍

While the CQC doesn't publish a fixed mandatory list of policies, there are areas inspectors will always assess. The following are non-negotiable for any registered domiciliary care service in England.

‍

Safeguarding is the foundation. Your safeguarding policy must define what constitutes abuse or neglect, outline the reporting pathway, and set out how your organisation works with local safeguarding adults boards. The accompanying procedure must be clear enough that a care professional who joined last week knows exactly who to contact and what steps to follow if they have a concern. This is assessed under Regulation 13 (Safeguarding service users from abuse and improper treatment).

‍

Medication management covers ordering, storing, administering, and recording medications, as well as what to do when a dose is missed, refused, or when a concern arises. This sits under Regulation 12 (Safe care and treatment) and is one of the most common areas for inspection breaches. Digital tools such as Birdie's electronic medication administration records (eMAR) provide a real-time audit trail that makes it far simpler to evidence that your procedures are being followed.

‍

Infection prevention and control procedures must reflect current NHS and UK Health Security Agency guidance, covering hand hygiene, personal protective equipment, waste management, and infection reporting. These should be reviewed whenever national guidance changes, not just at your annual cycle.

‍

Health and safety encompasses risk assessments, lone working protocols, manual handling, fire safety, and incident reporting. Procedures must be specific to domiciliary settings, which present different challenges to residential care environments. Birdie's guide on risk assessment in health and social care is a useful reference for domiciliary providers building out this area.

‍

Person-centred care, addressed under Regulation 9, must be embedded throughout your policies rather than contained in a single standalone document. Your care planning procedures should describe how you involve clients and families in decisions, how preferences are recorded and acted on, and how care is adapted when needs change.

‍

Data protection and confidentiality must address compliance with the UK GDPR and Data Protection Act 2018, including how client records are stored, shared, and retained, and how data breaches are identified and reported.

‍

Complaints and feedback procedures must be accessible to clients and their families, set out clear timescales for acknowledgement and resolution, and describe how learning from complaints feeds back into service improvement. This is assessed under Regulation 16 (Receiving and acting on complaints).

‍

Recruitment and staffing, assessed under Regulation 19 (Fit and proper persons employed), must cover your approach to DBS checks, reference verification, ongoing supervision, and training records. For a detailed breakdown of what CQC mandatory training requires of registered homecare providers, Birdie's guide covers the key areas in full.

‍

How often should you review your CQC policies and procedures?

‍

Every policy should be reviewed at least once a year. That's the baseline, but an annual review is not a licence to ignore your policies in the intervening months.

‍

You should also update policies immediately when there is a specific reason to: a change in legislation, new guidance from CQC or NICE, a notification from your local authority, or an internal incident or near-miss that reveals a gap in your procedures. The COVID-19 pandemic illustrated how quickly infection control procedures can need to change; providers who updated their policies promptly as national guidance evolved were in a far stronger position at inspection than those who did not.

‍

The annual review should be a genuine assessment of whether each policy still reflects how care is actually delivered, whether the associated procedures remain practical, and whether any changes to your client population or service model require a revised approach. Policies written two or three years ago may not reflect the way your service operates today.

‍

Involve your care professionals in the process. They are the ones implementing your procedures and are best placed to identify where a policy does not reflect the realities of working in people's homes. Their input leads to stronger, more usable documents and builds the staff understanding and ownership that inspectors specifically look for when they speak to your team. Every review should be dated, version-controlled, and signed off by the registered manager as a clear record that your governance processes are active, not nominal.

‍

Developing CQC policies and procedures that work in practice

‍

Most providers have policies. The problem is that many policies are not fit for purpose. They're either copied from a template without adaptation, written in language too abstract to guide a real decision, or so lengthy that nobody reads them.

‍

Effective CQC policies and procedures share several characteristics: 

- They're written in plain English that a care professional can act on without interpretation.

- They're specific to your service: a safeguarding procedure for an agency that supports predominantly clients living with advanced dementia will look different from one designed for post-operative short-term support.

- They're connected to outcomes: they explain why a step matters, not just what to do.

‍

A practical approach is to work through the CQC's fundamental standards and Key Lines of Enquiry systematically. For each area, ask three questions: do we have a policy that addresses this? Does our procedure tell our team exactly what to do in a real situation? Can we produce evidence that the procedure is being followed? The answers will tell you where the gaps are.

‍

Policy templates from reputable subscription services can provide a useful structural starting point, but they are never a complete solution. They must be tailored to your service, your client group, your staffing model, and the way care is actually delivered in practice. Buying a policy library does not make your service compliant; embedding those policies into your daily operations does.

‍

How technology helps you evidence CQC policy compliance

‍

Policies set the standard. Technology helps you prove you are meeting it.

‍

For domiciliary care providers, the challenge at inspection is rarely a lack of policies. It is the ability to demonstrate quickly and convincingly that those policies are being followed in practice. When a CQC inspector asks you to evidence your medication management approach, you should not need an afternoon to pull together paper MAR charts. When they ask about safeguarding response times, you should have a clear, timestamped record of when concerns were raised and how they were addressed.

‍

Domiciliary care management platforms like Birdie are designed to address this directly. Birdie's eMAR system provides a real-time record of every medication administration, including missed doses and the actions taken in response. The platform has been referenced in CQC inspection reports for enabling providers to monitor and respond to medication alerts in real time. Risk assessments, care plans, incident logs, and care visit notes are all captured in a single, auditable system, which makes it straightforward to produce inspection evidence at short notice.

‍

Birdie's Q-Score feature aggregates key quality metrics aligned to the CQC's five key questions, giving managers ongoing visibility of how their service is performing throughout the year rather than discovering issues only when an inspector arrives. For practical guidance on how to write care documentation that meets inspection standards, Birdie's guide to daily care notes covers what auditors and inspectors specifically look for.

‍

The point is not that technology replaces good policy. It is that technology makes your policies visible, evidenced, and auditable throughout the year, so that compliance is something you demonstrate continuously rather than scramble to prove when inspection notice lands.

‍

CQC policies and procedures are not administrative overhead. They are the mechanism by which your commitment to safe, effective, person-centred care becomes real and demonstrable. Done well, they protect your clients, guide your staff, reduce operational risk, and make inspections significantly less stressful.

‍

The practical starting point is to audit what you have against the CQC's fundamental standards and Key Lines of Enquiry, identify the gaps, and update accordingly. Set a structured review schedule, involve your team in the process, and connect your policies to the digital systems and audit trails that will evidence compliance throughout the year, not just when an inspector is on the way.

‍

If you want to see how Birdie can support your compliance processes, download the free CQC Toolkit or explore Birdie's product features to understand what inspection-ready evidence management looks like in practice.