I had a frank conversation recently with the president of a P&C with a combined turnover of around $500,000 from its after-school care, canteen and uniform operations. These aren’t trivial activities — they involve employment, procurement, contracts, and significant cash handling. The people running them are mostly volunteers who care deeply about the school community.

Last year, they were audited. The outcome was uncomfortable: significant risk identified due to inadequate governance process. The specific failures: financial reporting gaps, lack of process transparency, poor continuity of records, and general compliance shortfalls around record-keeping.

Nobody had done anything dishonest. Nobody had been negligent in a dramatic way. They’d just let governance slide — the way governance tends to slide in busy volunteer organisations where the mission is always more urgent than the administration.

This Isn’t an Isolated Story

What struck me most about the conversation was how unsurprised they were by the audit findings. They’d known things weren’t right. They just hadn’t prioritised fixing it until they were forced to.

This is a pattern I encounter across Australian community organisations — P&Cs, sporting clubs, service organisations, neighbourhood groups, small not-for-profits. The people involved are genuine and committed. The resources are limited. And governance administration — the agendas, the minutes, the action tracking, the financial approval trails — is exactly the kind of work that gets deprioritised when there are more immediate demands on volunteer time.

The problem is that governance failures don’t announce themselves until they become crises. A missing meeting minute is easy to ignore until someone needs to verify what was decided. A financial approval that wasn’t properly recorded is fine until an auditor or a funder asks for the paper trail. An action that was informally agreed but never formally assigned is nobody’s problem until it doesn’t get done and the consequences arrive.

What “Significant Risk” Actually Means

When an auditor or regulator identifies governance risk in an association, the consequences can include:

  • Requirement to repay grant funding that cannot be adequately acquitted
  • Regulatory compliance notices or fines
  • Loss of incorporated association status
  • Personal liability exposure for individual committee members
  • Inability to renew insurance
  • Reputational damage in the community

None of these are theoretical for active associations. They’re the real consequences of governance that hasn’t been taken seriously — and they fall on the volunteers who showed up and tried to help.

The P&C president I spoke with had spent months compiling retrospective documentation to satisfy the auditor. The hours consumed in reconstruction — chasing former committee members for records, reconstructing financial approvals from email threads, trying to establish what had been decided at meetings two years ago — vastly exceeded what a proper governance system would have required upfront.

The cost of a governance failure is always higher than the cost of preventing it.

Process PA keeps every meeting, resolution, financial approval and action on permanent record — automatically. So if an audit ever arrives, your records are already there. Try it free for 30 days.

Start Free Trial 30 days free · No credit card required

The Questions Worth Asking Now

If you’re sitting on the board or committee of an Australian association, these questions are worth asking before an audit forces the issue:

Can you produce the minutes from every meeting held in the last two years? Are they approved, filed, and accessible — or scattered across email inboxes and personal laptops?

Can you show a clear financial approval trail for major expenditures? If a significant payment was made, is there a board resolution authorising it, or just an informal agreement?

Is your member register current and complete? This is a basic legal requirement for Australian incorporated associations, and one of the first things a regulator will ask for.

Do new committee members have immediate access to the governance history? Or does institutional knowledge leave with departing members?

Are actions tracked and reviewed consistently? Or does the committee rely on goodwill and memory?

None of these are complicated questions. But they’re the ones that determine whether a governance audit produces a clean result or a uncomfortable conversation about significant risk.