You have no items in your shopping basket.
Mon - Fri 9AM - 5PM
024 7610 0090
Start typing to see products you are looking for.
Start typing to see products you are looking for.
Start typing to see products you are looking for.
Start typing to see products you are looking for.
Start typing to see products you are looking for.
Start typing to see products you are looking for.
05
May
What Training is Required for CQC Compliance?
Image by MargJohnsonVA via Envato Elements
A practical guide to the training, competence checks and governance evidence providers need to build a safer, stronger CQC-ready workforce
What training does a CQC-regulated provider actually need? Is there a fixed mandatory training list inspectors expect to see, or should training be based on the service, the people supported, staff roles and real risks? These questions matter because CQC compliance is not achieved by buying a generic course package or keeping certificates in a folder. Providers must demonstrate that staff are trained, competent, supervised, and supported to deliver safe, effective, caring, responsive, and well-led services.
The challenge is that CQC does not prescribe one universal training checklist. Instead, providers need a defensible system that links training to regulated activities, role expectations, service-user needs, incidents, policies, competence checks and governance evidence.
In this blog, Dr Richard Dune explains what training is required for CQC compliance, how providers should build a role-based and risk-led training matrix, which core and specialist topics commonly apply, and what evidence inspectors may expect. The article also explores induction, the Care Certificate, supervision, appraisal, refresher training and practical competence, helping providers move from tick-box training to a stronger workforce assurance system.
What does CQC actually expect from training?
CQC does not publish a universal checklist of courses that every provider must deliver in the same way. Its expectations are clearer and more practical than that. Providers must deploy sufficient numbers of suitably qualified, competent, skilled, and experienced staff, and ensure that those staff receive the support and development they need to carry out their duties properly.
That means training expectations should flow from the reality of the service, including:
-
The regulated activities you provide
-
The people you support and their needs
-
The tasks staff actually perform
-
Your incidents, complaints, audits, and risk profile
-
Your policies, procedures, and governance arrangements.
This is why a compliant training system is never just a standard annual checklist. It should reflect the work staff do, the risks they manage, and the standards the service says it follows. In practical terms, training plans should show how providers will deliver safe, effective, and person-centred care; reflect the service user groups they support; include induction and core mandatory topics; and describe the role-specific training needed for each role, including managers.
Why training matters so much for CQC compliance
Training matters because it affects more than knowledge. It influences competence, confidence, escalation, documentation, decision-making, and the day-to-day consistency of care. A provider may have policies, risk assessments, and quality systems in place, but if staff do not understand what safe practice looks like, when to escalate, or how local procedures apply, those systems do not translate into reliable care.
That is also why training should not be treated as an isolated HR function. It sits within a wider assurance system. Leaders should be able to explain not only what staff have completed but also how the service knows that learning is embedded, risks are being reduced, and practice is improving.
If you want the wider context around how this fits within inspection and evidence, see our guides to the current CQC assessment framework, the role of the Care Quality Commission, and the CQC regulations in practice.
What training is typically required for CQC-regulated services?
The most accurate answer is that providers need training appropriate to their services, roles, risks, and regulated activities. In practice, that usually means a layered structure.
Layer 1: Core statutory and mandatory training
Most CQC-regulated services will usually have a baseline of core topics that support safe care and consistent practice. These often include:
-
Safeguarding adults and, where relevant, children
-
Infection prevention and control
-
Health and safety
-
Fire safety
-
Moving and handling, where relevant
-
Equality, diversity, inclusion, and human rights
-
Information governance and accurate record keeping
-
Basic life support or emergency response, where relevant
-
First aid arrangements based on risk assessment.
These are common because they underpin safety, rights, and operational reliability. Providers often build these baselines using pathways such as safeguarding e-learning, health and safety courses, fire safety learning, moving and handling courses, and resuscitation and life support training. These topics are common, but they still need to be tailored sensibly to the role and setting rather than assigned identically to everyone.
Layer 2: Role-based competence training
This is often the most important differentiator between weaker and stronger providers. Completion certificates rarely answer the real question: whether staff can do the work safely and consistently.
Role-based competence training may include:
-
Medication support or administration
-
Mental capacity, consent, and restrictive practice awareness
-
Dementia care and communication
-
Falls prevention
-
Pressure area care
-
Catheter, stoma, or wound-related care
-
PEG feeding, where applicable
-
Clinical observations
-
Oxygen safety
-
Escalation and deterioration recognition
-
Role-specific documentation standards.
This is where CQC frequently tests reality against paperwork. For medicines support, for example, good governance depends on clear expectations in medicines policies, regular review of medicines processes, action follow-up, and systems that support improvement. Electronic systems can help, but only if the provider knows how to use them well and can demonstrate oversight.
Providers reviewing this area may also want to look at our resources on medication management training, basic life support learning, and broader health and social care e-learning.
Layer 3: Service-specific risk training
The third layer is what makes training truly defensible. It should reflect the actual care model, service user group, incidents, and local hazards. A supported living service, a domiciliary care agency, a nursing home, a GP practice, or a clinic may each require a different emphasis.
Examples may include:
-
Learning disability and autism awareness at the right level for the role
-
Behaviours that challenge and positive behaviour support
-
Lone working
-
Epilepsy awareness
-
Diabetes awareness
-
Sensory impairment support
-
Mental health risk awareness
-
Service-specific emergency procedures.
This is especially important because providers must ensure that staff are trained at a level appropriate to their role and the people they support. Specialist needs should not be treated as optional extras if they are part of everyday service delivery.
What does CQC look for during assessments?
Training is typically assessed through three interconnected routes as outlined below.
1. Staff competence in real situations
Inspectors and assessors will look beyond course completion. They want to know whether staff can recognise and respond appropriately to safeguarding concerns, infection risks, medicines issues, consent, deterioration, emergencies, and person-centred care needs. Good training should translate into confidence, consistency, and safer decisions in real-life situations.
2. Governance and assurance
Leaders should be able to explain:
-
What does each role require?
-
Why is it required?
-
How is completion monitored?
-
How is competence checked?
-
What happens when staff are overdue?
-
How do incidents, complaints, and audits trigger training changes?
-
How do policies and training stay aligned?
3. Evidence that learning is embedded
Stronger providers can usually show:
-
A structured induction
-
Shadowing and supervised practice
-
Supervision linked to development needs
-
Competence sign-off for higher-risk tasks
-
Audits connected to training interventions
-
Action tracking where gaps are identified.
If your systems are fragmented across folders, emails, and spreadsheets, evidence retrieval often becomes slow and weak. This is why many providers review whether they need a more joined-up approach through a CQC compliance system, policy management tools, a learning management system (LMS), or a training management system (TMS).
How should providers decide what each role needs?
The safest method is to work from risk to role, not from habit to list.
A defensible training matrix starts by asking:
-
What regulated activities do we provide?
-
What are the main clinical, operational, and safeguarding risks?
-
What tasks does each role actually perform?
-
Which tasks need observed competence, not just knowledge?
-
What do incidents, audits, and complaints tell us?
-
Which policies require role-specific understanding?
From there, each role can be mapped against:
-
Required training topics
-
Delivery method
-
Assessment method
-
Refresher frequency
-
Competence evidence
-
Evidence location
-
Escalation route if overdue.
This turns the matrix from an administrative document into an explanation of how the provider manages workforce capability. Readers seeking a broader background should also see our guides on statutory versus mandatory training and improving statutory and mandatory training systems.
What should a CQC-ready training matrix include?
CQC does not just expect providers to have a matrix. It expects them to explain it.
A useful training matrix should answer four basic questions:
-
Which roles do you have?
-
What training does each role require, and why?
-
How often does refresher training take place, and why?
-
How do you confirm competence, not just completion?
In practical terms, for each role and topic, it helps to define:
-
Delivery method, such as e-learning, face-to-face, or blended learning
-
Assessment method, such as knowledge checks, observed practice, scenario-based discussion, or sign-off
-
Refresher frequency, whether annual, biannual, risk-based, or event-triggered
-
Evidence location, such as LMS reports, supervision notes, or competence records.
This makes the matrix easier to understand, defend, and use operationally.
Where do induction, the Care Certificate, supervision, and appraisal fit?
They are central to compliance, not secondary extras. Providers should ensure they have an induction programme that prepares staff for their role, that learning needs are identified at the start of employment and reviewed regularly, and that staff are supervised until they can demonstrate acceptable competence to work unsupervised.
For many adult social care providers, the Care Certificate remains one of the strongest induction frameworks for new care staff. It provides structure, consistency, and early evidence of competence when implemented properly. If that applies to your workforce, our resources on who needs the Care Certificate, Care Certificate pathways, and how it differs from statutory and mandatory training may help.
Supervision and appraisal then help maintain standards after induction. They should not be generic conversations detached from practice. They should be used to check confidence, identify capability gaps, respond to incidents, and set development actions where needed.
Is e-learning enough on its own?
Sometimes, but often not. For lower-risk knowledge topics, e-learning may be entirely appropriate. For higher-risk tasks, it is rarely enough on its own. Providers may also need observed practice, coaching, supervised shifts, scenario-based assessment, or competence sign-off.
This is one of the most common areas of confusion. E-learning can support knowledge acquisition very effectively. However, providers still need to decide where competence must be evidenced in practice. That decision should be based on role, risk, and the consequences of error.
For CPD-accredited online courses, the key question is never simply whether the course exists. It is whether the delivery method is appropriate for the outcome you need.
What does good refresher training look like?
Refresher training should be:
-
Risk-based
-
Role-based
-
Responsive to incidents, audits, and policy changes
-
Proportionate to the consequences of poor practice.
A sensible model is to set a baseline cycle, then use learning triggers to increase frequency where necessary. For example, refresher training may need to be brought forward if:
-
A serious incident occurs
-
Audit findings show repeated non-compliance
-
Policies change materially
-
Competence concerns are identified
-
Turnover creates instability in the workforce.
This makes the system easier to defend because it shows that the provider is responding to evidence rather than repeating the same timetable without thought.
What evidence should providers be able to produce quickly?
During a CQC assessment, providers should be able to produce relevant evidence promptly, not after several days of searching.
A robust evidence set will often include:
-
A current version-controlled training matrix
-
Completion reports by role, team, or topic
-
Induction records, including shadowing
-
Competence sign-off for higher-risk tasks
-
Supervision and appraisal notes linked to development needs
-
Audit results showing whether training has had an impact
-
Evidence of action where training is overdue, or competence is in doubt.
The more difficult this evidence is to retrieve, the harder it becomes to show control and consistency.
Common mistakes that weaken CQC training compliance
The most common problems are:
-
Copying a generic mandatory training list
-
Treating completion as competence
-
Separating training from supervision and governance
-
Letting policies and training drift apart
-
Failing to escalate overdue training clearly
-
Storing evidence in disconnected systems
-
Not linking audits and incidents back into learning.
These issues rarely appear in isolation. They usually indicate that training is being managed as an administrative burden rather than as part of a quality and safety system.
Practical steps providers should take now
If you are reviewing your current approach, the following steps usually help:
- Reconfirm service scope and risks - Check your regulated activities, client group, clinical and operational risks, and service model.
- Refresh the training needs analysis - Review whether current training requirements still reflect what staff actually do.
- Rebuild or refine the matrix - Ensure every role has clearly defined requirements, refresh periods, and competence expectations.
- Check induction and shadowing - Make sure new starters are not being signed off too early and that induction is role-relevant.
- Link training to supervision and audit - Training data should feed into governance meetings, quality reviews, and improvement actions.
- Review evidence retrieval - Make sure you can quickly produce the right evidence and explain what it shows.
FAQs about what training is required for CQC compliance
Below are some of the most frequently asked questions and answers regarding the training required to meet CQC compliance.
Does CQC publish a single mandatory training list?
No. Training should be appropriate to the service, the risks, the people supported, and the staff roles.
Which CQC regulations matter most for training?
Regulation 18 is the key staffing regulation, but Regulation 17 is also crucial because training must sit within effective governance and quality assurance.
Is mandatory training enough for CQC compliance?
No. Providers also need role-based competence, supervision, appraisal, and service-specific learning.
Does CQC look at competence as well as training records?
Yes. CQC is interested in whether staff can apply learning safely and consistently in practice.
How important is induction for CQC compliance?
Very important. Providers should have an induction programme that prepares staff for their role and supports safe early practice.
How does the Care Certificate fit in?
It is a strong induction framework for many adult social care staff, but it does not replace wider ongoing training needs.
Should refresher training always be annual?
Not always. Frequency should reflect risk, role, service changes, incidents, and audit findings.
Can e-learning support CQC compliance?
Yes, where appropriate, but some higher-risk tasks also need practical assessment and competence sign-off.
What evidence should be available quickly?
A provider should normally be able to produce a current matrix, completion data, induction records, competence sign-offs, supervision records, and improvement actions.
What is the biggest training mistake providers make?
Treating training as a tick-box exercise instead of as part of workforce capability, governance, and safer care.
|
CQC training area |
What providers need to do |
What this means in practice |
Evidence CQC may expect |
|
Core principle |
Build training around the service, roles, risks and people supported. |
Do not rely on a generic mandatory training list. Training must reflect regulated activities, staff duties, service-user needs, incidents and policies. |
Training needs analysis, role-based training matrix, risk assessments and policy links. |
|
CQC expectation |
Ensure staff are trained, competent, skilled, experienced, supervised and supported. |
Training must connect to Regulation 18 staffing duties and Regulation 17 governance duties. |
Training records, supervision notes, appraisal records, competence evidence and governance reports. |
|
Layer 1: Core statutory and mandatory training |
Provide baseline training that supports safe, lawful and consistent practice. |
Common topics include safeguarding, infection prevention and control, health and safety, fire safety, moving and handling, equality and diversity, information governance, basic life support and first aid arrangements. |
Completion reports, refresher records, induction records and training matrix by role. |
|
Layer 2: Role-based competence training |
Match training to what the staff actually do. |
Staff who administer medicines, support people with dementia, complete clinical observations, or manage complex care need training and competence checks relevant to those duties. |
Competency sign-offs, observed practice, supervision notes, medication audits and role-specific assessments. |
|
Layer 3: Service-specific risk training |
Add training linked to the service model and local risks. |
Examples include learning disability and autism, behaviours that challenge, lone working, epilepsy, diabetes, sensory impairment, mental health risk and emergency procedures. |
Service-specific training plans, risk assessments, incident reviews and evidence of local induction. |
|
Training matrix |
Use the matrix as a governance tool, not just an admin spreadsheet. |
It should explain which roles need which training, why it is required, how often it is refreshed and how competence is checked. |
Version-controlled training matrix, role mapping, refresher rules and escalation process for overdue training. |
|
Induction |
Prepare staff safely before they work independently. |
New starters should receive structured induction, shadowing, local orientation, essential safety training and supervised practice. |
Induction checklist, shadowing records, probation reviews and local sign-off. |
|
Care Certificate |
Use it where relevant as an induction and competence framework. |
For many adult social care staff, the Care Certificate supports baseline knowledge, skills and behaviours, but it does not replace wider mandatory or role-specific training. |
Care Certificate records, assessor sign-off, observed practice and mapped induction evidence. |
|
Supervision and appraisal |
Link training to ongoing workforce development. |
Supervision should identify confidence gaps, capability concerns, learning needs and actions following incidents or audits. |
Supervision records, appraisal notes, development plans and follow-up actions. |
|
E-learning |
Use online learning appropriately, but do not rely on it for every outcome. |
E-learning can work well for knowledge-based topics, but higher-risk tasks may require practical assessment, observation, coaching or sign-off. |
Online completion records plus practical assessment evidence, where needed. |
|
Competence checks |
Confirm that staff can apply learning safely in practice. |
Completion certificates alone may not prove competence in safe medicines practice, moving and handling, emergency response, safeguarding escalation, or clinical tasks. |
Competency assessments, direct observations, scenario discussions and audit outcomes. |
|
Refresher training |
Make refreshers risk-based and responsive. |
Frequency should reflect role, risk, incidents, policy changes, audit findings and consequences of poor practice, not just an annual habit. |
Refresher schedule, risk-based rationale, policy update records and incident-triggered training actions. |
|
Governance and assurance |
Connect training data to quality oversight. |
Leaders should know what each role requires, who is overdue, how gaps are escalated and whether training is improving practice. |
Governance meeting minutes, dashboards, action trackers, audit reports and board/senior leadership updates. |
|
Policies and training alignment |
Ensure training reflects current policies and procedures. |
Staff must understand how local policies apply in practice, especially in safeguarding, medicines, IPC, moving and handling, and record-keeping. |
Policy acknowledgements, version control, training content review and spot-checks of practice. |
|
Incident and audit learning |
Use incidents, complaints and audits to update training. |
If recurring issues arise, providers should review whether staff need additional training, supervision, competence checks, or clearer procedures. |
Incident analysis, complaint themes, audit findings, learning logs and revised training actions. |
|
Evidence retrieval |
Keep training evidence easy to find and explain. |
Providers should be able to produce the right records quickly during assessment, rather than searching across disconnected folders and spreadsheets. |
Centralised records, LMS/TMS reports, evidence folders and inspection-ready summaries. |
|
Common mistake |
Treating training as a tick-box exercise. |
Buying courses or collecting certificates is not enough if staff cannot demonstrate safe practice. |
Evidence of competence, supervision, audit impact and improved outcomes. |
|
Common mistake |
Copying a generic training list. |
Generic matrices often miss service-specific risks or overload staff with irrelevant modules. |
Training needs analysis, role mapping and documented rationale for training requirements. |
|
Common mistake |
Separating training from governance. |
Training should feed into risk management, quality assurance, supervision, audit and improvement planning. |
Governance reports showing links between training, risks, incidents and quality improvement. |
|
Practical first step |
Reconfirm service scope and risks. |
Review regulated activities, client groups, clinical risks, operational risks and staff responsibilities. |
Updated service risk profile and training needs review. |
|
Practical second step |
Refresh the training needs analysis. |
Check whether current requirements still reflect what staff do and what people using the service need. |
Revised TNA, updated matrix and evidence of management review. |
|
Practical third step |
Rebuild or refine the training matrix. |
Define training topic, role, delivery method, assessment method, refresher frequency and evidence location. |
Complete role-based matrix and escalation process. |
|
Practical fourth step |
Review induction, shadowing and sign-off. |
Make sure new staff are not signed off too early and that competence is confirmed before unsupervised work. |
Induction records, shadowing logs, probation reviews and competency sign-off. |
|
Practical fifth step |
Link training to supervision and audit. |
Training should be discussed in supervision and tested through audits or observations. |
Supervision notes, audit reports and improvement actions. |
|
Practical sixth step |
Improve evidence readiness. |
Make sure leaders can explain what the evidence shows, not just produce documents. |
Evidence dashboard, summary reports and improvement narrative. |
Key message: CQC compliance is not achieved through a fixed course list. Providers need a layered, role-based and risk-led training system that connects core learning, specialist competence, induction, supervision, refresher training, policies, audits and evidence into one defensible workforce assurance model.
Conclusion
What training is required for CQC compliance? The most accurate answer is: the training that is appropriate for your service, your staff roles, your regulated activities, and the risks you actually manage, and that you can explain, evidence, supervise, and improve through good governance.
The strongest providers do not rely on generic course lists alone. They build layered systems that connect core training, role-based competence, induction, supervision, appraisal, policy control, audit, and evidence readiness. That is what makes a training programme more credible, more useful, and more inspection-ready.
Strengthen your CQC training evidence
If you are reviewing your training matrix, induction model, competence checks, or inspection evidence, explore our health and social care learning pathways, online statutory and mandatory training options, and ComplyPlus™ compliance and evidence tools. For independent verification of our accredited provision, you can also view The Mandatory Training Group's CPD Certification Service provider profile.
If you would like support with a role-based CQC training matrix, evidence readiness, or a more structured compliance system, please contact our team to discuss your organisation's requirements.
Related Blogs
Related Blogs
About the author
Dr Richard Dune
Contact us
Complete the form below to start your ComplyPlusTM trial and
transform your regulatory compliance solutions.
← Older Post Newer Post →
0 comments