Contractor Compliance
The process of verifying that all contractors, agency workers, and temporary staff meet the same compliance requirements as direct employees - including DBS checks, right to work, professional registrations, training, and insurance.
Quick Reference
What is a Contractor Compliance?
Contractor compliance encompasses all the checks and documentation required to confirm that contractors, freelancers, agency workers, and self-employed individuals working for your organisation meet the relevant legal, regulatory, and policy requirements. Many organisations assume that compliance responsibility rests with the recruitment agency or the contractor themselves - this is frequently incorrect.
Where an organisation is deemed the 'end client' under IR35 or has operational control over the work, the compliance obligations often mirror those for direct employees: right to work checks, DBS checks (for regulated roles), professional registration verification, and relevant training. The contractor's agency may carry out some of these checks, but the end client is responsible for verifying that they have been done.
The compliance landscape for contractors is complex because different types of engagement (PAYE agency, limited company, SOW) carry different responsibilities. Legal advice specific to your engagement model is important.
What Happens If It's Missed?
Non-compliant contractors expose the end client organisation to the same risks as non-compliant employees, plus additional risks unique to contractor relationships: penalties under IR35 for incorrect status determination, liability gaps where a contractor's insurance doesn't cover their activity, and safeguarding failures where DBS checks were assumed to have been done by the agency. High-profile contractor compliance failures in NHS trusts and care groups have resulted in serious case reviews and regulatory prosecution.
How Businesses Track & Manage This
Contractor compliance is typically managed through a combination of agency vetting agreements (contractual requirements on the agency) and direct verification by the client's HR or compliance team. For high-volume contractor usage, compliance software tracks each contractor's individual certifications, DBS checks, right to work documents, and training - with automated reminders before any item expires, regardless of whether the contractor is on-site or off.
Stop tracking contractor compliance renewals in spreadsheets
ExpiryEdge sends automated alerts before each contractor compliance renewal is due - for every employee, contractor, or volunteer, individually. Set it up once, stay compliant automatically.
Frequently Asked Questions
Is the agency or the end client responsible for contractor compliance?
Both have responsibilities, but the division depends on the contractual arrangement. For right to work, the employer of record (usually the agency for PAYE temps) is responsible. For regulated activity checks (DBS, professional registration), the end client has a duty of care that cannot be fully delegated. Best practice is for the end client to contractually require the agency to carry out specified checks AND to maintain independent verification.
Do contractors need DBS checks?
If the contractor is carrying out regulated activity (working with children, vulnerable adults, or in certain regulated roles), yes - a DBS check is required regardless of employment type. The regulated activity test applies to the activity, not the employment relationship.
What is the most common contractor compliance failure?
Right to work re-verification is the most commonly missed. An agency may check right to work at the start of an engagement but fail to track when a time-limited permission expires mid-contract. The end client is often unaware until an audit or Home Office check.
Related Terms
Never miss a compliance deadline
ExpiryEdge tracks DBS checks, right-to-work, training renewals and every HR compliance date - and sends reminders before each one expires.
Get started freeSee HR compliance features →