Insights
Practical AI governance guides, regulatory analysis, and research — for enterprise leaders, businesses, and individuals navigating the AI landscape.
Boards, APRA, ASIC, controls & programmes
Start herePrivacy Act, ACCC consumer law, AI6 basics
Start hereFounder guide, investor due diligence, EU AI Act
Start hereYour rights, Right to Disconnect, AI at work
Start here
GDPR and the EU AI Act: How They Interact and Where They Conflict
The EU AI Act and GDPR apply simultaneously to AI systems processing personal data. Their requirements overlap significantly, but they also create tensions that governance must resolve.
Read article
AI Governance in Insurance: Underwriting, Claims, and the Fairness Problem
2026
Insurers are using AI to price risk, assess claims, and detect fraud at scale. The governance obligations, and the discrimination risks, are more significant than most have recognised.
AI Governance for Startups: Building It Right Before You Scale
2026
Startups assume AI governance is an enterprise problem. It is not. The governance decisions you make in your first 18 months shape your regulatory exposure, your fundraising conversations, and your ability to enter regulated markets.
How to Audit Your AI Systems: A Practical Framework
2026
AI auditing is becoming a regulatory requirement in more jurisdictions, and a due diligence expectation in most others. This guide covers what an AI audit involves, who should conduct one, and what to do with the results.
AI in Customer Service: Chatbots, Disclosure Obligations, and What Can Go Wrong
2026
Chatbots and virtual assistants are now the first point of contact for millions of customers. The governance obligations, and the reputational risks when they fail, are frequently underestimated.
Singapore's AI Governance Framework: What Businesses in Asia-Pacific Need to Know
2026
Singapore has developed one of the most sophisticated AI governance frameworks in Asia. For businesses operating in the region, understanding the MAS guidelines, IMDA's Model AI Governance Framework, and how they interact with the EU AI Act is becoming a compliance necessity.
AI Vendor Due Diligence: What to Ask Before You Sign
2026
Buying an AI system from a vendor does not transfer your governance obligations to them. It makes those obligations harder to satisfy. Here is the due diligence process that protects your organisation.
AI Governance Maturity: The Five Levels and How to Progress
2026
Not all AI governance is equal. Understanding where your organisation sits on the maturity spectrum, and what the next level requires, is the most practical starting point for a governance improvement program.
AI in Retail and E-Commerce: Personalisation, Pricing, and the Governance Obligations That Come With Them
2026
Retail AI, recommendation engines, dynamic pricing, demand forecasting, is among the most widely deployed AI in commercial use. The governance obligations are less widely understood.
Australia's AI Safety Standard: What It Actually Requires and Who It Applies To
2026
The Australian Government's voluntary AI Safety Standard sets out ten core guardrails for safe and responsible AI. For enterprises, voluntary doesn't mean optional — procurement, liability, and reputation make compliance effectively mandatory.
The Privacy Act, AI, and What the OAIC Expects from Australian Organisations
2026
Australia's Privacy Act 1988 already regulates AI in ways many organisations don't realise. The OAIC has made clear that the APPs apply fully to AI systems that collect, use, and disclose personal information — and the reform agenda will tighten these obligations further.
APRA and ASIC: What Australian Financial Services Firms Need to Know About AI Regulation
2026
Australian banks, insurers, and superannuation funds face AI governance expectations from two powerful regulators simultaneously. APRA's operational risk prudential standards and ASIC's responsible lending and market conduct obligations apply to AI in ways that many compliance teams haven't fully mapped.
Australian Directors and AI: What Your Governance Obligations Actually Mean
2026
Australian directors have personal governance obligations that extend to material AI risks. ASIC's liability focus, the ASX Corporate Governance Principles, and the Robodebt Royal Commission findings have changed what 'appropriate oversight' of AI means at board level.
Using AI at Work in Australia: What Every Employee Needs to Know
2026
Your employer can monitor your AI use, AI output is your responsibility, and feeding client data into ChatGPT could breach privacy law. A practical, jargon-free guide for Australian workers navigating AI in the workplace.
Can My Boss Use AI to Monitor Me at Work? Australian Employees Rights
2026
AI-powered workplace monitoring is growing fast in Australia — productivity tracking, email analysis, even sentiment detection. Here's what your employer can legally do, what they can't, and what to do if you think you're being monitored unfairly.
AI Policy for Australian Small Business: A One-Page Template and What the Law Requires
2026
If you run a small business in Australia and your team uses AI tools, you probably need an AI policy — and you almost certainly need to update your privacy policy. Here's what's required, what's good practice, and a template you can adapt today.
Robodebt's Lessons for Australian AI Governance: What Every Organisation Must Learn
2026
The Robodebt Royal Commission produced the most significant analysis of automated decision-making governance failure in Australian history. Its lessons extend well beyond government — they apply to every Australian organisation using AI in decisions that affect people.
AI Is Changing Australian Jobs: Your Rights, What Employers Must Tell You, and How to Protect Yourself
2026
AI is reshaping work across Australia — automating tasks, changing hiring, and in some cases eliminating roles. Here's what the Fair Work Act says about consultation, what you're entitled to know, and how to navigate AI-driven workplace change.
ACCC and AI: What Australian Consumer Protection Law Means for Businesses Using AI
2026
The Australian Competition and Consumer Commission has made clear that Australian Consumer Law applies fully to AI-driven business practices. Misleading AI pricing, dark patterns, and AI-generated false claims are enforcement priorities. Here's what Australian businesses need to know.
AI Governance in Australian Financial Services: The Complete Regulatory Guide
2026
Australian banks, insurers, superannuation funds and credit providers face overlapping AI obligations from APRA, ASIC, the OAIC and the ACCC. This guide maps every obligation and tells you what to do first.
AI in Australian Healthcare: TGA, Privacy Act, and Clinical Governance
2026
Clinical AI in Australia sits at the intersection of TGA medical device regulation, Privacy Act health information obligations, state-based health records laws, and professional indemnity obligations. Here is what healthcare organisations need to know.
AI in Australian HR and Employment: What People Teams Must Get Right
2026
HR and people teams in Australia are using AI for recruitment, performance management, workforce planning, and employee monitoring. Each use case creates specific legal obligations under the Fair Work Act, Privacy Act, anti-discrimination law, and state workplace surveillance legislation.
ASX-Listed Companies and AI: Disclosure, Directors Duties, and Governance Obligations
2026
Listed companies face AI governance obligations beyond those applying to private entities — continuous disclosure, ASX Corporate Governance Principles, and heightened director liability exposure. What boards and company secretaries need to know.
AI in Australian Superannuation: Trustee Obligations, Member Communications, and Investment AI
2026
Superannuation funds are using AI in member communications, investment management, complaints handling, and fraud detection. The SIS Act trustee obligations, APRA prudential standards, and ASIC conduct requirements create a governance framework that most funds have not fully mapped.