The Australian Cyber Law Map (Map) is a collaborative guide intended to help legal practitioners navigate through the detailed and complicated legal landscape of Australian cyber-related legislation and case law. Within the Map, the ever-evolving area of cyber law has existing principles and new development categorises. The Map and the categories it focuses on can be easily understood via the following visualisation.
This article discusses the Map and its key benefits and applications.
The Map’s benefits
The Map provides some clarity, in an area of law that is developing at such a substantial rate that it is difficult for practitioners to keep abreast of changes. Added to this challenge is the lack of certainty in Australia’s cyber laws. That is to say, new and rapid technological developments may demand responsive legislative implementations. There is no dedicated instrument intended solely to respond to the, often positively, disruptive impact that innovative technologies have in various areas of law. For example, there is no legislation governing the interface between cyber law and the law surrounding commercial enterprises.
Notwithstanding that such interface will often result in safer, more secure commercial dealings, for example, smart contracts protected through blockchain technology, the interface, and other cyber developments, need to be regulated to ensure fairness and deter opportunistic misdealing.
Applications
The Map details how, in the context of an increasingly digital commercial scene, common cyber issues or disputes may give rise to legal remedies. The Map considers how existing legal principles surrounding contracts, directors’ duties and mergers and acquisitions interact with cyber law. For example, the Map discusses established common law principle, the doctrine of frustration,[1] to modern circumstances. The Map states that negligence may prevent a party from relying on frustration in response to a cyber risk, such as where careless mistakes are involved.[2]
On a larger scale, the project is contributing to societal welfare by bringing to the forefront of the legal profession expert analysis of how cyber-law may interact with and protect critical infrastructure. The Map considers the Australian Government’s Critical Infrastructure Resilience Strategy (Strategy) in order to provide analysis which may be assistive in policy decisions. The Strategy provides the following definition for critical infrastructure:
“…those physical facilities, supply chains, information technologies and communication networks, which if destroyed, degraded or rendered unavailable for an extended period, would significantly impact on the social or economic wellbeing of the nation, or affect Australia’s ability to conduct national defence and ensure national security.”
One would need to look no further than the recent cyber-attack on the Colonial Pipeline to understand the importance of legislative and policy protections being in place to prevent or deter such attacks. Proper legislative safeguards surrounding cyber-security will protect critical infrastructure’s continued operation in the face of all hazards. The Map is assistive in bringing about this end by being a mechanism for the recognition and communication of legal analysis performed by leading experts in the field of cyber law.
Takeaways
The Map aims to guide the legal profession across areas of cyber law in the country and its application to certain areas of law. These areas are: Commercial Enterprises, Cyber Offences, Infrastructure, International Law, National Security and Personal Rights. The Map strives to provide clarity amongst the challenges of practicing in the ever-changing legal landscape of Australian cyber law. What has been evidenced so far is the Map providing frameworks for certain issues such as when negligence can impact on the doctrine of frustration in contract law matters.
Further information about Australian cyber law
If you need advice on the evolving area of Australian cyber law, contact us for a confidential and obligation-free discussion:
Malcolm Burrows B.Bus.,MBA.,LL.B.,LL.M.,MQLS.
Legal Practice Director
T: +61 7 3221 0013 (preferred)
M: +61 419 726 535
E: mburrows@dundaslawyers.com.au
Disclaimer
This article contains general commentary only. You should not rely on the commentary as legal advice. Specific legal advice should be obtained to ascertain how the law applies to your particular circumstances.
Related insights about Australian cyber law
-
Federal parliament passes cyber security laws
On 25 November 2024, the Australian Parliament passed a suite of legislation, collectively referred to by the Australian Government as the Cyber Security Legislative Package 2024. The purported impetus for this legislation was a series of high-profile data breaches in 2022 and 2023.
-
Domain name disputes – a summary of the process
A domain name is a string of text that maps to an alphanumeric IP address, enabling users to access websites through client-side software.[1] Domains can be valuable business assets, and they frequently become the subject of disputes regarding the legitimacy of their registration among organisations with competing rights.
-
New OAIC guidance on Artificial Intelligence
On 21 October 2024, the Office of the Australian Information Commissioner (OAIC) published two (2) new guides on artificial intelligence (AI), purportedly in effort to make privacy compliance easier for business.
-
Artificial Intelligence defined – why no uniform approach?
Artificial Intelligence (AI) is commonly thought of as the capacity of computer systems to execute tasks that usually need human intelligence, such as learning, reasoning, and making decisions.[1] It covers a range of specialised fields, each focusing on different functions. For example, machine learning allows computers to learn from data, computer vision enables them to…
-
New USPTO guidelines on AI assisted inventions
In response to the Biden administration’s Executive Order on the Safe, Secure, and Trustworthy Development and Use of Artificial Intelligence on 30 October 2023, which outlined policies and principles to promote responsible Artificial Intelligence innovation and competition, the United States Patent and Trademark Office (USPTO) issued inventorship guidance for artificial intelligence (AI) assisted inventions. These…
-
Software developer obtains Court order – names behind IP addresses
Justice Burley of the Federal Court of Australia in the case of Siemens Industry Software Inc v Telstra Corporation Limited [2020] FCA 901 ordered that Telstra, within fourteen (14) days, provide to Siemens all documents in its control relating to the identity of certain Telstra Account holders. Those account holders were suspected by Siemens of…
-
The Digital ID Bill 2023 (Cth)
On 30 November 2023, the Digital ID Bill 2023 (Cth) and the Digital ID (Transitional and Consequential Provisions) Bill 2023 (Digital ID Bills) were introduced in the Australian Senate. Digital IDs are designed to provide individuals with a convenient way to verify their identity when completing certain online transactions and dealing with government and certain…
-
Misinformation and Disinformation Bill 2023 – exposure draft
The Communications Legislation Amendment (Combatting Misinformation and Disinformation) Bill 2023 (Cth) (Misinformation Bill) was announced by the Department of Infrastructure, Transport, Regional Development, Communication and the Arts (DITRDCA) in January 2023. The Misinformation Bill is aimed at restricting the flow of misinformation and disinformation by providing the Australian Communications and Media Authority (ACMA) with increased…
-
What are adequate cyber security measures?
The adequacy of cyber security measures was considered in the case of Australian Securities and Investments Commission v RI Advice Group Pty Ltd [2022] FCA 496 (ASIC v Ri Advice Group). One of the issues raised was whether the respondent had adequate cyber security and cyber resilience in place across its network of financial advisors. …
