internet law

The Australian Cyber Law Map – overview

HomePrivate: BlogIndustry expertiseCyber security consultantsThe Australian Cyber Law Map – overview

by

reviewed by

Malcolm Burrows

Reading Time:

3–4 minutes

The Australian Cyber Law Map (Map) is a collaborative guide intended to help legal practitioners navigate through the detailed and complicated legal landscape of Australian cyber-related legislation and case law. Within the Map, the ever-evolving area of cyber law has existing principles and new development categorises.  The Map and the categories it focuses on can be easily understood via the following visualisation.

australian-cyber-law-map-table

This article discusses the Map and its key benefits and applications.

The Map’s benefits

The Map provides some clarity, in an area of law that is developing at such a substantial rate that it is difficult for practitioners to keep abreast of changes.  Added to this challenge is the lack of certainty in Australia’s cyber laws.  That is to say, new and rapid technological developments may demand responsive legislative implementations.  There is no dedicated instrument intended solely to respond to the, often positively, disruptive impact that innovative technologies have in various areas of law.  For example, there is no legislation governing the interface between cyber law and the law surrounding commercial enterprises.

Notwithstanding that such interface will often result in safer, more secure commercial dealings, for example, smart contracts protected through blockchain technology, the interface, and other cyber developments, need to be regulated to ensure fairness and deter opportunistic misdealing.

Applications

The Map details how, in the context of an increasingly digital commercial scene, common cyber issues or disputes may give rise to legal remedies. The Map considers how existing legal principles surrounding contracts, directors’ duties and mergers and acquisitions interact with cyber law.  For example, the Map discusses established common law principle, the doctrine of frustration,[1] to modern circumstances.  The Map states that negligence may prevent a party from relying on frustration in response to a cyber risk, such as where careless mistakes are involved.[2]

On a larger scale, the project is contributing to societal welfare by bringing to the forefront of the legal profession expert analysis of how cyber-law may interact with and protect critical infrastructure.  The Map considers the Australian Government’s Critical Infrastructure Resilience Strategy (Strategy) in order to provide analysis which may be assistive in policy decisions.  The Strategy provides the following definition for critical infrastructure:

…those physical facilities, supply chains, information technologies and communication networks, which if destroyed, degraded or rendered unavailable for an extended period, would significantly impact on the social or economic wellbeing of the nation, or affect Australia’s ability to conduct national defence and ensure national security.

One would need to look no further than the recent cyber-attack on the Colonial Pipeline to understand the importance of legislative and policy protections being in place to prevent or deter such attacks.  Proper legislative safeguards surrounding cyber-security will protect critical infrastructure’s continued operation in the face of all hazards.  The Map is assistive in bringing about this end by being a mechanism for the recognition and communication of legal analysis performed by leading experts in the field of cyber law.

Takeaways

The Map aims to guide the legal profession across areas of cyber law in the country and its application to certain areas of law.  These areas are: Commercial Enterprises, Cyber Offences, Infrastructure, International Law, National Security and Personal Rights.  The Map strives to provide clarity amongst the challenges of practicing in the ever-changing legal landscape of Australian cyber law.  What has been evidenced so far is the Map providing frameworks for certain issues such as when negligence can impact on the doctrine of frustration in contract law matters.

Further information about Australian cyber law

If you need advice on the evolving area of Australian cyber law, contact us for a confidential and obligation-free discussion:


Related insights about Australian cyber law

  • Office of AI announced by Federal Government

    Office of AI announced by Federal Government

    On 15 July 2026, Prime Minister Anthony Albanese (Prime Minister) announced by media release an expansion of the Federal Government’s (Government) existing artificial intelligence (AI) governance framework, including the establishment of a new Office of AI as well as plans to legislate national standards governing large-scale data centres, AI training and the use of Australian…

    Read more …

  • AI businesses should have duty of care

    AI businesses should have duty of care

    In a recent interview with InnovationAus.com, Victorian Senator Michelle Ananda-Rajah (Senator) emphasised the need to adopt digital duty of care laws for artificial intelligence (AI) companies.[1]  As a representative of the ALP and former AI start-up founder, the Senator calls for the proposed digital duty of care to apply to AI companies.  If implemented, the…

    Read more …

  • Federal Court orders winding up of crypto mining investment scheme

    Federal Court orders winding up of crypto mining investment scheme

    The Federal Court of Australia delivered judgment in Australian Securities and Investments Commission v NGS Crypto Pty Ltd (No 5) [2025] FCA 1611, on 18 December 2025 ordering the winding up of two (2) cryptocurrency related entities after finding that they operated an unlicensed financial services business and an unregistered managed investment scheme in contravention…

    Read more …

  • Online Safety – is your online business a DIS or a RES?

    Online Safety – is your online business a DIS or a RES?

    Whether your online business has to comply with the obligations contained in the Online Safety Act 2021 (Cth) (OSA), and related standards and industry codes will largely depend on how your business is classified because of the functionality it provides to end users in Australia.

    Read more …

  • Bill to allow victims of AI deepfakes to sue for emotional damages

    Bill to allow victims of AI deepfakes to sue for emotional damages

    On 24 November 2025, Senator David Pocock introduced a private Senator’s bill, the Online Safety and Other Legislation Amendment (My Face, My Rights) Bill 2025 (Cth) (Bill) to amend the Online Safety Act 2021 (Cth) (Online Safety Act) and the Privacy Act 1988 (Cth) (Privacy Act). 

    Read more …

  • Malcolm Burrows on ABC’s “Legal Eagles” segment – Deepfakes

    Malcolm Burrows on ABC’s “Legal Eagles” segment – Deepfakes

    On 3 December 2025, Malcolm Burrows appeared live on Katherine Feeney’s ABC Radio program, “Legal Eagles” as the Technology and Intellectual Property Lawyer to discuss the proposed amendments to the Online Safety Act 2021 (Cth) through the introduction of the Online Safety and other legislation Amendment (My Face Rights) Bill (Cth) 2025 (My Face Rights…

    Read more …

  • Federal Gov rules out copyright text and data mining exception for AI

    Federal Gov rules out copyright text and data mining exception for AI

    On 26 October 2025, the Attorney-General, Hon Michelle Rowland MP, published a media release reiterating that the current Federal Government will not introduce a text and data mining (TDM) exception to copyright infringement in the Copyright Act 1968 (Cth) (Copyright Act).  The Attorney-General’s Department will instead engage in further consultations with members of the Copyright…

    Read more …

  • Australian Government announces a digital duty of care

    Australian Government announces a digital duty of care

    The Australian Government has announced that it will soon be introducing legislation to create a digital duty of care under the Online Safety Act 2021 (Cth) (Act) in response to findings from an independent Statutory Review of the Online Safety Act 2021 (Review).  The Honourable Anika Wells MP announced that “big tech” companies will soon…

    Read more …

  • Dundas Lawyers achieves SMB1001 gold level cyber security certification

    Dundas Lawyers achieves SMB1001 gold level cyber security certification

    On 14 November 2025 Dundas Lawyers achieved the Gold level of the SMB1001 cybersecurity standard.

    Read more …

Send this to a friend