Business Code of Conduct: How to Create One

A strong business code of conduct sets the tone for how your team, managers and contractors behave every day - with customers, suppliers and each other.

It’s more than a set of rules. It’s a practical guide that helps you meet your legal obligations, protect your reputation and make faster, clearer decisions when tricky situations arise.

If you’re growing a team, bidding for contracts, or aiming to scale, a code of conduct can quickly move from “nice to have” to “essential”. In this guide, we’ll walk through what a business code of conduct is, why it matters, what to include, and how to roll it out in your small business in Australia.

What Is A Business Code Of Conduct?

A business code of conduct is a short policy that explains the standards of behaviour your business expects from people who work with you - directors, employees, contractors and sometimes key suppliers.

Think of it as your business’ “how we act” manual. It turns your values into simple rules and everyday examples.

Unlike a long policy manual, your code should be easy to read and apply. It usually sits alongside your other core documents (like your Employment Contract and workplace policies) and points to them where needed for detail.

Why Your Business Needs A Code Of Conduct

There are practical and legal reasons to have a code in place from day one.

• Sets clear expectations: Your team knows what “good behaviour” looks like in your business, reducing misunderstandings and inconsistent decisions.
• Supports legal compliance: It helps you communicate obligations under Australian law, including the Australian Consumer Law (ACL), the Privacy Act and work health and safety duties.
• Builds trust: Customers and partners want to see that you act fairly, keep data safe and deal transparently with complaints.
• Prevents issues early: Clear rules on conflicts, gifts, social media and confidentiality reduce the risk of disputes and reputational damage.
• Makes onboarding easier: New starters get a quick primer on your standards, especially when bundled with a Staff Handbook.
• Helps with tenders and certifications: Many enterprise customers expect suppliers to show a written code and compliance approach.

What Should A Business Code Of Conduct Cover?

Your code should be tailored to your size, industry and risks, but most small businesses cover the following areas in plain English.

1) Respectful, Safe And Inclusive Workplaces

Set a baseline for professional conduct and a zero-tolerance stance on bullying, harassment and discrimination.

Reference your work health and safety obligations and remind managers they must consider psychological safety and mental health risks too.

2) Honest Dealings With Customers And The Public

Commit to truthful marketing, fair pricing and clear terms - key expectations under the Australian Consumer Law. Include simple rules around refunds, complaints and avoiding misleading statements.

3) Privacy And Data Security

Explain how your team should collect, use and protect personal information. Keep it high level in the code, and link to your full Privacy Policy and information security rules for detail.

4) Conflicts Of Interest

Ask people to disclose any personal or financial interests that could affect their decisions (for example, hiring a family member or selecting a supplier they have a stake in). Set out how conflicts are managed or escalated.

5) Gifts, Benefits And Hospitality

Define what’s acceptable (e.g. a coffee or low-value gift) and what must be reported or refused. Include a simple dollar threshold, approval process and a ban on anything that could influence business decisions.

6) Use Of Company Resources And Communications

Set commonsense rules for email, devices and systems, including professional tone, secure passwords and no unauthorised software. Remind staff that business communications can be discoverable and subject to workplace communication laws.

7) Social Media And Public Statements

Clarify who can speak on behalf of the business and how staff should behave online when they are identifiable as your employee. Stress confidentiality and brand protection.

8) Anti-Bribery, Fair Competition And Ethical Sourcing

State that bribery, kickbacks and collusion are banned. If relevant, outline commitments to ethical labour practices in your supply chain and how suppliers are expected to behave.

9) Confidential Information And IP

Require staff and contractors to keep business information confidential and respect third-party intellectual property. The code can point to your confidentiality clauses and any Non-Disclosure Agreement you use with external parties.

10) Speaking Up, Reporting And Investigations

Explain how concerns can be raised (internally or anonymously if you offer it), what happens next, and protections against victimisation. Larger businesses and certain regulated organisations may also need a formal Whistleblower Policy.

11) Consequences For Breaches

Be clear that serious breaches can lead to disciplinary action - up to and including termination of employment or contract - consistent with your Employment Contract terms and applicable laws.

How To Write And Implement Your Code Of Conduct

Your code should be simple, specific to your context and easy to put into practice. Here’s a practical, step-by-step approach.

Step 1: Map Your Risks And Values

Start by listing where behaviour could go wrong in your business - customer interactions, cash handling, supplier selection, data access, field work, remote work, or social media. Then write down the values you want to see in action (respect, fairness, integrity, safety).

These two inputs will shape what belongs in your code and how detailed it needs to be.

Step 2: Choose The Right Format

Most small businesses succeed with a 3-6 page policy written in plain English. Use short headings, examples and a clear “what to do” tone. Link to longer policies (privacy, safety, leave) rather than repeating them.

Step 3: Align With Contracts And Policies

Make sure your code is consistent with your contracts and policies. Cross-reference your Workplace Policy suite (e.g. bullying and harassment, IT, leave) and any relevant procedures like grievances and investigations.

Step 4: Involve Leaders (And A Few Frontline Staff)

Good codes reflect real life. Ask managers and a handful of team members to review a draft and flag gaps or ambiguous wording. This builds buy-in and improves clarity.

Step 5: Launch With Training

Roll out the code at a team meeting or onboarding session. Walk through the core rules and a few scenarios. Confirm everyone has read and understood it, and keep a record of acknowledgements (a simple signed or digital confirmation works).

Step 6: Make It Easy To Use Day-To-Day

• Keep the code accessible (in your intranet or onboarding portal).
• Embed it in your Staff Handbook and onboarding checklists.
• Refresh annually and after any major change in your business model or laws.

Step 7: Follow Through Consistently

Consistency is key. Investigate issues promptly, apply the same standards to everyone and document decisions. This helps you manage risk and demonstrate fairness if a dispute arises.

How A Code Of Conduct Fits With Your Legal Obligations

A code of conduct doesn’t replace the law - it helps you meet it in a practical way. Here are the core legal areas your code should support.

Australian Consumer Law (ACL)

The ACL regulates advertising, pricing, product safety and refunds. Your code should reinforce truthful marketing, transparent terms and fair complaint handling, especially for customer-facing roles.

Work Health And Safety (WHS)

All businesses must provide a safe workplace. Include behavioural expectations around safety, reporting hazards and following procedures - especially if you have field work, vehicles, machinery or late-night shifts.

Employment Law And Fair Work

Fair Work rules cover minimum entitlements, breaks, rosters and workplace behaviour. Your code should sit alongside your contracts and policies and support compliance in day-to-day decisions.

Privacy And Confidentiality

Most businesses handle personal information. Your code should direct staff to protect data and follow your Privacy Policy, including secure storage and only using data for legitimate business purposes.

Anti-Discrimination And Equal Opportunity

Make it clear your business provides equal opportunity and won’t tolerate discrimination or harassment. Include how to raise concerns and how they’ll be handled.

Company Directors And Officers

If you’re operating a company, directors have duties to act in the company’s best interests. Your code can set a culture of acting with integrity and managing conflicts from the top down.

Policies And Documents That Support Your Code

Your code works best when paired with short, targeted policies and clear contracts. Here are common documents small businesses rely on.

• Employment Contract: Sets role duties, confidentiality, IP ownership and behavioural standards tied to your code.
• Workplace Policy: Covers bullying and harassment, IT use, leave and grievance processes that your code points to.
• Privacy Policy: Explains how your business collects and protects personal data, with staff required to follow it.
• Whistleblower Policy: For eligible companies and not-for-profits, provides a framework for protected disclosures.
• Staff Handbook: Brings your code and key policies together for easy onboarding and day-to-day reference.
• Non-Disclosure Agreement: Protects confidential information when working with external consultants, suppliers or partners.

You don’t need every policy on day one, but make sure the documents you do have are consistent with your code so expectations are clear and enforceable.

Practical Examples To Bring Your Code To Life

Adding short examples under each heading makes the code easier to use. Here are a few sample scenarios you can adapt.

• Gifts: “A supplier offers you grand final tickets. Because this exceeds our $150 threshold, you must decline and tell your manager.”
• Social Media: “You can post about your workday, but don’t share customer details, internal screens or confidential projects.”
• Conflicts: “If a family member applies for a role, tell your manager and don’t join the hiring panel.”
• Customer Claims: “If a customer asks for a refund under the ACL, escalate to your team lead and follow our returns procedure.”
• Data: “Only download files to approved devices. If a laptop is lost, report it immediately so we can secure accounts.”

Common Mistakes (And How To Avoid Them)

We see a few patterns in small businesses that lead to confusion or disputes. Here’s how to steer clear.

• Too long and legalistic: Keep the code short and plain-language. Link to detailed policies for the deep dive.
• Unclear reporting: Explain exactly who to talk to, how to escalate, and how issues are handled - especially sensitive matters.
• Inconsistent follow-through: If standards aren’t applied consistently, trust suffers. Document outcomes and communicate them appropriately.
• No training: Launch the code with a short session and scenario-based refreshers each year.
• Not aligned with contracts: Ensure your code, policies and contracts don’t conflict, particularly around discipline and termination.
• Forgetting communications: Set expectations for tone and professional language in email, chat and calls to support lawful and respectful workplace communication.

Building Your Code Into Everyday Operations

To get the most value from your code, weave it into your normal business rhythms.

• Onboarding: Include it in checklists, induction slides and new starter forms.
• Performance: Tie values and behaviours to goals and feedback conversations.
• Vendors: Share your expectations with key suppliers and ask them to commit to similar standards.
• Reviews: Set a yearly reminder to update the code after any legal changes or incidents that revealed gaps.
• Visibility: Keep a copy in your staff portal and link it in your Staff Handbook and policies.

Key Takeaways

• A business code of conduct turns your values into clear, practical rules that support legal compliance and day-to-day decisions.
• Cover respectful workplaces, honest dealings under the ACL, privacy and data security, conflicts, gifts, social media, anti-bribery, confidentiality and reporting.
• Keep it short, plain-language and tailored to your risks, then align it with your Employment Contract and core policies.
• Launch the code with simple training, record acknowledgements, and apply it consistently to build trust and reduce risk.
• Pair the code with supporting documents like a Workplace Policy suite, Privacy Policy, Staff Handbook and, where relevant, a Whistleblower Policy.
• Review and refresh the code annually or after major changes so it stays useful and compliant.

If you’d like a consultation on drafting and implementing a business code of conduct for your small business, you can reach us at 1800 730 617 or team@sprintlaw.com.au for a free, no-obligations chat.