Alex is Sprintlaw's co-founder and principal lawyer. Alex previously worked at a top-tier firm as a lawyer specialising in technology and media contracts, and founded a digital agency which he sold in 2015.
Contents
- What Is A Code Of Conduct Policy (And Why Your Small Business Needs One)?
What Should A Code Of Conduct Policy Include?
- Values, Scope And Responsibilities
- Lawful, Respectful And Professional Behaviour
- Anti‑Discrimination, Bullying And Harassment
- Conflicts Of Interest, Gifts And Benefits
- Confidentiality And Privacy
- Use Of Company Resources, IT And Social Media
- Health, Safety And Wellbeing
- Alcohol, Drugs And Impairment
- Reporting Concerns And Whistleblowing
- Breaches And Consequences
- Link To Other Policies
Step‑By‑Step: How To Create And Implement Your Code Of Conduct
- 1) Map Your Risks And Align With Your Values
- 2) Decide On Format: Template Or Tailored Policy
- 3) Draft In Plain English (And Keep It Short)
- 4) Consult, Approve And Version‑Control
- 5) Connect The Code To Your Contracts And Onboarding
- 6) Train, Communicate And Reinforce
- 7) Enforce Consistently And Review Annually
- Connecting Your Code To Other Workplace Policies And Contracts
- Free Code Of Conduct Policy Template: What It Covers (And When To Get Legal Help)
- Key Takeaways
A clear, practical Code of Conduct sets the tone for how your team behaves at work. It protects your people, your customers, and your brand, and it gives managers a consistent playbook when tricky situations arise.
If you’re growing a small business in Australia, a simple one-page “dos and don’ts” usually isn’t enough. You’ll want a concise, plain‑English policy that’s legally sound, easy to train on, and backed by the right supporting documents.
In this guide, we’ll explain what a good Code of Conduct looks like, the key clauses to include, how to implement it step‑by‑step, and how it connects with other essential policies and contracts. We’ll also share when a template is useful and when a tailored policy is the safer bet.
What Is A Code Of Conduct Policy (And Why Your Small Business Needs One)?
A Code of Conduct is a core workplace policy that sets expectations for professional, ethical and lawful behaviour. It applies to employees and, if you choose, contractors, volunteers and other representatives of your business.
Think of it as your behavioural “North Star.” It’s the policy your team can rely on when they’re not sure how to act, and the one managers can reference to prevent or address issues early.
Even in a small team, a Code of Conduct helps to:
- Set consistent behavioural standards across locations and roles.
- Support compliance with Australian laws (e.g. anti‑discrimination and health and safety).
- Reduce disputes by stating expectations upfront and explaining consequences.
- Show your values to clients and partners in a concrete way.
Many businesses include their Code of Conduct within a broader Workplace Policy framework or compile it as part of a staff handbook, so it sits alongside related policies like bullying and harassment, IT use and privacy.
What Should A Code Of Conduct Policy Include?
Your Code doesn’t need to be long. Aim for clear headings, short paragraphs and examples where helpful. The following clauses are commonly included and work well for small businesses in Australia.
Values, Scope And Responsibilities
- Who it applies to: employees, contractors, volunteers, interns and representatives acting on your behalf.
- Where it applies: at work, work‑related events, online channels and social media associated with your business.
- Your values: a short statement linking behaviour to your business values and culture.
Lawful, Respectful And Professional Behaviour
- Follow the law and company policies at all times.
- Treat colleagues, customers and suppliers with respect and courtesy.
- Prohibit bullying, harassment, discrimination and victimisation.
- Outline expectations around punctuality, attendance and dress (if relevant).
Anti‑Discrimination, Bullying And Harassment
State zero tolerance for unlawful discrimination and inappropriate conduct, and reference reporting channels and investigation processes. This ties directly to your obligations under employment and equal opportunity laws, and should align with your managers’ training.
Conflicts Of Interest, Gifts And Benefits
- Declare and manage any personal interests that could influence work decisions.
- Set a threshold or approval process for gifts, hospitality and entertainment.
- Prohibit bribes or improper payments.
Confidentiality And Privacy
Require staff to protect confidential information, respect client privacy and follow your Privacy Policy. Include simple rules about access, storage and sharing, and what to do if information is accidentally disclosed.
Use Of Company Resources, IT And Social Media
Explain acceptable use of devices, networks, email, messaging tools and social media. Many businesses pair the Code with a more detailed Acceptable Use Policy so expectations are crystal clear, especially around security, downloads and personal use.
Health, Safety And Wellbeing
Confirm your commitment to a safe workplace and state that employees must follow safety procedures, use equipment properly and report hazards or incidents promptly. Include a reminder about fatigue, safe driving (if relevant) and respectful behaviour at work events.
Alcohol, Drugs And Impairment
Outline your rules for alcohol at work events, substance use, prescribed medication and being fit for duty. If you conduct testing, reference a separate policy so the approach is transparent and consistent.
Reporting Concerns And Whistleblowing
Explain how to raise concerns in good faith, who to contact, and that retaliation is prohibited. If your business needs or chooses to support protected disclosures, point to your dedicated Whistleblower Policy.
Breaches And Consequences
State that breaches may lead to management action, up to and including disciplinary action or termination in line with the relevant Employment Contract. Note that serious misconduct may be referred to authorities where required.
Link To Other Policies
Finish with a short list of related policies (e.g. privacy, bullying and harassment, IT, leave, grievance) and where staff can access them. This makes it easier for your team to find more detail when they need it.
Step‑By‑Step: How To Create And Implement Your Code Of Conduct
Here’s a practical, small‑business‑friendly way to get from a blank page to a live policy your team actually uses.
1) Map Your Risks And Align With Your Values
List the situations most likely to arise in your business: client interactions, handling customer data, social media engagement, use of vehicles, cash handling, remote work, on‑site safety, alcohol at events, and so on.
Then decide the few behaviours you want to strongly encourage (and discourage). This keeps your Code focused on the real world your team operates in.
2) Decide On Format: Template Or Tailored Policy
Templates are great for speed and structure. Tailored policies reduce ambiguity and fit your operations perfectly. If you’re consolidating multiple rules, consider building the Code as part of a broader Staff Handbook or a single, clear Workplace Policy set that’s easy to update.
3) Draft In Plain English (And Keep It Short)
Use simple headings, one or two short sentences per point, and practical examples. Avoid legal jargon-your team should be able to read it once and “get it.”
4) Consult, Approve And Version‑Control
Ask managers and a couple of frontline staff to sanity‑check the draft. Confirm leadership sign‑off, add a version number/date and store the policy where everyone can access it.
5) Connect The Code To Your Contracts And Onboarding
Make sure it aligns with each Employment Contract and is referenced in your onboarding checklist. New starters should acknowledge the Code (and any related policies) in writing as part of induction.
6) Train, Communicate And Reinforce
Run a short training session or toolbox talk. Share practical examples of “what good looks like.” Managers should regularly reinforce key points during team meetings and 1:1s.
7) Enforce Consistently And Review Annually
Apply the Code fairly and consistently across the business. Keep a short record of training, acknowledgements and any actions taken. Review the policy annually or whenever there’s a material change in your operations or the law.
Legal Considerations In Australia
Your Code doesn’t replace the law-it supports compliance. Here are the key areas to keep in mind.
Fair Work And Employment Obligations
Employment in Australia is governed by the Fair Work system, which sets minimum standards for pay, leave, and workplace rights. Your Code should be consistent with those obligations and with any applicable awards or enterprise agreements. It also needs to align with your disciplinary processes and the terms in each Employment Contract.
Discrimination, Bullying And Harassment
Federal and state laws prohibit unlawful discrimination and harassment. Your policy should prohibit this conduct outright, explain how to report issues, and state that complaints will be handled promptly and fairly. Training managers on respectful conduct and complaint handling is important to bring the policy to life.
Privacy And Surveillance
If your business collects or uses personal information, ensure your Code refers to how staff should handle it in line with your Privacy Policy. If you monitor communications or devices, make sure any monitoring is lawful in your state or territory and that staff have been informed through your broader policy suite.
Work Health And Safety (WHS)
PCBU (Person Conducting a Business or Undertaking) duties under WHS laws require you to provide a safe workplace. The Code should reinforce safe behaviours and reporting, and point to your WHS procedures.
Industry‑Specific Rules
Some industries have additional conduct requirements (e.g. financial services, healthcare, child‑related work). Where relevant, reference those obligations and link to detailed procedures your team must follow.
Whistleblower Protections
Some companies are legally required to have a Whistleblower program, and others choose to adopt one to encourage speaking up. If that’s you, point staff to your Whistleblower Policy so they know how protected disclosures work.
Connecting Your Code To Other Workplace Policies And Contracts
A Code of Conduct works best when it’s supported by clear, focused policies on specific topics. Consider how the following documents fit together in your business.
- Workplace Policy: the umbrella set of policies that cover behaviour, complaints, leave, performance and more.
- Employment Contract: sets role‑specific obligations, hours, confidentiality, IP ownership, and the process for performance management and termination.
- Privacy Policy: explains how personal information is collected, used, disclosed and secured-critical if your team handles customer data.
- Acceptable Use Policy: details how staff may use devices, networks, email, messaging and cloud tools, and what is prohibited.
- Generative AI Use Policy: sets rules for using AI tools safely, including confidentiality, accuracy checks and bias considerations.
- Whistleblower Policy: encourages reporting serious misconduct and protects eligible disclosures from detriment.
- Staff Handbook: a practical bundle that brings your Code and key policies together in one place for easy onboarding and training.
You don’t need every policy on day one. Start with the essentials and build out your policy suite as your team and risk profile grow.
Free Code Of Conduct Policy Template: What It Covers (And When To Get Legal Help)
Many free templates will cover the basics-respectful behaviour, following the law, confidentiality, and reporting. They’re a useful starting point, especially if you’re drafting your first policy and want to get the structure right.
However, generic templates often fall short when it comes to:
- Industry‑specific risks (e.g. handling sensitive health data, site safety, cash handling, client visits in private homes).
- State‑based legal nuances (e.g. surveillance and recording rules can vary by state and territory).
- Alignment with your systems (e.g. your communication tools, device management, social media channels, and approval workflows).
- Consistency with your contracts and other policies (e.g. referencing the right clauses in each Employment Contract and cross‑linking to your Acceptable Use Policy and Privacy Policy).
If your team is growing, you’re handling sensitive data, or you’ve had a few behavioural issues in the past, a tailored policy is well worth it. A short, made‑for‑you Code will be easier to enforce, easier to train on, and more likely to hold up if challenged.
A good approach is to use a template to draft your first version, then have it reviewed and aligned with your broader Workplace Policy framework so everything works together seamlessly.
Key Takeaways
- A Code of Conduct sets clear behavioural expectations and supports legal compliance across your team.
- Keep it concise and practical: scope, respectful conduct, confidentiality, conflicts, IT use, safety, reporting and consequences.
- Implement it like a project-draft in plain English, consult, connect it to onboarding, train, and review annually.
- Make sure it aligns with your supporting documents, including each Employment Contract, your Privacy Policy and your Acceptable Use Policy.
- Templates are a helpful starting point, but tailoring the policy to your industry and state rules will reduce risk and improve adoption.
- Bringing your Code together with a broader Staff Handbook makes training and enforcement simpler as you grow.
If you’d like a consultation on drafting or updating a Code of Conduct for your business, you can reach us at 1800 730 617 or team@sprintlaw.com.au for a free, no‑obligations chat.
