Industry Code of Practice: Meaning and Compliance in Australia

If you’re running a small business in Australia, chances are there’s an industry code of practice that affects how you market, sell, handle customer data, or even how you run your day-to-day operations.

Some codes are mandatory and carry penalties if you don’t comply. Others are voluntary but powerful trust signals that can help you win and retain customers.

Either way, it’s worth getting across what “industry code of practice” actually means for your business so you can embed the right processes, avoid costly mistakes, and build a stronger brand.

In this guide, we’ll break down what codes of practice are, how to find which ones apply, what compliance looks like in practice, and the legal documents that typically support compliance for small businesses in Australia.

What Is An Industry Code Of Practice?

An industry code of practice is a set of rules or standards that businesses in a certain sector agree to follow. The aim is to lift conduct across the industry-things like how you advertise, treat customers, handle complaints, manage safety risks, or share information.

In Australia, there are two broad types of industry codes:

• Mandatory codes: These are legally enforceable. They’re prescribed by regulation and often enforced by a regulator (for example, the Australian Competition and Consumer Commission, or state/territory work health and safety regulators). Breaches can lead to penalties, court action and enforceable undertakings.
• Voluntary codes: These are developed by industry bodies. Members agree to comply as a condition of membership or certification. They’re not laws, but can be contractually binding and are often used by regulators and courts as a benchmark for “good practice”.

There are also approved codes of practice under work health and safety (WHS) laws. These are practical guides for achieving the standards required by the WHS legislation. While not strictly mandatory in all cases, they’re highly persuasive-if you follow an approved WHS code, you’re generally deemed to be doing the right thing. If you choose a different way, you must achieve an equivalent or better standard.

Common examples include the Franchising Code of Conduct (mandatory under the Competition and Consumer Act), WHS codes for manual handling or hazard management, and sector-specific voluntary codes for advertising, telemarketing, and digital marketing.

Do I Have To Follow An Industry Code Of Practice?

It depends on your sector and the code’s status.

• If a code is mandatory: Yes-you must comply. A well-known example is the Franchising Code of Conduct. Other mandated codes (in various sectors) may set rules around contracts, disclosure, dispute resolution and conduct standards.
• If it’s a WHS approved code: You’re not strictly required to follow the code, but you must meet the underlying legal standard. Following the code is a safe way to show you’ve met your obligations.
• If it’s a voluntary industry code: It’s not a law-however, membership or certification might require compliance. Also, a voluntary code can become binding if your contracts, tenders or platform rules say you must follow it.

Here’s another important point. Even if you’re not expressly covered by a code, you still need to comply with general laws like the Australian Consumer Law (ACL), privacy rules and fair work requirements. Many industry codes simply translate these general legal obligations into practical checklists for your sector.

For instance, a code might spell out how to avoid misleading claims under the ACL or how to structure refunds. If you sell to consumers, understanding misleading or deceptive conduct (section 18) is essential regardless of any code.

How Do I Find Which Codes Apply To My Business?

Finding the right code is mostly about checking a few reliable sources and mapping them against your actual activities (not just your industry label). Work through these steps:

1. Identify what you actually do. List your core activities-selling goods/services to consumers or B2B, franchising or licensing, telemarketing, online advertising, handling customer data, WHS risk areas, etc. Codes typically attach to these activities.
2. Check regulators and government portals. Start with the ACCC for mandatory industry codes and the Fair Trading/Consumer Affairs site in your state. For WHS, check Safe Work Australia and your state work health and safety regulator for approved codes.
3. Review your memberships and contracts. Industry associations often have voluntary codes. Large customers, marketplaces and suppliers sometimes require you to comply with specific codes as part of their onboarding or vendor terms.
4. Scan your marketing channels. If you do email or SMS marketing, there may be platform rules and advertising codes that set standards for consent and transparency in addition to privacy law.

If you’re unsure whether a code applies or how it interacts with your legal obligations, it’s wise to get tailored advice-especially before signing supplier or platform terms that bake a code into your contract.

What Does Compliance Look Like In Practice?

Codes vary, but most focus on a few common themes. Translating them into day-to-day operations usually involves policies, training, documentation and fair processes.

Customer Communications And Advertising

Expect requirements around clear pricing, avoiding misleading statements, using disclaimers properly, fair cancellation terms and transparent promotions.

These areas overlap with the ACL. Many businesses create internal sign-off processes for campaigns and make sure their online store has up-to-date Website Terms and Conditions that match the way they actually sell.

Warranties, Refunds And Product Issues

Codes often reinforce your ACL obligations on consumer guarantees, repairs and refunds. Where relevant, have a compliant Warranties Against Defects Policy and a simple, documented process for handling returns and complaints.

Privacy, Data And Direct Marketing

If a code touches marketing and data practices, you’ll usually need a clear legal basis for collecting personal information, straightforward opt-outs, and accessible privacy information.

Publish a compliant Privacy Policy, map your data flows, and align your systems so that opt-outs and access requests are easy to action. If you do email campaigns, also check any email marketing rules that your industry code references.

Complaints Handling And Dispute Resolution

Many codes require a robust complaints process-clear channels for customers to raise issues, response timeframes, escalation steps and fair outcomes. Keep records of complaints and resolutions so you can demonstrate compliance if ever reviewed.

Work Health And Safety (WHS)

Approved WHS codes of practice provide practical guidance on risk management, hazard controls and training. Build these processes into your everyday operations and keep records of inductions, toolbox talks and incident responses.

Training And Record-Keeping

Codes routinely expect you to train staff on relevant rules and keep evidence-training logs, policy acknowledgements, incident registers, and audit trails. If you hire staff, make sure your Employment Contract and policies reinforce code requirements (for example, complaint handling or marketing sign-off rules).

Step-By-Step: How To Embed A Code Of Practice In Your Small Business

You don’t need a big legal team to do this well. Use a practical, staged approach and focus on the areas that will make the biggest difference to your risk and customer trust.

1) Map The Rules To Your Business Activities

• List each code requirement and note which teams or processes it affects (sales scripts, website, refunds, data collection, WHS procedures, etc.).
• Note whether the requirement is legal (mandatory), contractual (required by a partner/platform) or voluntary (best practice/brand value).

2) Close The Gaps With Clear Policies And Templates

• Update your customer-facing terms, refunds process, privacy notices and sales scripts to reflect the code.
• Internally, formalise responsibilities in a simple compliance calendar and assign owners for key tasks (e.g. quarterly website review, monthly WHS inspection).

3) Align Your Contracts

• Review supplier and partner contracts for clauses that reference codes of practice and confirm your obligations (record-keeping, audits, reporting).
• Where appropriate, mirror those obligations in your downstream contracts to keep everyone aligned.

4) Train Your Team And Set Approval Gates

• Run short, practical training for front-line staff on sales claims, refunds, privacy and complaints handling.
• Introduce approval gates-for example, legal/manager sign-off for promotional campaigns or high-risk safety tasks-so issues are caught early.

5) Monitor, Record And Improve

• Keep simple records (training logs, complaint registers, incident reports) so you can show how you comply.
• Schedule periodic spot-checks (e.g. mystery shop your own website for clarity of pricing or unsubscribe friction).

6) Plan For Issues

• Have a clear complaints resolution pathway and an escalation plan for serious issues.
• If your sector expects a whistleblowing pathway, consider a practical Whistleblower Policy and an external reporting option.

Which Legal Documents Help You Comply?

Here are common documents that support code compliance for small businesses. You won’t need every one of these, but most businesses need several.

• Customer Terms (online or offline): Clear, fair terms reduce disputes and help you honour code requirements around pricing, refunds, delivery and customer rights. For websites, keep your Website Terms and Conditions current and consistent with your operations.
• Privacy Policy: Explains what personal information you collect, why, and how customers can access or correct it. A well-drafted Privacy Policy is central to any code that touches data or marketing practices.
• Complaints Handling Procedure: A practical, internal guide for receiving, acknowledging, investigating and resolving complaints within required timeframes (and for recording outcomes).
• Refunds/Returns Policy: Aligned with the ACL and any code specifics. Where appropriate, add a compliant Warranties Against Defects Policy.
• Employment Contract and Workplace Policies: Your Employment Contract and workplace policies (e.g. marketing approvals, WHS procedures, customer service standards) set expectations and help you meet training and conduct requirements.
• Supplier and Partner Agreements: Flow down any code obligations you carry (for example, service levels, safety standards, audit rights) so your supply chain supports your compliance.
• Compliance Register and Training Logs: Simple templates to track training, incidents, audits and corrective actions-handy evidence if a regulator or auditor asks how you comply.

If you’re unsure which documents you actually need, a short consultation focused on the Australian Consumer Law and your sector’s code can save you time and rework. Many businesses benefit from a quick gap analysis and targeted updates to core documents via an ACL review.

How Do Codes Interact With Other Australian Laws?

Think of an industry code as a practical overlay on top of your baseline legal obligations. You should still keep the big picture in mind:

• Australian Consumer Law (ACL): Governs fair trading, refunds, warranties, unfair contract terms and misleading or deceptive conduct. Codes often expand on these rules and recommend clearer processes or disclosures.
• Privacy: If you collect personal information, you’ll need transparent notices and a working process for access and complaints. A public-facing Privacy Policy is standard.
• Employment and WHS: Codes often assume you have lawful employment arrangements and safe systems of work. Align your policies, training and supervision with WHS codes of practice where relevant.
• Sector-Specific Licensing: In some industries, licences or permits are linked to compliance with codes or standards. If you expand or change services, re-check whether new obligations kick in.

A helpful way to manage this is to anchor your compliance framework in law (ACL, WHS, privacy, employment), then overlay the code’s specific rules. This avoids duplication and ensures your efforts are aligned with enforceable obligations first.

FAQs: Common Questions Small Businesses Ask

Are Voluntary Codes Worth It If They’re Not Law?

Often, yes. Voluntary codes can boost credibility, reduce complaints, and give you a practical checklist for good conduct. Some customers and platforms prefer (or require) suppliers who are members of a scheme or certified to a code. If compliance overlaps with your legal obligations anyway, the extra effort can be relatively small for a big trust dividend.

How Are Codes Enforced?

For mandatory codes, a regulator (such as the ACCC) can investigate and take action. For voluntary codes, enforcement usually occurs through the administering body (e.g. investigations, naming non-compliant members, suspending certification) and through contract-breaches can amount to a breach of your membership or supplier agreement. Courts and regulators may also use voluntary codes as evidence of what “good practice” looks like.

What’s The Difference Between A Code, A Standard And A Guideline?

• Code of practice: Practical rules developed for a sector. May be mandatory or voluntary.
• Standard: A technical or quality benchmark (e.g. Australian Standards). Sometimes referenced by law or code.
• Guideline: Advice or best-practice material. Not binding unless incorporated into a contract or regulation.

Do I Need Legal Help To Implement A Code?

You can tackle much of the operational work internally (training, record-keeping, process tweaks). That said, it’s smart to get legal input on your customer terms, privacy settings, refunds processes and advertising claims to make sure they align with both the code and the ACL. A targeted review-focused on high-risk areas-often delivers strong ROI.

Key Takeaways

• An industry code of practice sets conduct standards for your sector-some are mandatory (with penalties), others are voluntary but still influential.
• Map codes to your actual activities (sales, advertising, privacy, WHS, complaints). Your obligations depend on what you do, not just your industry label.
• Practical compliance usually means clear customer terms, transparent advertising, a working privacy framework, fair refunds and a robust complaints process.
• Support compliance with strong documents: Website Terms and Conditions, Privacy Policy, refunds and complaints procedures, Employment Contracts and targeted workplace policies.
• Use a staged approach: gap analysis, update documents, train teams, set approval gates, keep records and plan for issues.
• Codes sit on top of core laws like the Australian Consumer Law, privacy rules and WHS-align your framework to the law first, then layer in the code specifics.

If you’d like a consultation on implementing an industry code of practice in your small business, you can reach us at 1800 730 617 or team@sprintlaw.com.au for a free, no-obligations chat.