Alex is Sprintlaw's co-founder and principal lawyer. Alex previously worked at a top-tier firm as a lawyer specialising in technology and media contracts, and founded a digital agency which he sold in 2015.
Contents
- What Is A Code Of Conduct?
What Should A Code Of Conduct Include?
- 1. Values And General Behaviour Standards
- 2. Workplace Safety Expectations
- 3. Confidentiality And Protecting Business Information
- 4. Conflicts Of Interest
- 5. Use Of Company Property, Systems, And Social Media
- 6. Customer Interactions And Service Standards (If Relevant)
- 7. Reporting Issues And Whistleblowing (Scaled To Your Business)
How Do You Implement And Enforce A Code Of Conduct?
- Step 1: Tailor The Code To Your Business (Don’t Copy-Paste)
- Step 2: Connect It To Your Employment And Contractor Arrangements
- Step 3: Train Your Team (Even Briefly)
- Step 4: Get Written Acknowledgement
- Step 5: Apply It Consistently (Including To Leadership)
- Step 6: Have A Fair Process For Complaints And Investigations
- Key Takeaways
If you’re building a small business or startup, you’re probably juggling a lot at once - hiring, customers, growth, cash flow, and a never-ending list of admin. In the middle of all that, “policies” can feel like something you’ll get to later.
But when it comes to workplace behaviour, “later” can get expensive quickly.
A well-written code of conduct gives your team clear expectations, helps you manage issues consistently, and supports a culture that can scale as your business grows. It can also help reduce the risk of disputes - but only if it’s tailored to your business and applied in practice.
In this guide, we’ll break down what a code of conduct is, why it matters for small businesses, what to include, and how to roll it out in a practical way (without turning your startup into a corporate bureaucracy).
Note: This article provides general information for Australian businesses and isn’t legal advice. If you want advice about your specific situation, it’s best to get tailored legal guidance.
What Is A Code Of Conduct?
So, what is a code of conduct? In simple terms, a code of conduct is a written document that sets out the standards of behaviour you expect from people working in (or representing) your business.
If you’re looking for a code of conduct definition you can use internally, try this:
- A code of conduct is a set of rules and principles that guide how workers, contractors, and representatives should act at work and when dealing with customers, suppliers, and each other.
It often covers things like:
- respectful behaviour and anti-bullying expectations
- conflicts of interest
- confidentiality and data handling
- use of company property, systems, and social media
- workplace safety expectations
- reporting misconduct and how complaints are handled
Importantly, codes of conduct aren’t only for big companies. In fact, in smaller teams, issues can become personal faster - and a clear, neutral written standard can help you respond calmly and consistently.
Also, a code of conduct doesn’t have to be long. For many small businesses, a focused document that covers the key risks and culture expectations is far more effective than a 40-page manual no one reads.
Why Small Businesses And Startups Need A Code Of Conduct
When you’re just starting out, it’s easy to rely on informal culture - “we’re all adults”, “we’re a close-knit team”, “we’ll sort it out if something happens”. The challenge is that once there’s a problem, it’s much harder to define what “acceptable” should have looked like.
Here are practical reasons a code of conduct helps protect your business.
It Sets Clear Expectations (Before Problems Happen)
Most workplace issues aren’t caused by “bad” people. They’re caused by unclear expectations, stress, poor communication, or different assumptions about what’s acceptable.
A code of conduct helps you spell out standards upfront - especially around behaviour that can easily be misunderstood (like jokes, after-hours messaging, or social media comments).
It Supports Fair And Consistent Decision-Making
If you ever need to manage misconduct or performance issues, consistency matters. A code of conduct gives you a reference point when you’re making decisions, having difficult conversations, or documenting why you took certain steps.
This is particularly important when you have multiple managers or you’re growing quickly and onboarding new staff regularly.
It Helps Reduce Legal And Commercial Risk
A strong code of conduct can help reduce the risk of:
- workplace bullying and harassment claims
- privacy and confidentiality breaches
- customer disputes (for example, poor behaviour by staff dealing with customers)
- reputational damage (including online conduct)
- internal disputes between founders, managers, or team members
While a code of conduct won’t prevent every issue or guarantee a particular legal outcome, it can be an important part of your overall risk management approach - especially when it’s properly communicated, supported by training, and enforced consistently.
It Makes It Easier To Build Culture As You Scale
In a small team, culture can be “felt” - but as you hire more people, culture needs to be written down. A code of conduct helps you communicate:
- what your business stands for
- how people should treat each other
- how decisions and disagreements should be handled
This is especially useful for startups with remote teams, contractors, or flexible working arrangements, where informal cues are easier to miss.
What Should A Code Of Conduct Include?
If you’re wondering what codes of conduct are supposed to contain, the best answer is: the content should match your actual business risks.
A café with casual staff will focus on customer interactions, roster behaviour, and workplace safety. A SaaS startup might focus more on confidentiality, data security, and conflicts of interest. A professional services business might need strong conduct expectations around client communications and professional boundaries.
Below are common sections we recommend considering. You don’t need all of them - but most small businesses will need many.
1. Values And General Behaviour Standards
Start with a simple section on the “tone” of your workplace. This can include expectations like:
- treating others respectfully
- communicating professionally
- no bullying, harassment, discrimination, or victimisation
- following reasonable directions
This is where you translate your culture into practical behaviours.
2. Workplace Safety Expectations
Your code of conduct can reinforce that everyone has responsibilities around safety - for example:
- following safety procedures
- reporting hazards and incidents
- not attending work under the influence of drugs or alcohol
Even if you have separate WHS processes, including safety expectations in your code keeps it front-of-mind.
3. Confidentiality And Protecting Business Information
Small businesses often rely heavily on relationships, processes, pricing, and know-how. Your code of conduct can remind staff and contractors that confidential information must be protected.
This may cover:
- customer lists and supplier terms
- internal financials
- product roadmaps and technical documentation
- internal discussions (including in Slack, Teams, or email)
If your business collects personal information, this connects closely with your Privacy Policy and any internal data-handling rules.
4. Conflicts Of Interest
A conflict of interest is where someone’s personal interests could interfere with their duties to your business.
For example:
- a team member also working for a competitor
- a staff member awarding contracts to a supplier they’re related to
- someone using your resources to run their own side business
Your code of conduct can require conflicts to be disclosed and managed, rather than “found out” later.
5. Use Of Company Property, Systems, And Social Media
This section is particularly important if you provide devices, software accounts, vehicles, payment cards, or access to customer data.
It can cover:
- appropriate use of email, messaging platforms, and devices
- cyber security basics (passwords, MFA, device security)
- social media conduct when representing the business
- not recording meetings/calls without proper authority (where relevant)
On that last point, recording rules differ depending on where you are and what’s being recorded. If your code of conduct touches on recording conversations, it helps to align it with the relevant recording laws and your internal processes.
6. Customer Interactions And Service Standards (If Relevant)
If your team deals with customers (in person, over the phone, or online), your code of conduct can set expectations around:
- professional behaviour and respectful communication
- not making promises the business can’t keep
- handling complaints appropriately
- de-escalation and safety in challenging situations
Some businesses also include a short reference point for when staff can refuse service (for example, abusive behaviour). If this is relevant to your operations, you can align your standards with practical guidance on the right to refuse service.
7. Reporting Issues And Whistleblowing (Scaled To Your Business)
Your code of conduct should explain how someone can raise an issue safely. For a small business, this can be as simple as:
- who to speak to (manager, owner, or a specific contact person)
- an option to raise issues in writing
- a statement that retaliation isn’t acceptable
- what happens after a report is made (at a high level)
The goal is to create a pathway for problems to be raised early - before they become unmanageable.
How Do You Implement And Enforce A Code Of Conduct?
Writing the document is only half the job. A code of conduct is most effective when your team understands it, your managers apply it consistently, and your business has a fair process for responding to issues.
Here’s a practical rollout approach that works well for small teams.
Step 1: Tailor The Code To Your Business (Don’t Copy-Paste)
Templates can be a useful starting point, but copying a generic “corporate” code of conduct often creates problems, including:
- rules that don’t match how you actually operate
- obligations you can’t realistically enforce
- missing key risks specific to your industry
It’s better to have a shorter, tailored code than a long document that doesn’t reflect your workplace.
Step 2: Connect It To Your Employment And Contractor Arrangements
Your code of conduct should sit within your broader legal framework, including your Employment Contract (and contractor agreements, where applicable).
This matters because it helps you clearly state that complying with workplace policies is part of the role, and that breaches may lead to disciplinary action.
Step 3: Train Your Team (Even Briefly)
For startups and small businesses, training doesn’t need to be complicated. It can be:
- a 20-30 minute onboarding walkthrough
- a short slide deck with key scenarios relevant to your business
- a manager-led discussion at a team meeting
What matters is that everyone understands the expectations and knows where to ask questions.
Step 4: Get Written Acknowledgement
Consider asking staff to acknowledge (in writing) that they have read and understood the code of conduct. This can be done through onboarding paperwork or an internal HR platform.
It’s a practical step that can help later if there’s a dispute about whether someone knew the rules.
Step 5: Apply It Consistently (Including To Leadership)
One of the fastest ways for a code of conduct to lose credibility is if it’s only enforced “downwards”. If senior staff, founders, or managers ignore the rules, everyone else will too.
Consistent enforcement also reduces the risk of claims that someone was treated unfairly compared to others.
Step 6: Have A Fair Process For Complaints And Investigations
When misconduct is reported, you generally want a process that is:
- confidential (as much as possible)
- procedurally fair (the person has a chance to respond)
- documented (notes, outcomes, and reasoning)
- proportionate (response matches the severity)
This doesn’t mean every issue needs a formal investigation, but serious allegations should be handled carefully.
How Does A Code Of Conduct Fit With Other Workplace Policies And Legal Documents?
A code of conduct is usually not a standalone document. It works best as part of a wider policy and contract set that supports your business as it grows.
Here’s how it typically fits together.
Employment Contracts
Your Employment Contract sets the legal foundation of the employment relationship - pay, duties, hours, confidentiality, termination, and key conditions.
Your code of conduct usually sits “under” the employment contract as a policy document that sets day-to-day behaviour expectations.
Workplace Policies (Including Specific Policies For Higher-Risk Areas)
Many businesses pair a code of conduct with separate policies on specific topics, such as:
- bullying and harassment
- social media use
- IT and acceptable use
- privacy and data security
- performance management and disciplinary processes
Depending on your team size and risk profile, you might keep these as separate documents or combine them. Either way, it’s worth ensuring your code of conduct aligns with your Workplace Policy approach generally.
Staff Handbooks
If you’re starting to grow (or you’re hiring regularly), a handbook can be a practical way to keep policies, leave processes, and expectations in one place.
For many startups, a code of conduct becomes a core part of a wider Staff Handbook, so team members have a single “source of truth”.
Privacy And Customer-Facing Documents
If your code of conduct covers handling customer data, marketing lists, CCTV, or internal access to customer accounts, it should match what you tell customers externally.
That usually means ensuring consistency with your Privacy Policy and any other customer terms.
For example, if you say in your Privacy Policy that access to personal information is restricted, your code of conduct should reinforce that staff must only access data needed to do their job (and not “browse” customer details).
Key Takeaways
- What is a code of conduct? It’s a written set of rules and standards that guide behaviour in your workplace and when representing your business.
- A code of conduct helps small businesses and startups set expectations early, manage issues consistently, and protect culture as the team grows.
- Most codes of conduct cover respectful behaviour, workplace safety, confidentiality, conflicts of interest, use of company systems, and how to report issues.
- Your code of conduct should be tailored to your actual business risks - shorter and relevant is usually better than long and generic.
- Implementation matters: training, written acknowledgement, consistent enforcement, and fair complaint handling are key to making it work in practice.
- A code of conduct works best when aligned with your Employment Contract and broader workplace policies and handbooks.
If you’d like help putting a code of conduct in place (or reviewing whether your current policies match how your business operates), you can reach us at 1800 730 617 or team@sprintlaw.com.au for a free, no-obligations chat.
