Straight answers about your personal obligations. No jargon. No retainer.
You carry full personal accountability for cyber and AI risk, the same accountability a director of a listed company carries, without any of the governance infrastructure they rely on. This session gives you exactly what you need: what you are legally required to know and do, where your specific exposure sits right now, and the five actions that matter most in the next 90 days. Delivered in writing within 48 hours of our session.
Strictly confidential. Fixed fee.
This session is designed for one type of client.
You are the sole director or founder of a business: you sit on the board alone or with a small informal group, and the personal liability is entirely yours.
Something has happened: a near-miss, a supplier breach, a client question about your data practices, and you realise you do not have a clear answer.
Your business is growing and you know governance needs to keep pace, but you want practical priorities, not a 40-page report you will never act on.
You know cyber and AI obligations should be on your radar but you have never had anyone explain what you are actually required to do.
This is a structured conversation, not a lecture. I work through four areas in sequence.
What you are specifically required to know and do as a director under Australian law: the Corporations Act, the Privacy Act, and any sector-specific obligations that apply to your business. Explained in plain English with no legal hedging.
Your top three exposure areas based on your actual technology stack, your vendor arrangements, your AI tool usage, and any incidents or near-misses. Specific to you, not a generic checklist.
The standard that applies to a director of a business your size is not enterprise-grade governance. I will tell you what is proportionate, practical, and achievable, and what would actually protect you in a regulatory investigation.
Five actions in priority order for the next 90 days. Each one is specific, sequenced, and achievable without outside technical help. You will leave the session knowing exactly where to start.
Following our session, I will deliver a written Personal Action Summary: a PDF of 3–5 pages, directly to you, under NDA.
Personal Obligation Summary: what you are specifically required to know and do under Australian law, referenced to your sector and your business.
Exposure Assessment: your top three areas of personal liability risk, explained with the regulatory provision that makes each one relevant.
Five Priority Actions: numbered, sequenced, and written so you can act on them without further advice.
Director Due Diligence Record: a template you can maintain as evidence that you sought independent advice and took action. In a post-incident investigation, this document matters.
What Good Enough Looks Like: a plain-English benchmark for governance proportionate to your business size, so you know when you have done enough.
Investment
Fixed fee. Scope and fee confirmed before any engagement begins. Enquire to receive a formal letter of engagement.
This is a paid professional advisory engagement, not a discovery call. It is conducted confidentially and the written output is yours to keep.
Book Your SessionOr email: hello@aradvice.com.au. All correspondence is treated as strictly confidential.