About Us

We work collaboratively with our clients to build strong, sustainable relationships. Our team is committed to delivering consistent high standards of service, and we understand the importance of accessibility. Working with us, you'll enjoy open communication, meaning well scoped, properly resourced and effectively managed matters.

Learn More

Latest Case

Advising on complex water infrastructure projects for local government September 12, 2018

Parkes Shire Council made the decision to replace its 80-year-old water treatment facility as it was nearing its capacity to properly service residents. The Parkes Integrated Water Infrastructure Renewal Program saw the replacement of the … Continued

Latest News

Maddocks advises French firm on major construction company acquisition August 6, 2018

Monday 6 August 2018 Law firm Maddocks recently advised French firm Bouygues Construction on its acquisition of leading Australian construction and fitout business AW Edwards. The acquisition is a key part of Bouygues’ continued expansion … Continued

Latest Article

New Federal Court decision calls into question relevance of internal legal advice to AAT reviews September 18, 2018

On 3 August 2018, Justice Bromwich of the Federal Court handed down his decision in Commissioner of Taxation v ACN 154 520 199 Pty Ltd (in liq) (formerly EBS & Associates Pty Ltd) [2018] FCA … Continued

Cyber and Data Resilience

The concept of ‘cyber resilience’ is one that recognises the need for any organisation to plan, be prepared for and recover quickly from a data breach or malicious cyber attack, whatever the cause, source or motive.

Cyber and Data Resilience is not just an IT issue but affects almost all aspects of an organisation’s activities. Accordingly, the Maddocks Cyber and Data Resilience team advises clients on all aspects of the cyber resilience life cycle.

Our aim is to work with our clients to ensure they are Cyber and Data Resilient, whilst being prepared to effectively respond to an attack. We take a ‘whole of business’ approach, working collaboratively with key stakeholders across business units and helping to embed a high privacy culture within an organisation.

We regularly advise on:

  • regulatory compliance under applicable legislation including the Corporations Act, the Privacy Acts and the Australian Consumer Law. We also assist in understanding how guidance issued by regulators such as Australian Securities and Investments Commission, the Office of the Australian Information Commissioner and the Australian Prudential Regulation Authority give further content to the legislation, including guidance specific to particular industry sectors
  • information audits and identifying applicable cyber and information security standards and risk assessment frameworks, including the Australian Signals Directorate’s ‘Essential Eight’, the National Institute of Standards and Technology’s ‘Cyber Security Framework’, the ISO/IEC 27000 series standards and security controls and the Payment Card Industry Data Security Standard
  • all facets of cyber-related ICT procurement, including ensuring that the right questions are asked in the approach-to-market phase, vetting supply chains for risk issues, undertaking due diligence on corporate structures and the potential for changes of ownership or control, and drafting and negotiating cloud services agreements
  • internal policies and procedures and ensuring they are up to date. For example, we can prepare data breach notification plans to assist your organisation to comply with the mandatory data breach laws
  • development, co-design and/or roll out of education and training materials for your organisation’s staff and key stakeholders in areas such as privacy compliance, cyber and data security legal framework, IT procurement and cloud computing contracting.

Our lawyers take a keen interest in staying at the forefront of Australian government policy and international developments in cyber security, as well as approaches to cyber governance and regulation in South East Asia and the broader Asia-Pacific region.

Our team includes experts in communications, technology, employment, corporate advisory, dispute resolution and public law.

We regularly write about cyber and data resilience issues on our TechKnowChat blog.

See also our Technology sector page and our Technology, Media & Telecommunications services page.