.svg)
Data sovereignty and information governance are now front-of-mind for lawyers and in-house teams using AI to help them with their work. This white paper summarises the practical issues that arise when using offshore AI tools to assist with legal work, including issues arising under the Australian Privacy Act / APP 8 when personal information is being transferred.
Confirm whether contract data is processed “end-to-end” in Australia.
Run practical due diligence on data location, retention, logging, access controls, subprocessors, and whether customer content is used to train models (opt-in/opt-out/default).
Assess cross-border disclosure risk under Australian Privacy Principle 8 (APP 8)
Understand the role of contractual safeguards (security, audit, retention, breach notification).
Understand accountability exposure under section 16C where an overseas recipient mishandles
personal information, and what to do about it.
Sample supplier due diligence questionnaire.
Example scoring matrix to compare suppliers.
List of contract clauses to request.
Information on why it matters to have AI contract review tools that are trained on the Australian legal context.
Tired of vendor assurances that don’t answer the hard questions? Download the white paper and use the due diligence pack and scoring matrix to compare suppliers before you send them your data.
.svg)
.svg)