Update content across multiple sections including about, governance templates, and safety standards

Author: agent-ptolemy

docs/about.md

@@ -44,10 +44,26 @@ By combining responsible innovation with a pro-business approach, SafeAI-Aus aim
 6. **Alignment with Standards** – Promote compliance with Australian regulations and alignment with leading global AI safety frameworks.
 
 ---
-
 ## Attribution & Licence
 [![CC BY 4.0 License](https://licensebuttons.net/l/by/4.0/88x31.png)](https://creativecommons.org/licenses/by/4.0/)  
 This work is licensed under a [Creative Commons Attribution 4.0 International License (CC BY 4.0)](https://creativecommons.org/licenses/by/4.0/).  
 
+### Why CC BY 4.0?  
+SafeAI-Aus has adopted the CC BY 4.0 licence to maximise accessibility, reuse, and impact of our resources. This licence allows anyone to:  
+
+- **Use** the content freely, including for commercial purposes.  
+- **Adapt and build upon** the content to suit specific business or community needs.  
+- **Share** the material in any format.  
+
+The only requirement is **attribution** — recognising SafeAI-Aus as the source and linking back to this site.  
+
+This choice reflects our commitment to:  
+
+- **Openness and collaboration** – encouraging businesses, researchers, and policymakers to reuse and improve on our work.  
+- **Practical adoption** – removing barriers to use, even in commercial contexts, so that safe AI practices spread quickly and effectively.  
+- **Credibility and trust** – ensuring attribution helps maintain a clear chain of custody and authenticity for shared knowledge.  
+
 **Attribution Example:**  
-> Content from SafeAI-Aus, licensed under CC BY 4.0. Adapted from the original at [https://github.com/safeai-aus/safeai-aus.github.io](https://github.com/safeai-aus/safeai-aus.github.io).
+> Content from SafeAI-Aus, licensed under CC BY 4.0. Adapted from the original at [https://github.com/safeai-aus/safeai-aus.github.io](https://github.com/safeai-aus/safeai-aus.github.io).  
+
+---

docs/governance-templates/ai-incident-report-form.md

@@ -107,11 +107,13 @@ SafeAI-Aus provides this template without warranty or liability.
 ## Licence
 This template is made available under the **Creative Commons Attribution 4.0 International (CC BY 4.0)** licence.  
 
-You are free to:  
+You are free to: 
+
 - **Share** — copy and redistribute the material in any medium or format.  
 - **Adapt** — remix, transform, and build upon the material for any purpose, even commercially.  
 
 Under the following terms:  
+
 - **Attribution** — You must give appropriate credit, provide a link to the licence, and indicate if changes were made.  
 
 **Attribution statement for reuse:**  

docs/governance-templates/ai-project-register.md

@@ -20,11 +20,13 @@ canonical_url: "https://safeaiaus.org/governance-templates/ai-project-register/"
 
 **Purpose**  
 This register provides a structured way to maintain a central record of all AI initiatives within your organisation. It is designed to:  
+
 - Ensure visibility across all AI-related projects.  
 - Provide a single source of truth for governance, risk, and compliance monitoring.  
 - Support decision-making through consistent project documentation and guardrail alignment.  
 
 **When to Use**  
+
 - At project initiation: create a new entry for each AI initiative.  
 - During project lifecycle: update details as the project evolves (e.g., risks, model versions).  
 - At review points: use the register to assess Go/No-Go criteria and ensure guardrail compliance.  
@@ -86,10 +88,12 @@ SafeAI-Aus provides this template without warranty or liability.
 This template is made available under the **Creative Commons Attribution 4.0 International (CC BY 4.0)** licence.  
 
 You are free to:  
+
 - **Share** — copy and redistribute the material in any medium or format.  
 - **Adapt** — remix, transform, and build upon the material for any purpose, even commercially.  
 
 Under the following terms:  
+
 - **Attribution** — You must give appropriate credit, provide a link to the licence, and indicate if changes were made.  
 
 **Attribution statement for reuse:**  

docs/governance-templates/ai-risk-assessment-checklist.md

@@ -139,10 +139,12 @@ SafeAI-Aus provides this template without warranty or liability.
 This template is made available under the **Creative Commons Attribution 4.0 International (CC BY 4.0)** licence.  
 
 You are free to:  
+
 - **Share** — copy and redistribute the material in any medium or format.  
 - **Adapt** — remix, transform, and build upon the material for any purpose, even commercially.  
 
 Under the following terms:  
+
 - **Attribution** — You must give appropriate credit, provide a link to the licence, and indicate if changes were made.  
 
 **Attribution statement for reuse:**  

docs/governance-templates/ai-use-policy.md

@@ -37,7 +37,8 @@ This page provides a reusable **AI Use Policy** for Australian businesses seekin
 ## 1. Purpose
 The purpose of this policy is to ensure the safe, responsible, and effective use of Artificial Intelligence (AI) within [Organisation Name]. It establishes clear expectations for how AI should support organisational goals, protect people, and align with applicable standards and laws.  
 
-This policy aims to:  
+This policy aims to: 
+ 
 - Support organisational objectives.  
 - Comply with Australian laws and standards.  
 - Protect privacy, data, and intellectual property (IP).  
@@ -50,6 +51,7 @@ This policy aims to:
 This policy applies across the organisation wherever AI technologies are developed, purchased, or used. It covers both internal and external use cases, ensuring that all applications of AI are appropriately governed.  
 
 In scope are:  
+
 - All AI projects, pilots, and procurements.  
 - All AI-generated outputs used for decision-making or external publication.  
 - Any third-party AI services or APIs integrated into organisational workflows.  
@@ -182,10 +184,12 @@ SafeAI-Aus provides this template without warranty or liability.
 This AI Use Policy template is made available under the **Creative Commons Attribution 4.0 International (CC BY 4.0)** licence.  
 
 You are free to:  
+
 - **Share** — copy and redistribute the material in any medium or format.  
 - **Adapt** — remix, transform, and build upon the material for any purpose, even commercially.  
 
 Under the following terms:  
+
 - **Attribution** — You must give appropriate credit, provide a link to the licence, and indicate if changes were made.  
 
 **Attribution statement for reuse:**  

docs/governance-templates/ai-vendor-evaluation-checklist.md

@@ -20,12 +20,14 @@ canonical_url: "https://safeaiaus.org/governance-templates/ai-vendor-evaluation-
 
 Selecting the right AI vendor is a critical step in managing risk and ensuring safe, ethical, and productive use of AI in your business. This checklist helps Australian organisations assess potential AI vendors against industry standards, legal requirements, and best practices.  
 
-Using this evaluation process supports stronger AI governance by:  
+Using this evaluation process supports stronger AI governance by: 
+
 - Reducing risks from unverified or non-compliant AI products.  
 - Ensuring transparency, accountability, and security in AI procurement.  
 - Building trust with customers, regulators, and partners.  
 
-This checklist can be used as part of your organisation’s AI governance framework when:  
+This checklist can be used as part of your organisation’s AI governance framework when: 
+
 - Onboarding a new AI vendor.  
 - Renewing or extending existing vendor contracts.  
 - Reviewing AI products that have undergone significant updates.  
@@ -106,6 +108,7 @@ Check customer references, case studies, and the vendor’s history of regulator
 
 ## Documenting & Storing Results
 To ensure accountability and provide an audit trail:  
+
 - Record all responses and supporting evidence provided by the vendor.  
 - Capture notes on any identified risks or gaps and how they will be managed.  
 - Store completed checklists in a secure repository (e.g. risk register, governance system, or procurement file).  
@@ -130,10 +133,12 @@ SafeAI-Aus provides this template without warranty or liability.
 This template is made available under the **Creative Commons Attribution 4.0 International (CC BY 4.0)** licence.  
 
 You are free to:  
+
 - **Share** — copy and redistribute the material in any medium or format.  
 - **Adapt** — remix, transform, and build upon the material for any purpose, even commercially.  
 
 Under the following terms:  
+
 - **Attribution** — You must give appropriate credit, provide a link to the licence, and indicate if changes were made.  
 
 **Attribution statement for reuse:**  

docs/safety-standards/ai-australian-legislation.md

@@ -24,6 +24,7 @@ As of August 2025, the Government is also considering new AI-specific regulation
 
 ### Why this matters
 Understanding the current legal landscape helps organisations:  
+
 - Avoid legal and reputational risks from misuse of AI  
 - Demonstrate compliance and accountability to regulators and customers  
 - Build trust by applying the same standards to AI as to human decision-making  
@@ -37,12 +38,14 @@ Understanding the current legal landscape helps organisations:
 The **Privacy Act 1988** is the principal legislation that regulates how personal information is collected, stored, used, and disclosed in Australia, including by government and private sector organisations ([ag.gov.au](https://www.ag.gov.au/rights-and-protections/privacy)). It establishes the **Australian Privacy Principles (APPs)**, which apply to most organisations and agencies.  
 
 **Relevance to AI:**  
+
 - Customers must be informed when AI systems process personal information  
 - AI-derived insights about individuals are considered personal information  
 - Consent may be required for analyzing personal data by AI  
 - AI training datasets must comply with the APPs  
 
 **Actions required:**  
+
 - Update privacy policies to mention AI use  
 - Display “We use AI” notices where relevant  
 - Ensure AI vendors are APP-compliant  
@@ -56,12 +59,14 @@ The **Privacy Act 1988** is the principal legislation that regulates how persona
 The **Australian Consumer Law (ACL)** is a national law embedded in the Competition and Consumer Act 2010. It protects consumers from unfair trading, misleading conduct, and unsafe products or services across all states and territories ([consumer.gov.au](https://consumer.gov.au/about/australian-consumer-law)).  
 
 **Relevance to AI:**  
+
 - AI-generated content and claims must not be inaccurate or misleading  
 - Chatbots must clearly communicate their nature and authority  
 - AI-driven pricing must avoid deception  
 - Recommendations should be based on reasonable grounds  
 
 **Actions required:**  
+
 - Review all AI-generated marketing and promotional content  
 - Implement disclaimers where chatbot responses could mislead  
 - Monitor AI output quality and accuracy  
@@ -75,12 +80,14 @@ The **Australian Consumer Law (ACL)** is a national law embedded in the Competit
 Australia maintains a federal anti‑discrimination framework, including acts like the **Sex Discrimination Act 1984**, **Racial Discrimination Act 1975**, and **Disability Discrimination Act 1992**. These laws prohibit unfair treatment across public life based on protected characteristics ([ag.gov.au](https://www.ag.gov.au/rights-and-protections/human-rights-and-anti-discrimination/australias-anti-discrimination-law)).  
 
 **Relevance to AI:**  
+
 - AI must not discriminate against protected groups (e.g., based on gender, race, age, disability)  
 - Recruitment or HR AI tools must mitigate bias  
 - Services powered by AI must treat all users equitably  
 - Credit and insurance AI must comply with anti-discrimination obligations  
 
 **Actions required:**  
+
 - Regularly audit AI systems for bias and discriminatory outcomes  
 - Document actions taken to ensure fairness  
 - Maintain human oversight for high-impact AI decisions  
@@ -94,12 +101,14 @@ Australia maintains a federal anti‑discrimination framework, including acts li
 Australia’s **IP laws**—covering copyright, patents, trademarks, and design rights—aim to protect creators and innovators while balancing access to creative content and knowledge ([ipaustralia.gov.au](https://www.ipaustralia.gov.au/about-us/ip-legislation-in-australia)).  
 
 **Relevance to AI:**  
+
 - Training AI models on copyrighted data may pose legal risk  
 - AI-generated outputs might not qualify for copyright protection  
 - Using client data without permission could breach confidentiality or IP rights  
 - Using competitors’ content for training may contravene IP laws  
 
 **Actions required:**  
+
 - Audit datasets for copyright compliance  
 - Include AI use and ownership clauses in contracts  
 - Avoid relying solely on AI-generated content for IP claims  
@@ -142,6 +151,7 @@ Australia’s **IP laws**—covering copyright, patents, trademarks, and design
 
 ## Why This Matters
 Even before new AI laws are introduced, **existing legislation creates clear compliance obligations**. Businesses deploying AI should:  
+
 - Treat AI as subject to the same laws as human decision-making  
 - Document AI-related policies and processes  
 - Engage legal review for higher-risk applications  

docs/safety-standards/voluntary-ai-safety-standard-10-guardrails.md

@@ -30,6 +30,7 @@ Importantly, the 10 guardrails are consistent with leading international standar
 
 ### Why this matters
 Adopting the guardrails early helps organisations build **trust, resilience, and regulatory readiness**. By embedding these practices now, businesses can:  
+
 - Reduce risks from bias, errors, and misuse of AI  
 - Strengthen transparency and customer confidence  
 - Position themselves ahead of future mandatory compliance requirements
@@ -65,52 +66,62 @@ Adopting the guardrails early helps organisations build **trust, resilience, and
 
 While the 10 guardrails apply to all organisations, SMEs can adopt them at different maturity levels:
 
-**Guardrail 1: Establish accountability**  
+**Guardrail 1: Establish accountability** 
+
 - *Minimum:* Designate an AI responsible person  
 - *Better:* Create simple AI governance policy  
 - *Best:* Regular board/leadership AI updates  
 
 **Guardrail 2: Implement risk management**  
+
 - *Minimum:* Use SAAM risk assessment tool  
 - *Better:* Quarterly risk reviews  
 - *Best:* Integrated risk management system  
 
-**Guardrail 3: Protect data**  
+**Guardrail 3: Protect data** 
+
 - *Minimum:* Follow existing cybersecurity practices  
 - *Better:* AI-specific data controls  
 - *Best:* Enhanced encryption and access controls  
 
-**Guardrail 4: Ensure transparency**  
+**Guardrail 4: Ensure transparency** 
+
 - *Minimum:* "Powered by AI" labels  
 - *Better:* Explain AI role in decisions  
 - *Best:* Full algorithmic transparency  
 
-**Guardrail 5: Enable human control**  
+**Guardrail 5: Enable human control** 
+
 - *Minimum:* Override capability for all AI decisions  
 - *Better:* Human review of significant decisions  
 - *Best:* Human-in-the-loop for all critical processes  
 
-**Guardrail 6: Test reliability**  
+**Guardrail 6: Test reliability**
+
 - *Minimum:* Pre-deployment testing  
 - *Better:* Monthly performance monitoring  
 - *Best:* Continuous testing and validation  
 
-**Guardrail 7: Monitor impacts**  
+**Guardrail 7: Monitor impacts**
+
 - *Minimum:* Track errors and complaints  
 - *Better:* Proactive impact assessment  
 - *Best:* Real-time monitoring dashboard  
 
-**Guardrail 8: Ensure accountability in supply chain**  
+**Guardrail 8: Ensure accountability in supply chain**
+
 - *Minimum:* Vendor compliance check  
 - *Better:* Contractual AI requirements  
 - *Best:* Regular vendor audits  
 
-**Guardrail 9: Maintain records**  
+**Guardrail 9: Maintain records**
+
 - *Minimum:* Keep AI decision logs  
 - *Better:* Comprehensive documentation  
 - *Best:* Automated compliance reporting  
 
-**Guardrail 10: Support human autonomy**  
+**Guardrail 10: Support human autonomy**
+
 - *Minimum:* Opt-out options  
 - *Better:* User control preferences  
 - *Best:* Full user agency over AI interactions  
@@ -141,6 +152,7 @@ While the 10 guardrails apply to all organisations, SMEs can adopt them at diffe
 ### Government's principles-based definition of "high-risk AI"
 In its consultation on mandatory guardrails for AI in high-risk settings, the Australian Government proposes a principles-based approach.  
 An AI application may be considered *high-risk* if it has a high likelihood of causing material harm in one or more of the following areas:
+
 - Human rights or freedoms  
 - Health and safety  
 - Legal rights or obligations  
@@ -156,6 +168,7 @@ The following examples are **not part of the official government definition**. T
 Senate Inquiry report: [“Australian Government should regulate generative AI” – The Guardian, 27 Nov 2024](https://www.theguardian.com/technology/2024/nov/27/amazon-google-and-meta-are-pillaging-culture-data-and-creativity-to-train-ai-australian-inquiry-finds)
 
 **Examples often cited as potentially high-risk in public discussions:**  
+
 - Healthcare diagnosis or treatment  
 - Employment decisions (hiring, firing, promotion)  
 - Financial services (loans, insurance)  
@@ -164,6 +177,7 @@ Senate Inquiry report: [“Australian Government should regulate generative AI
 - Legal decisions  
 
 **General-purpose applications** (likely to remain voluntary under current proposals):  
+
 - Marketing automation  
 - Customer service chatbots  
 - Internal productivity tools