State & Territory AI Resources (Government & Statutory Bodies)

This page curates official, state/territory-level resources on artificial intelligence (AI) for public sector use in Australia. It focuses on whole-of-government strategies and policies, AI assurance frameworks, information/privacy guidance from statutory bodies (e.g., information commissioners, ombudsmen), and records management directives. Where education-specific positions exist, they’re included because they are often the most mature sector guidance.

Last verified: 2025-01-27 (ACST). Links point only to official government or statutory sources.

---

General Comment (Read First)

State and territory resources are designed to work within each jurisdiction’s legislative and policy settings. If you operate across multiple jurisdictions—or consume services from another state—start with the local requirements and then map to national artefacts (see Alignment below). Treat AI projects as socio-technical: combine policy, risk, privacy, security, procurement, records management, and assurance practices from the outset.

Note: Policies and guidance change rapidly (especially around generative AI). Always check for the latest version and any departmental circulars or implementation notes before relying on a specific document.

---

How to Use This Page

1. Identify your jurisdiction and applicable agency cluster (e.g., central DPC/DTF/Finance, Education, Records Authority, or Information Commissioner).
2. For each item:
3. Confirm status/version and whether it is mandatory (policy/standard) or advisory (guidance/toolkit).
4. Perform or update risk and privacy impact assessments (PIA/DPIA) and recordkeeping actions.
5. Where AI supports decisions that affect rights or benefits, apply administrative law duties and human-in-the-loop controls.
6. If your work spans states, use the Alignment guidance to harmonise.

---

New South Wales (NSW)

• NSW AI Strategy (Digital NSW) — whole-of-government direction for safe, outcomes-focused AI.
• AI Ethics Policy — mandatory principles (trust, transparency, customer benefit, fairness, privacy, accountability).
• NSW AI Assessment/Assurance Framework (AIAF) — structured, risk-based assessment; updated to address generative AI.
• Digital Assurance Framework — mandatory assurance for eligible ICT/AI projects (see also NSW Gateway).
• Generative AI — Basic Guidance — practical workforce guidance for responsible GenAI use.
• AI in NSW Government — Case studies — examples of applied AI across agencies.
• NSW Ombudsman — Automated decision-making (ADM) systems — administrative law duties and implementation steps.
• Information & Privacy Commission (IPC) NSW
• ADM, digital government & preserving information access rights (factsheet) — obligations for ADM while protecting information access rights.
• Guide to undertaking Privacy Impact Assessments on AI systems & projects — PIA guidance tailored to AI (PDF available on page).
• Scan of the AI regulatory landscape — privacy & information access lens on AI regulation.

---

Victoria (VIC)

• OVIC — Use of personal information with publicly available GenAI tools (VPS) — privacy expectations when staff use public GenAI tools.
• OVIC — Use of enterprise GenAI tools (VPS minimum expectations) — baseline controls for enterprise GenAI deployments.
• Public Record Office Victoria — AI Technologies & Recordkeeping Policy — mandatory recordkeeping directives for AI.
• Victorian Public Sector Data Sharing Framework — principles and practice for data sharing that supports safe AI use.
• Policies & standards for government IT (consolidated library) — whole-of-VPS ICT policy library relevant to AI governance.

---

Queensland (QLD)

• QGEA — Use of Generative AI — policy intent, roles, procurement/technical considerations, risk management.
• QGEA — Artificial intelligence (category landing) — entry point to governance policy and guidance.
• QGEA — Foundation principles — cross-cutting architecture principles relevant to AI solution design and governance.
• Office of the Information Commissioner (OIC) Queensland
• Government use of AI in Queensland — commissioner perspective and key privacy considerations.
• Microsoft Copilot & privacy risks of using GenAI — practical checklist applicable to any GenAI rollout.

---

South Australia (SA)

• Guideline 13.1 — Use of Generative AI & Large Language Models (DPC) — whole-of-government guidance aligned to the national AI assurance approach.
• DTF ICT/Digital/Cyber — AI landing — central pointer to SA Government AI policy artefacts (incl. G13.1).
• State Records SA — Artificial Intelligence & Information Management — recordkeeping obligations when developing/using AI.
• Department for Education — EdChat (GenAI chatbot) overview — agency adoption example and usage guidance in schools.
• State Budget — Digital Investment Fund: AI program — funding context to grow AI use in services.

---

Western Australia (WA)

• WA Government Artificial Intelligence Policy & Assurance Framework (landing) — principles-based policy for WA public sector, including GenAI.
• AI Assurance Framework — overview/download — risk assessment and assurance templates and guidance.
• Western Australian Artificial Intelligence Advisory Board — oversight/advice structure for agency implementations.
• Artificial Intelligence & Record Keeping — clarifies record status of AI outputs and related obligations.
• Digital Strategy Roadmap 2025 — broader digital program context for AI initiatives.

---

Tasmania (TAS)

• Guidance for the use of AI in Tasmanian Government (v1.4, Sept 2024) — seven recommendations (risk-based approach, procurement, capability, transparency); aligned with the national AI assurance framework.
• DPAC Digital Strategy & Services — Policies — links to AI guidance one-pager plus related cloud/cyber/privacy policies.

---

Australian Capital Territory (ACT)

• ACTPS Acceptable Use of ICT Resources Policy — includes specific conditions for generative AI (appropriateness, confidentiality, security).
• Education Directorate — Position on use of AI in ACT public schools — classroom and teacher guidance for safe use.
• ACT Government Technology Directions — strategic context for digital/AI capability across ACT Government (PDF available on page).

---

Northern Territory (NT)

• NT AI Assurance Framework (Digital Territory) — ethics principles, self-assurance assessment, and AI Advisory Board; generative AI explicitly in scope.

---

Alignment (Important)

Many jurisdictions explicitly reference or align to the National Framework for the Assurance of AI in Government (endorsed by Data & Digital Ministers on 21 June 2024). When planning cross-jurisdictional work:

• Use the local state/territory policy and assurance artefacts to determine mandatory steps.
• Map to the national framework to ensure consistent governance, documentation and transparency across borders.
• Reconcile differences in privacy law, administrative law practice, procurement rules and records obligations by documenting equivalences and any additional local controls.
• For agencies consuming services or models hosted in another jurisdiction, require suppliers to provide evidence of AI assurance against both the provider’s and customer’s frameworks, plus PIA/DPIA, security risk assessment and records/disposal mapping, and a clear ADM accountability model (human oversight, contestability, redress).

---

Maintenance & Contributions

• Keep this page updated with the latest versions and add sector-specific positions (health, justice, education) when central agencies or statutory bodies publish them.
• Prefer official sources (government and statutory bodies). Include the document title, issuing body, version/date, and whether it is mandatory or guidance.

---

Licence: Creative Commons Attribution 4.0 International (CC BY 4.0).