The Brief

Latest articles

Data & privacy

Australia's Notifiable Data Breaches Scheme: What Triggers It, What You Must Do, and How Fast

If your business holds personal information and suffers a data breach, you may have 30 days to notify the OAIC and affected individuals. Here is what triggers the obligation, what your notification must include, and what happens if you get it wrong.

Apr 2026

13 min read

→

Founders guides

Shareholders Agreement vs Company Constitution: What's the Difference - and Do You Need Both?

Most Australian startups end up with a company constitution by default and no shareholders agreement at all. That's usually the wrong setup. Here's what each document actually does, why they're not interchangeable, and when to put each one in place.

Apr 2026

9 min read

→

Plumlaw Legal Library

Plain-English answers to the questions founders actually search for.

Written by a lawyer who's worked on both sides of the table — private practice and in-house.

Get in touch