Insight

The Security Industry: Licensing, Contracts and Liability at the Perimeter

23 May 2026

Security providers — guarding, crowd control, cash-in-transit, investigations and security tech installers — operate under a licensing regime that varies by state, sits alongside stringent workforce rules, and carries some of the sharpest liability exposures in the services economy. A single incident can trigger regulator, insurer and criminal law consequences simultaneously.

Licensing under state security legislation

Providing security services in Australia requires licensing under state legislation — for example, the Security Industry Act 1997 (NSW), the Private Security Act 2004 (Vic), the Security Providers Act 1993 (Qld) and equivalents. Business licences, individual operator licences and specific class endorsements (guard, crowd controller, investigator, technician, monitoring centre) each need to be maintained, and there are ongoing fit-and-proper obligations. Operating across borders often requires multiple licences.

Contracts, sub-contracting and unfair contract terms

Client contracts — with venues, retail chains, construction sites, government and event organisers — need to reflect the risk profile of the service, including SLAs, incident reporting, use of force limits, indemnity and insurance. Standard-form contracts with small businesses are subject to the unfair contract terms regime under the Australian Consumer Law (Schedule 2 to the Competition and Consumer Act 2010 (Cth)), which now carries civil penalties. Sub-contracting layers add responsibility, not remove it.

Workforce, awards and misclassification

The security industry sits under the Security Services Industry Award 2020 and the Fair Work Act 2009 (Cth). Misclassification, minimum-shift breaches, and use of contractor structures that do not reflect the underlying relationship have been repeated areas of enforcement. Wage compliance and rostering practices deserve close attention.

Use of force, duty of care and vicarious liability

Security operators owe duties of care to patrons, clients and third parties, and can attract vicarious liability for the conduct of their employees. Use-of-force policies, incident training, body-worn camera use and complaint handling are all central to both risk management and defence of claims when incidents occur.

Surveillance, privacy and monitoring

CCTV, body-worn cameras, monitoring centres and investigations engage the Privacy Act 1988 (Cth), state surveillance devices legislation, and (for investigators) additional restrictions on covert activity. Retention, access and disclosure of footage and data need documented procedures.

Practical steps you may wish to consider

  • Maintain state licences across all jurisdictions of operation, with fit-and-proper systems for personnel
  • Review client and sub-contract terms for SLAs, indemnity, insurance and unfair terms exposure
  • Audit workforce arrangements against the Security Services Award and current contractor rules
  • Document use-of-force, incident response and complaint-handling policies with training records
  • Align surveillance, footage and investigation practices with privacy and surveillance devices laws

This article contains general information only and does not constitute legal advice. Envision Legal accepts no liability for any loss arising from reliance on this content. You should seek independent legal advice tailored to your specific circumstances. For enquiries, contact Envision Legal.

Talk to us

Ready to talk it through?

Send us a note about what you're working on. We'll respond within one business day and, if we're a fit, book a free 15-minute consultation with a senior lawyer.

We treat every message as confidential.

Talk to us

Need advice on this?

Send us a note about what you're working on. We'll respond within one business day and, if we're a fit, book a free 15-minute consultation with a senior lawyer.

We treat every message as confidential.

CallBook Call