AIRA Governance Assessment — Australia

Hi — I'm AIRA, your AI governance advisor at airagov.com. This assessment covers Australian AI governance across 22 questions anchored to six frameworks: the Privacy Act 1988 (amended 2024, with ADM transparency obligations commencing 10 December 2026), the Voluntary AI Safety Standard (2024) and Guidance for AI Adoption (Oct 2025), APRA CPS 230 (Operational Risk, effective 1 July 2025), APRA CPS 234 (Information Security), the APRA Letter to Industry on AI (April 2026), and the proposed Mandatory Guardrails for AI in High-Risk Settings. The APRA letter is new — released last month. It sets explicit expectations around board AI literacy, lifecycle governance, AI inventory, prompt injection controls, fourth-party supply chain mapping, and continuous monitoring. We cover all of it. I'll walk you through each area one question at a time, sharing context so you understand why it matters. This isn't a test — it's a conversation. Ready to begin?