AFR: Big Brother

The Safetrac Scandal: A Wake-Up Call for Ethical Employee Surveillance

Surveillance
September 03, 20259 min read

The Safetrac Scandal:

A Wake-Up Call for Ethical Employee Surveillance

When Workplace Monitoring Crosses the Line Into Invasion

The recent Safetrac case has sent a warning shot through the Australian business community, and rightly so. The Australian compliance training company stands accused of turning employee laptops into listening devices, recording screens and capturing audio of remote workers without adequate safeguards or ethical boundaries. Two employees who raised privacy concerns were allegedly dismissed shortly after, and the case is now heading to the Fair Work Commission.

This scandal represents much of what can go wrong when organisations deploy surveillance technology without proper ethical frameworks. But for those watching this play out, it also presents an opportunity; to establish clear guidelines for when, how, and why employee monitoring should be used.

As someone who has spent years developing surveillance programs in financial services, an industry where monitoring is not just permitted but mandated by regulators, I've seen both the necessity and the dangers of workplace surveillance. The Safetrac case demonstrates what happens when technology capability drives deployment decisions rather than ethical principles and legitimate business needs.

Why Are You Watching?

Before any organisation deploys monitoring technology, leaders must answer one critical question: What legitimate business purpose does this surveillance serve?

In the Safetrac case, the stated purpose appears to have been productivity monitoring—detecting when employees were "idle" on their laptops. This raises some immediate red flags. Productivity is not only notoriously difficult to measure through surveillance alone, there can be far better ways to measure this depending on the role.

Productivity isn’t a clear risk type in its own right in this case, the business risks that may be impacted by poor employee productivity could be missing sales targets, poor customer feedback or increased complaints, reduction in repeat business, delays etc., and these are all measurable through a number of data sets. To attempt to use audio/visual surveillance without a focus on detecting the potential business risk, leads to invasive monitoring that captures far more than needed.

Compare this with most of the financial services sector programs, where surveillance serves a specific, measurable purpose: detecting regulatory violations that could result in regulatory action and fines, reputational damage, or criminal liability. The purpose is clear, the risks are the focus, and in this case, the regulatory obligation is explicit. Importantly , the surveillance is also targeted, so although data capture is broad, the systems generate risk alerts focused on the specific potential risk events and only these are reviewed by a dedicated monitoring team so the program can always explain why this event was investigated.

The Three Pillars of Ethical Surveillance

Drawing from my experience implementing surveillance programs in regulated industries, ethical employee monitoring must rest on three fundamental pillars:

1. Legitimate Purpose and Proportional Response

Surveillance should only be deployed to address specific, identifiable business risks. The level of monitoring must be proportionate to the severity, frequency and likelihood of those risks.

In financial services, we monitor communications to detect market manipulation, insider trading, or other regulatory violations. These are serious risks with severe consequences, justifying sophisticated surveillance measures. Monitoring to see if someone is checking personal emails or taking extended breaks is not proportionate to the risk posed.

Questions to ask:

  • What specific risk am I trying to detect?

  • What would be the consequence if this risk materialised?

  • Is the level of monitoring proportionate to this risk?

2. Transparency and Informed Consent

Employees must understand what is being monitored, when, and why. This doesn't mean revealing every technical detail of your surveillance systems, but it does mean clear communication about expectations and boundaries.

The Safetrac case appears to have failed this test spectacularly. While employees may have signed a surveillance policy, capturing audio of conversations near laptops while working in remote (and home) locations goes well beyond what reasonable employees would expect from workplace monitoring.

Best practices:

  • Clearly define what systems, communications, and activities are subject to monitoring

  • Explain the business purpose of surveillance, who will review and what outcomes may follow

  • Regular training and reminders about monitoring policies

  • Clear boundaries between work and personal activities

3. Data Ownership and Purpose Limitation

Surveillance should focus exclusively on employer-owned data and systems used for business purposes. Personal information and private activities should be strictly off-limits, even if technically accessible.

This principle immediately highlights problems with the Safetrac approach. Recording audio from laptop microphones inevitably captures private conversations, personal phone calls, and family interactions—data that belongs to individuals, not employers.

Clear boundaries:

  • Monitor only employer-owned systems and platforms and ensure the data you focus on can demonstrate the risks you are looking for

  • Focus on business-related activities and communications

  • Establish technical and procedural safeguards to prevent capturing personal data

  • Regular audits to ensure surveillance stays within defined boundaries

The Hawthorne Effect:

When Being Watched Changes Behaviour

One of the most overlooked aspects of employee surveillance is its psychological impact. The mere knowledge of being monitored changes behaviour—a phenomenon known as the Hawthorne effect.

This can have positive outcomes, such as encouraging compliance with policies. However, excessive or poorly designed surveillance can create a culture of fear and mistrust that undermines the very behaviours organisations want to encourage.

The key is using surveillance as a detective control, to identify problems after they occur, rather than a preventive measure designed to modify day-to-day behaviour through fear. When employees feel constantly scrutinised, creativity, collaboration, and honest communication and, ironically in this case, productivity, often suffer.

Red Flags, When Surveillance Goes Too Far

The Safetrac case exhibits multiple warning signs that should alert any organisation to surveillance overreach:

  • Technology-First Thinking: Deploying monitoring software because it's available, not because there's a clear business need.

  • Productivity Paranoia: Using surveillance to measure productivity rather than detect specific risks or violations.

  • Retaliation Culture: Responding negatively to employees who raise legitimate privacy concerns.

  • Inadequate Governance: Lacking clear processes for reviewing, escalating, and acting on surveillance findings.

Building Ethical Surveillance Programs:

A Practical Framework

For organisations considering employee monitoring, here's a practical framework to ensure ethical deployment:

Phase 1: Risk Assessment and Justification

  • Identify specific, measurable business risks

  • Document potential consequences of these risks

  • Assess whether surveillance is the most appropriate control measure

  • Consider less intrusive alternatives

Phase 2: Design and Boundaries

  • Define exactly what will be monitored and why

  • Establish technical limits to prevent capturing personal data

  • Create clear policies distinguishing business and personal use

  • Design review and escalation processes

Phase 3: Transparency and Training

  • Communicate monitoring policies clearly to all employees

  • Provide regular training on expectations and boundaries

  • Establish channels for employees to raise concerns

  • Regular policy reviews and updates

Phase 4: Governance and Oversight

  • Define who can access surveillance data and under what circumstances

  • Establish review processes for surveillance findings

  • Create clear consequence management frameworks

  • Regular audits of surveillance program effectiveness and compliance

Phase 5: Continuous Improvement

  • Regular assessment of surveillance program outcomes

  • Feedback mechanisms from employees and managers

  • Updates to reflect changing risks and technology

  • Periodic independent reviews of ethical compliance

The Technology Temptation:

Just Because You Can Doesn't Mean You Should

Modern surveillance technology offers unprecedented capabilities. Software like Teramind, used in the Safetrac case, can capture screenshots, record screens, monitor keystrokes, and even activate microphones and cameras. The technical ability to monitor every aspect of employee activity exists today.

But capability should never drive deployment decisions. The most sophisticated surveillance technology is worthless, and potentially harmful, without clear ethical boundaries and legitimate business justification.

In my book "Behind the Screens," I devoted an entire chapter to surveillance ethics precisely because technology capability doesn't justify its deployment and because in the 21st century we see many violations of privacy because of this. The question isn't what you can monitor, but what you should monitor, why and what outcomes will follow.

Lessons From (highly) Regulated Industries

Financial services offers valuable lessons for ethical surveillance because monitoring is both mandated by regulators and constrained by privacy laws. This dual pressure has created sophisticated frameworks for balancing surveillance needs with employee rights.

Key lessons include:

  • Professional Standards: Surveillance serves specific compliance obligations, not general management preferences.

  • Human Oversight: Technology identifies potential issues, but human judgment determines appropriate responses.

  • Defined Processes: Clear escalation paths, investigation procedures, and outcome frameworks prevent arbitrary decision-making.

  • Regular Review: Surveillance programs are regularly assessed for effectiveness and compliance.

The Cost of Getting It Wrong

The Safetrac case demonstrates the real costs of unethical surveillance practices:

  • Legal Consequences: Fair Work Commission cases, potential privacy violations, and regulatory scrutiny.

  • Reputation Damage: Public criticism, industry scrutiny, and difficulty attracting quality employees.

  • Cultural Toxicity: Erosion of trust, reduced collaboration, and increased staff turnover.

  • Operational Inefficiency: Focus on surveillance rather than genuine performance improvement.

  • Financial Impact: Legal costs, settlements, and the expense of rebuilding damaged relationships.

Moving Forward: Recommendations for Australian Businesses

As several Australian states review privacy laws around workplace surveillance, organisations can proactively adopt ethical frameworks rather than waiting for regulatory mandates.

Immediate Actions:

  • Audit existing surveillance practices against ethical principles

  • Review and update monitoring policies with clear boundaries

  • Train managers on appropriate use of monitoring technology

  • Establish employee feedback channels for privacy concerns

Medium-Term Strategy:

  • Develop surveillance governance frameworks

  • Invest in privacy-preserving monitoring technologies

  • Create clear consequence management processes

  • Conduct regular independent reviews of surveillance practices

Long-Term Commitment:

  • Embed ethical surveillance principles in organisational culture

  • Participate in industry discussions on best practices

  • Advocate for clear regulatory frameworks

  • Continuous improvement based on emerging ethical standards

Conclusion: Getting Surveillance Right Matters

The Safetrac scandal serves as a stark reminder that surveillance technology is neither inherently good nor evil, it's a tool whose value depends entirely on how it's used. When deployed ethically, with clear purpose and appropriate boundaries, surveillance can protect organisations and employees alike. When used inappropriately, it becomes an invasion of privacy that damages trust and undermines the very goals it was meant to achieve.

The choice facing Australian businesses is clear, learn from Safetrac's mistakes and build ethical surveillance programs, or risk becoming the next cautionary tale.

Getting surveillance right isn't about the sophistication of your technology, it's about the principles governing its application. In an era where technology makes comprehensive monitoring possible, the question isn't what you can watch, but what you should watch, why you're watching, and how you're protecting the dignity and rights of the people in your business.

The line between legitimate business monitoring and invasive surveillance isn't terribly blurry. It's defined by purpose, proportionality, and respect for privacy and backed up by good processes and documentation. Safetrac appears to have crossed that line. Don't let your organisation make the same mistake.

I'm Emily Wright, a compliance and surveillance expert specialising in regulatory compliance, culture and conduct. My book "Behind the Screens: Understanding Employee Surveillance in Financial Services" is available on Amazon. For guidance on developing ethical surveillance programs, contact me on [email protected]. .

surveillanceemployee surveillanceethical monitoringsafetrac caseemployee monitoring
Back to Blog