How much does OpsUI cost?

OpsUI starter packs begin at A$1,499/month on opsui.au or NZ$1,499/month on opsui.co.nz (entry tier, five users included). Individual modules are A$399/NZ$399 per month with five users included; additional users are A$99/NZ$99 per user per month. The full 21-module suite is custom-quoted.

What is a modular ERP, WMS & CRM?

A modular ERP, WMS & CRM sells each operational capability — finance, HR, warehouse, logistics, customer management, analytics — as a separately-priced product instead of one monolithic suite. Buyers pick only the modules they need today and add more as they grow. OpsUI is modular by design: 21 modules covering ERP, WMS, built-in customer management, and the NetSuite integration — individually priced and all live.

Can OpsUI run alongside NetSuite?

Yes. OpsUI supports bidirectional NetSuite sync out of the box. Customers running NetSuite frequently buy specific OpsUI modules — Wave Picking, Slotting Optimisation, ML/AI Predictions — to upgrade operational areas without replacing the GL.

Is OpsUI suitable for Australian and New Zealand small businesses?

Yes. OpsUI is built for Australian and New Zealand operations. Australian customers use opsui.au with AUD pricing and AU-region data hosting; New Zealand customers use opsui.co.nz with NZD pricing and NZ-region data hosting.

Does OpsUI integrate with Xero or MYOB?

Yes. OpsUI ships bidirectional sync for both Xero and MYOB via the Finance & Accounting module — wired against your accounting tenant during rollout rather than installed from an app marketplace. Customers, items, chart of accounts and tax codes flow from your accounting system into OpsUI; sales invoices, credit notes, payment status updates and inventory adjustments flow back. Built on the Xero REST API + webhooks and MYOB's AccountRight Live + Business APIs. Full sync detail at opsui.co.nz/integrations/xero or opsui.au/integrations/xero. A documented REST API on every module is also available for custom integration.

Where is OpsUI customer data hosted?

New Zealand customer data is hosted in New Zealand. Australian customer data is hosted in Australia. Both regions are encrypted at rest with AES-256 and in transit with TLS 1.3, with role-based access control and full audit logging.

How long does an OpsUI rollout take?

Honest answer: it depends on your data, integrations, and team availability — every business is different. We don't quote a fixed timeline on the website because we'd be inventing a number. We scope your specific implementation during the demo. Enterprise rollouts use a stage plan: scope, configure, train, go-live — one module set at a time.

Is there a free trial?

OpsUI runs guided demos rather than self-serve trials, because most module value depends on real data being loaded. Demos are direct to a person via opsui.au/book-demo or opsui.co.nz/book-demo — no sales-development sequence.

Back to Blog

AU5 min read

Australian data residency & sovereignty for ERP/WMS: where your ops data actually lives (2026)

Liam BarryCo-founder & Director, OpsUI Australia·2 June 2026

The difference between data residency and data sovereignty, and why an offshore-hosted ERP can satisfy one while failing the other.

What the Privacy Act 1988, its 2024 reforms, and the Notifiable Data Breaches scheme actually require of an Australian business.

If you run operations for an Australian business, your ERP and WMS hold some of the most sensitive data you own: customer records, supplier terms, staff details, pricing, and order history. "Australian data residency ERP" is a phrase more buyers are typing into procurement requirements, and for good reason. But it's also a phrase that gets used loosely, sold hard, and occasionally over-hyped to the point of scaring people into the wrong decision.

This guide is the honest version. We make OpsUI, an operations layer that hosts production data in Australia, so we have a stake in this. But the fastest way to make a bad call is to confuse two different ideas, residency and sovereignty, or to let a vendor wave you off with the word "encrypted." So we'll define the terms precisely, walk through what Australian law actually asks of you, explain the US CLOUD Act exposure that catches a lot of offshore-hosted systems, and give you a checklist you can put to any vendor. We'll also tackle the Australian-owned versus offshore trust question without the marketing gloss.

Data residency versus data sovereignty: not the same thing

These two terms get used interchangeably, and that's the single biggest source of confusion in ERP and WMS buying. They are related, but they are not the same, and a system can satisfy one while completely failing the other.

Data residency is about geography. It answers one question: in which country does your data physically sit at rest? If your production database lives in an Australian region, you have Australian residency.
Data sovereignty is about jurisdiction and control. It answers a harder question: which country's laws can reach your data, and who can be legally compelled to hand it over? Sovereignty depends on where the data lives and on who controls the entity holding it.

Here's why the distinction matters. A US-headquartered cloud ERP can store your data in an Australian data centre, giving you genuine residency, while the parent company remains subject to US law. That means the data has Australian residency but not full Australian sovereignty, because a foreign government can lawfully compel the provider regardless of where the bytes sit. If a vendor answers your residency question with a region name and stops there, they've answered the easy half and skipped the half that actually carries risk.

The practical takeaway: ask both questions. Where does the data live, and which legal regimes can reach it through the entity that holds it.

What the Privacy Act 1988 and its 2024 reforms actually require

The foundation of Australian data obligations for most businesses is the Privacy Act 1988 and the Australian Privacy Principles it contains. The 2024 reforms strengthened it, and they're the right thing to lead with for a small or mid-sized operator, far more relevant than the heavier regulatory regimes that get name-dropped in vendor decks.

The Act governs how Australian organisations handle personal information, which includes the customer, supplier-contact and staff records sitting inside your ERP and WMS.
Australian Privacy Principle 11 requires you to take reasonable steps to protect that personal information from misuse, interference, loss, and unauthorised access or disclosure. Your choice of ERP host is part of those reasonable steps.
Australian Privacy Principle 8 deals with cross-border disclosure. If your provider stores or processes personal information overseas, you generally remain accountable for how it's handled, which is exactly why offshore hosting is your concern and not just the vendor's.
The 2024 reforms increased the focus on accountability and transparency, and lifted the consequences of getting data handling wrong. The direction of travel is clear: more obligation on the business holding the data, not less.

You don't need to be a privacy lawyer to act on this. You need to know that the personal data in your operations system is regulated, that you stay on the hook even when a vendor hosts it offshore, and that your hosting choice is a documented part of meeting your obligations.

The Notifiable Data Breaches scheme: why hosting choices show up in a breach

The Notifiable Data Breaches scheme sits inside the Privacy Act and is the part most operators feel directly if something goes wrong. It changes how a hosting decision plays out the day after an incident.

If an eligible data breach is likely to result in serious harm to the individuals whose data is affected, you must notify both the Office of the Australian Information Commissioner and the affected people.
A breach at your ERP or WMS vendor that exposes personal information you're responsible for can trigger your notification obligation, not just theirs. Their incident becomes your disclosure.
Where data is hosted, who has access, and how access is logged all shape how fast you can assess a breach and how confidently you can describe what was exposed. Murky offshore arrangements make that assessment slower and your notification weaker.

The lesson isn't that breaches only happen offshore. They don't. The lesson is that data residency, clear access controls, and proper logging are what let you respond credibly under the scheme. When you're drafting a notification to the regulator and your customers, "we know exactly where the data was and who could touch it" is a far stronger position than "we're checking with an overseas provider."

US CLOUD Act exposure: the part offshore vendors gloss over

This is the single most important concept for the residency-versus-sovereignty gap, and it's the one most likely to be missing from a glossy vendor pitch. It's worth stating plainly and fairly.

The US Clarifying Lawful Overseas Use of Data Act, the CLOUD Act, allows US authorities to compel US-headquartered providers to produce data they control, regardless of which country that data is stored in. The key word is control, not location. A provider can run an Australian region, store your bytes in Sydney, and still be subject to a lawful US production order because the parent entity falls under US jurisdiction.

This is why "our data is hosted in Australia" from a US-owned vendor is a true statement about residency and an incomplete statement about sovereignty.
It does not mean US-hosted or US-owned software is unsafe or that you must never use it. Plenty of Australian businesses run US-headquartered systems perfectly responsibly. It means the exposure is real and you should weigh it deliberately rather than discover it later.
The fair framing for most operators: this is a Privacy Act and offshore-access question, not a reason to panic. Decide how sensitive your data is, who realistically might seek access, and how much that jurisdictional reach matters to your customers and your board.

Being honest about this cuts both ways. If your data isn't especially sensitive and your customers don't care where it sits, CLOUD Act exposure may be a minor factor. If you hold a lot of Australian personal information and your buyers ask hard questions in procurement, an Australian-controlled host removes a category of risk entirely. Both are legitimate conclusions.

Australian-owned versus offshore: the trust angle, honestly

"Australian-owned" is a strong marketing line, and like most marketing lines it's part substance and part sentiment. Here's how to tell which part you're buying.

The substance: an Australian-controlled provider hosting in an Australian region narrows the jurisdictions that can compel your data, simplifies your Privacy Act and cross-border accountability story, and usually means support and billing in your own timezone and currency.
The sentiment: "we're local" feels reassuring, but local ownership alone doesn't guarantee good security, clean access controls, or a credible breach process. A poorly run local vendor is not safer than a well-run global one.
The honest test: judge the substance, not the flag. Ask where production data is hosted, which entity controls it, what jurisdictions can reach it, how access is governed and logged, and what the breach-response process is. Ownership is one input into that picture, not the whole answer.

There's also a genuine offshore case to acknowledge. If you operate across multiple countries, a global platform with regions everywhere may suit your footprint better than an ANZ-focused one, and for some businesses that breadth is worth the added jurisdictional complexity. Data residency is a requirement to weigh against your other needs, not a trump card that beats everything else. The point is to make the trade-off with your eyes open.

A vendor checklist for ERP and WMS data residency

Take this list into every demo and procurement conversation. Plain questions, and the follow-ups that stop a vendor sliding past the hard part.

Where is production data physically hosted, and can you name the country and region? If the answer is vague, that's your answer.
Which legal entity controls the data, and what jurisdictions can compel its production? This is the sovereignty question, and it's where CLOUD Act exposure shows up.
Is personal information ever processed, replicated, backed up, or supported from offshore? Backups and support tunnels are where residency quietly leaks.
Don't accept "it's encrypted" as a sovereignty answer. Encryption protects data in transit and at rest; it does not change who can lawfully compel the provider that holds the keys.
How is access to my data controlled and logged, and can I get those logs? This is what lets you respond under the Notifiable Data Breaches scheme.
What is your breach-notification process, and how quickly will you tell me if my data is involved? Their incident can trigger your obligation, so their speed becomes your problem.
Are billing, contracting and support in Australia? Not strictly a residency control, but it tells you how the relationship behaves when something goes wrong at 2pm on a Tuesday.

The goal isn't to catch vendors out. It's to get specific, documented answers you can show your board and, if it ever comes to it, the regulator. A confident vendor will answer all of these without flinching.

Where this matters most in operations

Data residency isn't an abstract IT concern. It bites in specific, everyday parts of an ERP and WMS, and it's worth knowing where.

CRM and customer records: names, contacts, order histories and communications are textbook personal information under the Privacy Act, and usually the largest store of it in your operations stack.
Order and shipping data: delivery addresses and recipient details are personal information that flows out to carriers and marketplaces, so trace where that data travels, not just where it rests.
HR and staff data: if your operations platform touches employee records, that's some of the most sensitive personal information you hold.
Integrations and sync: every connection to your finance system, your ecommerce platform, or a shipping aggregator is another place data moves and another residency question to confirm during scoping.

Mapping where personal information actually lives and travels across your operations is the unglamorous work that makes the residency question answerable. If you can't say where your customer and staff data sits and moves, you can't honestly claim it's Australian-resident, whatever the marketing says.

How OpsUI fits

On the residency question this guide is built around, OpsUI is designed to answer it cleanly rather than as a bolt-on. Production data is hosted in Australia, billing is in AUD on opsui.au, support runs AU business hours, and there's a Melbourne presence alongside the engineering HQ in Wainui, north of Auckland. That gives you genuine Australian residency and an Australian-controlled relationship, which narrows the jurisdictional reach over your operations data. The /security page sets out the specifics worth putting to any vendor.

The core idea behind OpsUI matters here too: you keep your finance system, Xero, MYOB or NetSuite, and add OpsUI as the operations layer for warehouse, inventory, orders, shipping and CRM. Because there's no ledger migration, your finance data keeps living where your accountant already trusts it, and the residency conversation focuses on the operations data OpsUI actually holds. On integration we're straight with you: bidirectional NetSuite sync is live in production, while bidirectional Xero and MYOB sync is wired during rollout through the /integrations/xero and finance module path. On carriers, NZ Couriers is our one live carrier API, and everything else runs through the Shipping and Outbound module workflow, confirmed during scoping.

Pricing is flat and modular from A$399/module/mo — full breakdown at /pricing. If data residency is on your requirements list, the most useful next step is to see it against your own data flows: read /security for the hosting detail and book a walkthrough at /book-demo.

Frequently asked

What is the difference between data residency and data sovereignty?

Data residency is about geography: which country your data physically sits in at rest. Data sovereignty is about jurisdiction: which country's laws can reach your data and who can be compelled to hand it over. A US-owned ERP can store data in Australia, giving you residency, while remaining subject to US law, so it lacks full sovereignty. Ask both questions of any vendor.

Does the Privacy Act 1988 require my ERP data to be hosted in Australia?

The Privacy Act doesn't mandate Australian hosting outright, but it makes you accountable for protecting personal information and for how it's handled if disclosed overseas. Australian Privacy Principle 11 requires reasonable security steps, and Principle 8 covers cross-border disclosure. Your hosting choice is part of meeting those obligations, and you stay responsible even when a vendor hosts the data offshore.

What is the US CLOUD Act and how does it affect my data residency?

The US CLOUD Act lets US authorities compel US-headquartered providers to produce data they control, regardless of where it's stored. The key word is control, not location, so a US-owned ERP can host your data in Australia and still be reachable under a US order. That's why Australian residency from a US-owned vendor doesn't give you full Australian data sovereignty.

What should I ask an ERP or WMS vendor about Australian data residency?

Ask where production data is physically hosted, which legal entity controls it, and which jurisdictions can compel its production. Confirm whether data is processed, backed up or supported offshore, how access is controlled and logged, and what the breach-notification process is. Don't accept 'it's encrypted' as a sovereignty answer; encryption doesn't change who can lawfully compel the provider holding the keys.

Is an Australian-owned ERP safer than an offshore one?

Australian ownership narrows the jurisdictions that can compel your data and simplifies your Privacy Act story, but ownership alone doesn't guarantee good security or a credible breach process. Judge the substance: hosting location, controlling entity, access logging and breach response, not just the flag. A well-run global platform can be the better fit if you operate across multiple countries.

What does the Notifiable Data Breaches scheme mean for my ERP host?

Under the scheme, an eligible breach likely to cause serious harm must be reported to the OAIC and affected individuals. A breach at your ERP or WMS vendor exposing personal information you're responsible for can trigger your obligation, not just theirs. Clear data residency, access controls and logging let you assess and notify quickly and credibly when an incident happens.

See how OpsUI approaches this differently.

No hidden fees. No six-month implementations. Just warehouse software that works.

Book a Demo