Privacy Policy

Issued: 28 May 2025
Version: 3

Introduction

At McAllister Wealth Group Pty Ltd and McAllister Private Wealth Pty Ltd (“we” in this document) are committed to protecting your privacy in accordance with the Privacy Act 1988 (Cth). This Policy describes our policies and practices for collecting, handling, storing, using, and disclosing personal information. It also deals with how you can complain about a breach of the privacy laws, access the personal information we hold about you and have that information corrected (where necessary).

What personal information do we collect and hold, and how do we get it?

Personal information is information or an opinion about an identified, or reasonably identifiable, individual. During the provision of our services, we may collect your personal information.

The personal information we collect depends on, and is specific to, the products and services you engage us to provide. Generally, the kinds of personal information we collect includes:

  • Your name, address, telephone number, email address and date of birth.
  • Other identification verification information, including photographic information, from documents including your birth certificate, passport, driver’s licence, pension card, citizenship certificate, tax notice assessment, Medicare card and utilities notices.
  • Financial information about your assets, occupation and income, account balances, bank account details, account activities, trust arrangements, payment history and transactions with us and third parties.
  • Tax information including your tax file number, tax returns and related information.
  • Professional and business information about your membership of a professional association, partnerships, directorships, business names and trust arrangements.

We are also required to collect and verify identification information as required by the Anti-Money Laundering and Counter-Terrorism Financing Act 2006 (Cth). In some circumstances, we may also hold other personal information provided by you.

This information is primarily collected from application forms you have completed, your use of our online facilities or through ongoing communications with you or persons you authorise to communicate with us on your behalf.

There are specific circumstances in which we will ask for your consent to provide sensitive information such as:

  • Health Information when you apply for insurance or from medical practitioners when you make a claim.
  • Income information from employers when you apply for additional insurance protection or salary continuance insurance.
  • Details of your dependents, as defined at section 10 of the Superannuation Industry (Supervision) Act 1993 (Cth), to pay benefits in the event of your death.

We will inform you of any legal requirements for us to request information about you and the consequences of not providing that information. For example, in addition to the personal information we will obtain from you, whenever you acquire a new product or service from us, we will require documents evidencing your identity. Such evidence may include a certified copy of your driver’s licence, passport, or birth certificate. If you do not provide identity documentation, we may not be able to action your request.

Generally, we collect your personal information directly from you, through:

  • Completion of an application or other form either online or in hard copy.
  • Provision of original, or copies of, documentation whether delivered in person, by post or electronically.
  • Direct communication via meetings or telephone meetings and exchanges.
  • Recordings of conversations (in which case you will be informed of such recording prior to the recording commencing).
  • Email, or other electronic correspondence.
  • Receipt of mail which you have directed to be sent to McAllister Private Wealth.

We will only solicit personal information about you where you have knowingly provided that information to us, we believe you have authorised a third party to provide that information to us, or we are obligated by law to obtain such information. Third parties that we may need to collect information from include your financial adviser, product issuer, employer, accountant, or solicitor. To verify your identity for Know Your Customer (KYC) purposes, we may also solicit personal information about you from reliable identity verification service providers.

We may also collect your information from third parties such as your bank, superannuation fund, insurance provider doctor, or other service that we reasonably require information from.

How do we use your information?

We use your personal information for the purpose for which it has been obtained and for related purposes. For example, we collect your personal information so that we are able to:

  • Provide financial advice to you.
  • Establish and manage your investments and accounts.
  • Implement your investment instructions.
  • Establish and maintain insurance protection.
  • Process contributions, transfer monies or pay benefits.
  • Report on the investment performance of your account.
  • Keep you up to date on other products and services that may be of interest to you.
  • Improve the operation of our business and enhance the delivery of our products and services.

We may use technology such as cookies, beacons, tags, scripts and tracking pixels to collect, store and use anonymous data about how you use our website / mobile technology. This includes your server address, the date and time of your visit, the pages and links accessed, the type of browser used and other information about your browsing activities. This data is used to increase functionality and can also enable us to display information and content that is tailored to our understanding of your interests. This information alone cannot be used to discover your identity.

What if you don’t provide information to us?

You are not obligated to give us the information that we request. However, if you do not give us the information that we ask for, or the information you give is not complete or accurate, this may:

  • Prevent or delay the processing of your application or claim.
  • Affect your eligibility for specified insurance cover.
  • Preclude us from providing you financial advice.
  • Prevent us from contacting you about your product or services.
  • Impact the taxation treatment of your account.

For example, we are required to ask for your Tax File Number (TFN) when you become a member of one of our superannuation products. If you choose to not give us your TFN, you may be subject to higher tax charges on your superannuation, we may not be able to locate different accounts in your name, and we may not be able to accept personal contributions.

You can contact us without using your name or by using a pseudonym.  However, we may need your name or contact details to respond to you.

How do we store and protect your personal information?

We keep your personal information in your client files or electronically. These files are accessible to authorised personnel only and are appropriately secured and subject to confidentiality requirements. Personal information is treated as confidential information and sensitive information is treated as highly confidential. It is a legislative requirement that we keep all personal information and records for a period of 7 years. Should you cease to be a client of ours, we will maintain your personal information on or off site in a secure manner for 7 years. After this, the information will be securely destroyed.

We strive to maintain the relevance, accuracy and completeness and currency of the personal information we hold and to protect its privacy and security. We keep personal information only for as long as is reasonably necessary for the purpose for which it was collected or to comply with any applicable legal reporting or document retention requirements.

We regard the security of personal information as very important and have implemented a range of measures to ensure the personal information we hold is protected from misuse, interference, and loss and from unauthorised access, modification or disclosure. The protection measures in place include:

  • Confidentiality requirements for employees.
  • Confidentiality statements on all outgoing correspondence including email.
  • Document storage security policies.
  • Security measures including encryption, firewalls, site monitoring and intrusion detection.
  • Providing a discreet environment for confidential discussions.

However, we cannot guarantee the security of personal information provided to us electronically via the internet, email or text nor can we guarantee the safe delivery of personal information via ordinary post and as such any communication is made at your own risk. The security arrangements are reviewed and tested from time to time.

Will we disclose your personal information to anyone?

We do not sell, trade, or rent your personal information to others. Generally, we will only disclose your personal information for the purposes of providing our products and services to you. This may include disclosing your personal information to various entities within McAllister Private Wealth and third parties where necessary to provide you with our products and services.  

These third parties may include government departments or other regulatory authorities and professional associations, lawyers, auditors, financial market and clearing and settlement facility operators, lenders, credit providers, insurers and audit insurance providers, custodians, share registries, certain software and IT providers, third parties engaged to perform administrative tasks, professional advisers or, if authorised by you, your staff, family members, and associated entities. This disclosure is always on a confidential basis.

We may also disclose your personal information with your consent or if disclosure is required or authorised by law.

Direct Marketing

McAllister Private Wealth does not use or disclose personal information for the purposes of direct marketing. We do not send promotional materials or advertising communications to clients or third parties. Should this practice change in the future, we will update this privacy policy accordingly and ensure compliance with the Australian Privacy Principles.

How can you check, update or change the information we are holding?

We seek to ensure personal information we hold is accurate, current, complete, relevant and not misleading. Under the Privacy Act, you have a right to access and seek correction of your personal information that we collect and hold.

If at any time you would like to access or correct the personal information we hold about you, or you would like more information about information security or privacy please contact either via:

Privacy Officer
C/- McAllister Private Wealth
Level 12, 390 St Kilda Road
Melbourne VIC 3004
Email: [email protected]
Telephone: (03) 9975 7201

We will grant access to the extent required or authorised by the Privacy Act or other law and take steps reasonable in the circumstances to correct personal information where necessary and appropriate. To obtain access or make a correction to your personal information we may have to verify your identity.

In some limited situations, we may need to refuse access to your information or refuse a request for correction. We will advise you as soon as possible after your request if this is the case and the reasons for our refusal.

What happens if you want to complain?

We welcome your questions and comments about how we manage your privacy. If you have any concerns about whether we have complied with the Privacy Act, the Australian Privacy Principles or this Privacy Policy, please write to our Privacy Officer at:

Privacy Officer

C/- McAllister Private Wealth
Level 12, 390 St Kilda Road
Melbourne VIC 3004
Telephone: (03) 9975 7201

We will consider your complaint through our internal complaints resolution process, and we will try to respond with a decision within 30 days of you making the complaint.

If you are dissatisfied with the outcome of your privacy complaint, you may refer the complaint to the Office of the Australian Information Commissioner (OAIC) on 1300 363 992 or via email [email protected]

Your consent

By asking us to assist with your financial planning, insurance, or other servicing needs, you consent to the collection and use of the information you have provided to us for the purposes described above.

Right to Erasure

You have the right to request the deletion of your personal information held by us. Upon receiving such a request, we will take reasonable steps to delete or de-identify your information unless we are legally required to retain it.

Consent for Sensitive Information and Digital Tools

We may collect sensitive information from you, such as health details, financial data, or identification documents, where it is necessary to provide our services or meet legal obligations. We will always seek your informed, voluntary, and specific consent before collecting or using any sensitive information.

In addition, we use digital tools and AI technologies (such as Fireflies, Adobe Sign, Microsoft365 Copilot, Basecamp, Plutosoft, MS Teams and Zoom) to support our internal operations, including meeting transcription, summarisation, and document processing. Where these tools involve the handling of personal or sensitive information, we will:

  • Clearly inform you of the purpose and nature of the data use.
  • Seek your explicit consent where required.
  • Provide you with the option to decline participation in AI-related processing.

Use of Artificial Intelligence (AI)

The use of AI tools within McAllister Private Wealth is conducted in a manner that safeguards your privacy, security, and complies with the APPs and Privacy Act. When using commercially available AI products, we ensure that the privacy obligations apply to any personal information input into an AI tool, as well as the output data generated by AI where it contains personal information.

We will not utilise your personal information to train AI systems without first obtaining your explicit, informed consent. You will have the opportunity to decline participation in any AI-related information usage.

Due diligence is conducted on all AI tools to ensure they are suitable for the intended uses, including considering potential privacy and security risks, and who will have access to personal information. We will not enter your personal information into publicly available generative AI tools.

We use AI tools such as Fireflies and Microsoft365 Copilot to support our internal research and productivity. These tools do not make decisions that affect clients or individuals. All decisions involving personal information are reviewed and made by qualified human staff.

Data Breach Notification

In the event of a data breach, we will notify affected individuals as soon as practicable. Our data breach response plan includes steps to contain the breach, assess risks, and notify the Office of the Australian Information Commissioner (OAIC) if required.

Overseas Disclosure of Personal Information

We may disclose your personal information to overseas recipients in the course of providing our services. This includes the use of third-party platforms and tools that process or store data outside Australia.

In particular, we use services such as Fireflies, Microsoft365 Copilot, Zoom, Adobe Sign, and Basecamp, which may store or process your personal information in countries including, but not limited to, the United States. These services assist with meeting transcription, summarisation, productivity enhancement, video conferencing, secure electronic document signing, and project management. For example, Zoom cloud recordings and transcripts may be stored in the United States unless otherwise configured, and Adobe Sign agreement data may be stored in Australia, the United States, or other regionsBasecamp data is hosted in the United States and is used to manage internal workflows and client project coordination.

We take reasonable steps to ensure that any overseas recipients of your personal information do not breach the Australian Privacy Principles (APPs). This includes ensuring that such recipients are either:

  • Subject to a law or binding scheme that is substantially similar to the APPs, or
  • Contractually bound to comply with privacy obligations that reflect the APPs.

By engaging with our services, you consent to the disclosure of your personal information to these overseas recipients for the purposes described above.

Updating this policy 

This Privacy Policy was prepared on 28th May 2025. We may update it at any time. The new version will be published on our website.