
Andrea’s SMSF Management Pty Ltd — Privacy Policy
Introduction Andrea’s SMSF Management Pty Ltd (we, us, our) is committed to protecting the privacy, confidentiality, and security of the personal information we hold. This Privacy Policy explains how we collect, hold, use, disclose, and manage personal information and how we meet our privacy and anti‑money laundering/ counter‑terrorism financing (AML/CTF) obligations. We comply with the Privacy Act 1988 (Cth), the Australian Privacy Principles (APPs) and the Notifiable Data Breaches (NDB) scheme. Where applicable, we also comply with AML/CTF laws and AUSTRAC requirements.
Scope
This policy applies to all personal information we collect about clients, prospective clients, employees, contractors and other individuals in connection with our SMSF administration services.
What personal information we collect
We collect personal information that is reasonably necessary for our business and to provide our services, including:
-
identity information: name, date of birth, gender;
-
contact information: postal and residential addresses, telephone numbers, email addresses;
-
financial and superannuation information: SMSF details, member accounts, bank account details, investments and transaction history;
-
identity verification information: driver’s licence, passport, tax file number (TFN) where required, and other identity documents;
-
information about beneficial owners or controlling persons where the client is an entity (beneficial ownership);
-
technical information when you use our websites: IP address, browser type, date/time of access and pages visited (collected as aggregated analytics unless you provide personal information on the site);
-
other information necessary to provide our services, respond to enquiries, comply with legal obligations or perform our business functions.
How we collect personal information
-
Directly from you when you apply for services, complete forms, communicate with us, use our online services, or otherwise provide information.
-
From third parties where authorised by you or where permitted by law (for example, your financial adviser, employer, other service providers, publicly available sources).
-
For identity verification and AML/CTF compliance we may collect information from third‑party verification services and publicly available registers.
Use of personal information
We use personal information to:
-
provide, manage and administer SMSF services and related products;
-
verify identity and perform customer due diligence required under AML/CTF laws;
-
communicate with you and respond to enquiries or complaints;
-
assess and process applications, transactions and claims;
-
meet our legal, regulatory and reporting obligations (including reporting to AUSTRAC where required);
-
perform business functions such as record keeping, audits, internal reporting, research and product development;
-
manage risk and prevent fraud and other unlawful activity.
Lawful basis for collection and use
We collect and use personal information where it is necessary for the performance of our services, to comply with legal obligations (including AML/CTF laws), or with your consent where required.
Refusal to provide requested information may affect our ability to provide services to you.
Sensitive information
Sensitive information, including identity documents or other identifiers, will only be collected where necessary (for example, to open bank accounts, verify identity, or comply with AML/CTF obligations). We will collect such information only with your consent where required by law.
Disclosure of personal information
We may disclose personal information to:
-
third‑party service providers who perform functions on our behalf (e.g., banking and payments processors, IT providers, document storage, auditors, valuers, share registries, fund managers);
-
authorised representatives, attorneys or other persons you nominate (for example, your financial adviser or broker);
-
regulators, government agencies and law enforcement (including AUSTRAC) where required by law;
-
entities involved in administering or managing superannuation products (trustees, managers, master trust or wrap providers, insurance companies);
-
counterparties, introducers, guarantors and their advisers where relevant to a transaction or service;
-
prospective purchases or parties involved in business restructures where necessary for the transaction
Security, storage and retention
We take reasonable technical and organisational measures to protect personal information from misuse, interference, loss and unauthorised access, modification or disclosure. Measures include access controls, encryption where appropriate, secure facilities and vendor contractual requirements.
We retain personal information only for as long as necessary to fulfil the purposes it was collected, to meet legal or regulatory obligations (including AML/CTF record‑keeping requirements, generally seven (7) years unless a different period applies), or to resolve disputes. When records are no longer required they will be securely destroyed or de‑identified.
Data breaches and notification
We maintain an incident response plan. If we become aware of an eligible data breach under the NDB scheme, we will take steps to contain and assess the breach and notify affected individuals and the Office of the Australian Information Commissioner (OAIC) where required.
Access, correction and deletion
You may request access to personal information we hold about you, request correction of inaccurate information, or ask for deletion where lawful and appropriate. To request access or correction, contact our Privacy Officer (details below). We will respond within a reasonable period and advise you if access cannot be provided for legal or practical reasons. If you are not satisfied after our internal review, you may refer the matter to the OAIC.
Complaints
If you have a privacy complaint, contact us first and we will attempt to resolve it promptly:
Andrea’s SMSF Management Pty Ltd
Andrea Birchell
Email: admin@andreasmsf.com.au
Mail: PO Box 118, Narangba QLD 4504
Phone: 07 3886 8604
We will acknowledge your complaint, investigate and provide a response within a reasonable time. If you remain dissatisfied you may lodge a complaint with the Office of the Australian Information Commissioner: www.oaic.gov.au.
AML/CTF information and reporting
We collect and verify identity and UBO information as required by AML/CTF laws. We are required to retain identity and transaction records and report suspicious matters to AUSTRAC. We may also perform ongoing monitoring and enhanced due diligence where risks are elevated. We will only use and disclose AML/CTF related information to the extent required by law.
Changes to this Privacy Policy
We may amend this policy from time to time. We will publish the updated policy on our website and, for material changes affecting your rights or the way we handle personal information, we will notify affected clients directly where practicable.
Further information
For more information about privacy rights and the APPs, please visit the OAIC website at www.oaic.gov.au. For AML/CTF guidance, see AUSTRAC at www.austrac.gov.au.
Contact us
Andrea’s SMSF Management Pty Ltd
Email: admin@andreasmsf.com.au
Mail: PO Box 118, Narangba QLD 4504
Phone: 07 3886 8604
Effective date This policy is effective from the date it is published on our website. We will review the policy periodically and update as required by law or business needs.