Client Portal
Book Initial Chat

Privacy Policy

Our Commitment to Your Privacy

Story Wealth Management Pty Ltd (ABN 27 091 207 000), a Corporate Authorised Representative of SWM (Aust) Pty Ltd (ABN 79 631 564 853, AFSL 515107), respects your right to privacy. We handle personal information in accordance with the Privacy Act 1988 (Cth) and the Australian Privacy Principles (APPs).

We are also bound by obligations to collect certain information in order to provide regulated financial services under the Corporations Act (Cth) 2001,  Anti-Money Laundering and Counter-Terrorism Financing Act 2006 (Cth), Insurance Contracts Act 1984 (Cth), Income Tax Assessment Act 1936 (Cth), and the Notifiable Data Breaches (NDB) Scheme.

  1. What We Collect

We collect personal information that helps us provide financial advice and related services. This may include:

  • Identity details (name, date of birth, address, contact details);
  • Financial, tax, and employment details;
  • Health and insurance information (where required);
  • Sensitive information only with your consent.

If you choose not to provide required information, we may be unable to offer or manage our services effectively.

  1. How We Collect Information

We usually collect information directly from you — through meetings, phone calls, forms, or secure electronic communication.  We may record client meetings and use an AI tool to produce transcripts and filenotes. As with all your information, the transcripts and file notes use secure software and are stored in accordance with our stringent data security. 

We will always advise you when we intend to record a meeting and seek your explicit consent to do so prior to starting the recording.  You may decline to have any meeting recorded if you are not comfortable.

We may also collect information from:

  • Your authorised representatives (e.g., accountant, solicitor, executor);
  • Employers, superannuation funds, insurers, or other financial institutions;
  • Public registers and government agencies.

Our organisation is committed to protecting customers and employees from fraudulent or “spoof” emails — messages that appear legitimate but are sent in a malicious manner.

To safeguard against spoofing:

  • No sensitive requests: We will never ask for personal or confidential information via email and will use our secure client portal.
  • Email verification: Official emails will always include the sender’s name, address, and a clear subject line.
  • Attachments and links: We will never ask you to open attachments or click links within emails.
  • Professional tone: We will never use threats or intimidation in email communication.
  • Employee training: Staff receive regular education on identifying and reporting spoof emails and phishing attempts.
  • System monitoring: Our email systems are continually monitored for suspicious activity, and any incidents are promptly investigated.
  1. Why We Collect, Use and Disclose Information

We collect, use, and disclose personal information to:

  • Provide, manage, and improve our financial services;
  • Verify your identity and meet legal obligations (e.g., AML/CTF);
  • Prevent fraud and meet compliance or audit requirements;
  • Communicate with you, including sending information about our services (you may opt out at any time).
  1. How We Store and Protect Your Information

Your information is stored securely in Australia in either electronic or paper form. We apply strict access controls, data encryption, and staff training to protect information from misuse, loss, or unauthorised access.

When no longer needed, data is securely destroyed or de-identified.

  1. Disclosure to Third Parties and Overseas

We may share personal information with:

  • Insurers, fund managers, banks and superannuation providers.
  • IT and administrative service providers
  • Auditors, compliance bodies, and regulators (e.g., ASIC, AUSTRAC, ATO)
  • SWM (Aust) Pty Ltd (AFSL 515107) and related entities.

Most data is stored in Australia, but some service providers may operate overseas. Others may store data overseas  (e.g., on cloud platforms). We ensure all third parties comply with privacy requirements equivalent to the APPs (APP 8) and conduct regular due diligence on our service providers that operate overseas, to ensure they maintain the required levels of privacy controls and data security.

  1. Marketing and Communication

We may contact you about products and services that may be relevant to you. You can opt out of marketing communications at any time by contacting us at support@storywealth.com.au.

  1. Access and Correction

You may request access to, or correction of, your personal information by contacting us at support@storywealth.com.au.

We will respond within a reasonable timeframe and may charge a small fee for access.

If we refuse your request, we will provide written reasons and information on how to lodge a complaint (APP 12 & 13).

  1. Complaints and Further Assistance

If you have a concern about how we handle your information, please contact us at compliance@storywealth.com.au.

We will acknowledge your compliant within 24 hours after receipt of your complaint. If further information is needed, we will request it from you to resolve your complaint.

We will provide an internal dispute resolution (IDR) response within 30 calendar days. If your complaint is complex or taking longer than expected, we will contact you and provide a date by which you can reasonably expect a response.

  1. Updates

We may update this policy periodically. The current version is always available at www.storywealth.com.au or by calling 03 8560 3188.

 

Contact Us

Story Wealth Management Pty Ltd

PO Box 4079, Auburn South LPO VIC 3122

Email: compliance@storywealth.com.au | Phone: 03 8560 3188

This Privacy Policy was last revised on 24 November 2025

Who we are

Our website address is: https://sample.sansiromedia.com.

What personal data we collect and why we collect it

Comments

When visitors leave comments on the site we collect the data shown in the comments form, and also the visitor’s IP address and browser user agent string to help spam detection.

An anonymised string created from your email address (also called a hash) may be provided to the Gravatar service to see if you are using it. The Gravatar service privacy policy is available here: https://automattic.com/privacy/. After approval of your comment, your profile picture is visible to the public in the context of your comment.

Media

If you upload images to the website, you should avoid uploading images with embedded location data (EXIF GPS) included. Visitors to the website can download and extract any location data from images on the website.

 

Contact forms

Cookies

If you leave a comment on our site you may opt-in to saving your name, email address and website in cookies. These are for your convenience so that you do not have to fill in your details again when you leave another comment. These cookies will last for one year.

If you visit our login page, we will set a temporary cookie to determine if your browser accepts cookies. This cookie contains no personal data and is discarded when you close your browser.

When you log in, we will also set up several cookies to save your login information and your screen display choices. Login cookies last for two days, and screen options cookies last for a year. If you select “Remember Me”, your login will persist for two weeks. If you log out of your account, the login cookies will be removed.

If you edit or publish an article, an additional cookie will be saved in your browser. This cookie includes no personal data and simply indicates the post ID of the article you just edited. It expires after 1 day.

 

Embedded content from other websites

Articles on this site may include embedded content (e.g. videos, images, articles, etc.). Embedded content from other websites behaves in the exact same way as if the visitor has visited the other website.

These websites may collect data about you, use cookies, embed additional third-party tracking, and monitor your interaction with that embedded content, including tracking your interaction with the embedded content if you have an account and are logged in to that website.

Analytics

 

Who we share your data with

If you request a password reset, your IP address will be included in the reset email.

 

How long we retain your data

If you leave a comment, the comment and its metadata are retained indefinitely. This is so we can recognise and approve any follow-up comments automatically instead of holding them in a moderation queue.

For users that register on our website (if any), we also store the personal information they provide in their user profile. All users can see, edit, or delete their personal information at any time (except they cannot change their username). Website administrators can also see and edit that information.

 

What rights you have over your data

If you have an account on this site, or have left comments, you can request to receive an exported file of the personal data we hold about you, including any data you have provided to us. You can also request that we erase any personal data we hold about you. This does not include any data we are obliged to keep for administrative, legal, or security purposes.

 

Where we send your data

Visitor comments may be checked through an automated spam detection service.

Your contact information

Additional information

How we protect your data

What data breach procedures we have in place

What third parties we receive data from

What automated decision making and/or profiling we do with user data

Industry regulatory disclosure requirements

Feedback Form

We welcome all feedback.

Simply complete the form below and we’ll endeavour to come back to you within one business day.