Privacy Policy — BARRY ASSET FINANCIAL GROUP

Privacy Policy

Objective

This document outlines BARRY ASSET FINANCIAL GROUP’s commitment to protecting the personal information of our clients and investors. Our primary objective is to ensure that all personal information is safeguarded at all times.

Any personal information we collect will only be used for the purposes for which it was collected or as permitted under relevant laws. We are committed to abiding by the Australian Privacy Principles for the protection of personal information, as set out in the Privacy Act 1988 and any other relevant laws.

Personal Information

When we refer to personal information, we mean information from which an individual’s identity is reasonably apparent. The personal information we collect may include your name, date of birth, address, contact details, occupation, and other information necessary for identifying you.

Why We Collect Personal Information

We may collect personal information during the process of providing financial services, including during investment applications, client due diligence, and verification processes. This helps us comply with relevant laws and regulations, including but not limited to:

• Anti-Money Laundering and Counter-Terrorism Financing Act 2006;

• The Privacy Act 1988;

• The Corporations Act 2001.

While we may need to disclose your personal information in certain circumstances, such as to third-party service providers involved in managing your investments, we will only do so as required or authorised by law.

Updating Personal Information

We encourage you to inform us if any of your personal information changes during our relationship. We generally rely on you to ensure that the information we hold is accurate and complete.

Client Access to and Updating Personal Information

You have the right to access the personal information we hold about you. You may request access to this information at any time, in accordance with the Privacy Act 1988.

Using Government Identifiers

If we collect government identifiers, such as your tax file number or Australian Business Number (ABN), we will only use or disclose this information as required by law.

Safety and Security of Stored Information

We take reasonable steps to protect your personal information by storing it in a secure environment, whether in paper or electronic form. We are committed to preventing misuse, loss, unauthorised access, modification, or disclosure of your personal information.

Using Online Services

When you interact with our website or online services, we may collect certain information about your visit, such as your IP address, browser type, and other software or hardware information. We may also use technologies to collect and store information about the pages you visit, the content you view, and the advertisements you interact with.

Information Disclosure for Merger or Sale of Business

If BARRY ASSET FINANCIAL GROUP sells all or part of its business or is involved in a merger, we may transfer or disclose your personal information to the parties involved as part of the transaction. We will ensure that any party receiving your information is bound by confidentiality.

Record Keeping

We will maintain records of your personal information for a period of 7 years as required by law. This includes records related to the verification and identification of our clients.

Change in Our Privacy Policy

We regularly review our policies to stay up-to-date with market expectations and legal requirements. As a result, this privacy policy may change from time to time.

Data Breach Response Plan

In the event of a data breach involving your personal information, BARRY ASSET FINANCIAL GROUP will follow a comprehensive response plan. This includes notifying affected clients, relevant authorities such as the Office of the Australian Information Commissioner (OAIC), and taking steps to mitigate any potential harm.

Why Data Breach Notification is Good Privacy Practice

Notifying clients of a data breach supports good privacy practice by helping clients regain control of their information, demonstrating transparency, and rebuilding trust.

Dealing with Security Breaches of Client Data

Cyber Security Breaches

If there is a cyber security attack that compromises your personal information, BARRY ASSET FINANCIAL GROUP will immediately activate its Incident Response Procedure. This includes notifying the Compliance Team, engaging IT or Cyber Security Consultants, and informing relevant stakeholders, including ASIC and the OAIC, if necessary.

Non-Cyber Security Breaches

If there is a non-cyber security breach that results in the loss or compromise of your data, such as lost or stolen records or unauthorised access by employees, we will promptly activate our Incident Response Process. This includes notifying relevant parties and ensuring all legal and contractual obligations are met.

Contact Us

If you have any questions or concerns about our privacy practices, please contact us at contact@barryasset.com..