Privacy policy

ASF Group Limited respects the privacy of the individuals and groups we deal with, and we uphold high standards of privacy practice and security. This policy explains how we handle personal information and how we interact with you online.

Whenever we handle personal information, we take steps to ensure that appropriate standards of privacy practice and security are applied.

This Privacy Policy sets out why we need to collect personal information, how we collect it, what we do with it, how it is stored, and who we might share it with. The Policy also describes how you can access or correct information we hold about you, how you can ask further questions or make a complaint, and information about our website and online activities.

The information we collect

For most interactions with ASF Group, it is necessary for us to collect personal information such as your name, contact details, and professional information. We may also need to collect other personal details relevant to the nature of your enquiry or engagement with us.

Sensitive information

Generally, we do not collect sensitive information about you unless required or permitted by law or where you consent for us to do so. Sensitive information will only be collected if it is relevant to the service or function you are engaging us to provide.

Sensitive information includes information relating to race, political or religious beliefs, criminal convictions, and membership of professional or trade associations.

We will not collect sensitive information about you where this is expressly prohibited by applicable law.

Why we collect personal information

We collect personal information about you which is reasonably necessary to:

• Respond to enquiries, contact requests, and correspondence submitted through our website or directly to us
• Consider approaches, partnership proposals, and investment enquiries made to us
• Provide information about ASF Group, its investment activities, and its subsidiaries
• Maintain your contact details for ongoing business communications
• Fulfil our legal obligations, including those relating to ASX continuous disclosure, anti-money laundering, counter-terrorism financing, and the prevention of fraud

Without such information, we may not be able to respond to your enquiry or provide you with an appropriate level of service.

How we collect your information

We collect personal information about you directly from you — this can be in person, in documents you provide, from telephone calls, emails, or your access to our website. We may also collect or otherwise process information from public sources that are published, shared by you, or otherwise lawfully in the public domain.

We may also collect your personal information from third parties including your adviser, employer, agents, introducers, referrers, or our related companies and service providers.

How we store your information

We keep personal information in physical and electronic records, at our premises and the premises of our service providers, which may include processing or storage in the cloud. Where this occurs, we take steps to protect the security and integrity of personal information.

We retain personal information for as long as necessary for the purpose for which it was provided to us, or as required to satisfy any legal or regulatory requirements. We also keep records of our interactions with you where relevant to ongoing business dealings.

How we use your information

We use personal information about you for the purpose for which it was provided to us, including to:

• Respond to and manage enquiries and correspondence
• Administer and manage our business activities and investor relations functions
• Communicate with you and deal with or investigate any complaints or enquiries
• Develop and improve our website and online communications

We may also:

• Anonymise your data for our own purposes including market research
• Use personal information for the prevention and mitigation of fraud and other financial crimes
• Use your personal information to inform you of investment opportunities or to provide information about our activities which we expect may be of interest to you — however, if you do not want to receive such communications you can contact us at any time using the details below

We do not sell personal information for marketing purposes to other organisations.

When your information is disclosed

We may share personal information within the ASF Group, and may disclose personal information outside the ASF Group:

• To our service providers, who provide services in connection with our business activities, including legal, accounting, technology, data processing, and website services
• To comply with any legal or regulatory obligations, including those imposed by ASIC, the ASX, or obligations arising under anti-money laundering and counter-terrorism financing laws
• To our affiliates and related entities in the course of ordinary business operations
• In connection with our investment activities, including mergers and acquisitions, management of business assets, divestments, and reorganisations

In some circumstances, the parties to whom we disclose personal information may operate outside of Australia — this includes locations in jurisdictions such as Hong Kong, Singapore, China, Macau, the United Kingdom, and Europe. Where this occurs, we take steps to protect personal information against misuse or loss and to comply with applicable law in respect of the transfer of data between jurisdictions.

Keeping information accurate and up to date

We take reasonable steps to ensure that all information we hold is as accurate as possible. You are able to contact us at any time and ask for its correction if you feel the information we have about you is inaccurate or incomplete.

Keeping information secure

We use security procedures and technology to protect the information we hold. Access to and use of personal information within ASF Group is managed to prevent misuse or unlawful disclosure of that information — this includes internal policies and monitoring of staff.

If other organisations provide support services, we require them to take appropriate technical and organisational measures to secure the privacy of the information provided to them.

Online interaction

Dealing with ASF Group online

When you visit our website you will generally browse anonymously unless you have submitted a form or accessed the website from a personalised communication from ASF Group.

For all visitors to our website, we use cookies and other web browser technologies to collect information such as your browser type and your IP address. We may also derive the location associated with an IP address. Once you have provided us with personal information by completing a form online, we may be able to identify you and may combine that with other information in order to provide you with a better online experience.

Cookies

A cookie is a packet of information placed on a user's computer by a website for record-keeping purposes. We use cookies to enable basic functions and services on our website. We also set optional cookies to help us improve our website.

The types of cookies we use:

Strictly necessary cookies — These cookies are necessary for the website to function and cannot be switched off. They do not store any personally identifiable information.

Analytics and performance cookies — These cookies allow us to understand how people use our website so that we can improve the user experience. Information collected by these cookies is typically aggregated and anonymous.

Functional cookies — These cookies enable the website to provide enhanced functionality and personalisation. If you do not allow these cookies, some services may not function properly.

You can configure your browser to accept all cookies, reject all cookies, or notify you when a cookie is sent. If you disable the use of cookies on your browser, you may not be able to access all of the content and functionality on our website.

Your rights and additional information

How you can access or correct your information

You can contact us to request access to or correction of your personal information. In normal circumstances we will give you full access or make the requested corrections. However, there may be some legal or administrative reasons to deny these requests. If your request is denied, we will provide you with the reason why where we are able to do so.

Data breach notification

ASF Group has processes in place to investigate data breaches involving personal information and will notify you of a data breach where we are required to do so under applicable legislation, including the Privacy Act 1988 (Cth) and the Notifiable Data Breaches scheme.

Contact us

If you have any questions or complaints regarding privacy or information handling, please contact us in writing at:

ASF Group Limited Privacy Officer

• Email: [email protected]
• Website: asfgroupltd.com

We will respond to let you know who will be handling your matter and when you can expect a further response.

Changes to this policy

We may update this Privacy Policy from time to time to reflect changes in our practices, legal obligations, or the nature of our website. The updated policy will be posted on this page with the revised date shown above. We encourage you to review this policy periodically.

This Privacy Policy applies to ASF Group Limited and its website. It does not govern the privacy practices of ASF's listed investee companies, which may publish their own privacy policies independently.

ASF Group Limited (ASX: AFA)

Last updated: March 2026