WHISTLEBLOWER PROTECTION POLICY

First Contact Pty Ltd

Document Control

Policy Title

Whistleblower Protection Policy

Policy ID

FC-GOV-WHISTLE-001

Policy Owner

Head of Governance and Risk

Executive Sponsor

John Ortner, Managing Director

Approval Authority

Executive Steering Committee (ESC)

Effective Date

[Insert Date]

Next Review Due

[Insert Date + 12 months]

Applies To

Employees, contractors, suppliers, board members, clients

Distribution

Internal (Mandatory); External (Summary Statement Online)

Storage Location

FC Hub > Governance & Compliance > Policy Register

Version History

Version

Date

Author

Approved By

Change Description

V1.0

[Insert Date]

Governance & Strategy

John Ortner

Initial release with full legal alignment, escalation tiers, and ESG integration

1. Purpose

This policy ensures First Contact maintains a transparent, fair and legally compliant process for individuals to report suspected wrongdoing. It protects those who speak up in good faith from retaliation, and ensures concerns are handled confidentially and appropriately.

2. Scope

This policy applies to:

  • Current and former employees, contractors, consultants.
  • Suppliers, service providers, board members and external stakeholders.

It covers disclosures involving:

  • Corruption, fraud or theft.
  • Harassment, bullying or discrimination.
  • Bribery, conflicts of interest, or improper conduct.
  • Modern slavery or human rights risks.
  • Environmental or ESG breaches.
  • Material violations of First Contact’s Code of Conduct or relevant laws.

3. Legal Framework

This policy complies with:

  • Corporations Act 2001 (Cth) – Part 9.4AAA
  • Tax Administration Act 1953 (Cth)
  • ASIC Regulatory Guide 270
  • Privacy Act 1988 (Cth)
  • Modern Slavery Act 2018 (Cth)
  • International ESG compliance frameworks (e.g. GRI, UNGC)

To receive legal protections, disclosures must be made to eligible recipients, including:

  • Officers or senior managers of First Contact.
  • The internal Governance & Risk team.
  • First Contact’s external auditor or legal adviser.
  • ASIC or other regulatory bodies.

4. Whistleblower Protections

Eligible whistleblowers are legally protected from:

  • Retaliation or dismissal.
  • Threats or victimisation.
  • Civil or criminal liability (for lawful disclosures).
  • Breach of confidentiality.

All disclosures will be:

  • Treated confidentially.
  • Handled independently of any person named.
  • Investigated fairly and promptly.

Whistleblowers will also be offered post-report welfare support, including access to EAP services.

5. Reporting Channels

Internal:

  • Head of Governance and Risk
  • Managing Director.
  • People & Culture (for HR-related matters).

Anonymous & External:

  • Whistleblower Integrity Form – [Insert secure link or tool].
  • Regulatory Body – e.g. ASIC, ATO.

Reports can be made verbally or in writing, and may be anonymous.

6. Investigation Process and Escalation

6.1 Initial Assessment:

All reports are triaged by Governance within 3 business days and assigned a materiality rating.

6.2 Escalation Matrix:

Risk Level

Type of Disclosure

Escalated To

Level 1

Low-risk, HR or operational matter

Line Manager / People & Culture

Level 2

Policy breach or Code of Conduct issue

Head of Governance

Level 3

ESG, financial, corruption or executive misconduct

Executive Steering Committee (ESC)

Level 4

Legal, regulatory or systemic breach

Managing Director & External Counsel (if required)

Where appropriate, disclosures may be logged in:

  • The Enterprise Risk Register
  • The ESG Compliance Dashboard
  • The Board Risk Report

7. Post-Disclosure Support and Fair Treatment

All whistleblowers:

  • Will be treated respectfully and fairly
  • Will not suffer retaliation or career disadvantage
  • Will have access to independent EAP support services
  • Will be offered a debrief (subject to confidentiality)

First Contact will take disciplinary action against any person found to have retaliated against a whistleblower.

8. Responsibilities

Role

Responsibilities

Whistleblowers

Report honestly and in good faith

Line Managers

Foster a speak-up culture, escalate concerns appropriately

Governance Team

Triage, investigate and resolve reports

ESC

Provide strategic oversight of whistleblower management

Executive Sponsor

Ensure compliance, culture and protection mechanisms

9. Review and Continuous Improvement

This policy will be reviewed annually, or earlier if:

  • Laws or regulatory guidance changes
  • A material whistleblower event occurs
  • Required by the Executive or ESC

Reviews are managed by the Governance & Risk Team and submitted to the ESC for endorsement.

10. Sign-Off

Author:
Governance & Strategy
Date: 2025-03-27

Policy Owner:
Helen Kostakos, Group Administration Manager ] Governance and Risk
Signature: ______________________

Approved by:
John Ortner, Managing Director
Signature: ______________________
Date Approved: 2025-03-27

Whistleblower Protection

First Contact Pty Ltd

Integrity Starts With Speaking Up

At First Contact, we believe that a culture of trust is built on transparency. That’s why we support and protect anyone who chooses to speak up about misconduct, unethical behaviour, or serious wrongdoing.

Our Whistleblower Protection Policy ensures every person — whether employee, contractor, client or supplier — can raise concerns safely and confidentially.

What You Can Report

You can make a report about:

  • Fraud, corruption or bribery.
  • Bullying, harassment or discrimination.
  • Modern slavery or unethical supplier conduct.
  • Environmental or safety risks.
  • Misuse of funds or breaches of our Code of Conduct.

If it doesn’t feel right — we want to know about it.

How to Report a Concern

You can report concerns:

  • Through our confidential Whistleblower Integrity Form.
  • Directly to our Governance and Risk Team.
  • Or to external regulators (ASIC, ATO) where applicable.

You can remain anonymous, and we’ll handle your report with care and discretion.

You Are Protected

Everyone who makes a report in good faith is protected by:

  • Confidentiality of identity.
  • Protection from retaliation or dismissal.
  • Access to support (including EAP services).
  • Legal protections under Australian law.

Governance That Listens

All reports are reviewed independently by our Governance Team and escalated when necessary to our Executive Steering Committee. We are committed to closing the loop with appropriate action, transparency and accountability.

📄 View Our Full Policy

Read our [Whistleblower Protection Policy (PDF)] for more detail or contact the Governance Team via [Insert contact form or FC Hub link].

Whistleblower Protection – Policy Snapshot

First Contact Pty Ltd

Our Commitment

At First Contact, we foster a speak-up culture that protects integrity, transparency, and accountability. Our Whistleblower Protection Policy ensures that anyone who raises concerns about wrongdoing can do so safely, confidentially and without fear of retaliation.

We are committed to protecting whistleblowers and acting decisively on reports of misconduct.

What You Can Report

Reports may relate to:

  • Bribery, fraud, theft or corruption.
  • Unsafe or unlawful practices.
  • Harassment, bullying or discrimination.
  • Modern slavery or human rights concerns.
  • Environmental or ESG violations.
  • Misuse of company resources.
  • Breaches of law or First Contact policy.

Who Can Make a Report

This policy applies to:

  • Employees (current and former).
  • Contractors, consultants and suppliers.
  • Clients, board members and third-party stakeholders.

How to Make a Report

Reports can be made:

  • To a manager, the Governance & Risk team or MD.
  • Via the secure Whistleblower Integrity Form (anonymous available).
  • To external regulators such as ASIC or ATO (where appropriate).

Your Protections

Whistleblowers are protected under Australian law and First Contact policy:

  • Confidentiality of identity and disclosure.
  • Protection from dismissal, demotion or retaliation.
  • Support services, including access to independent EAP
  • Legal immunity for eligible disclosures made in good faith

What Happens Next

  • Every report is reviewed by our Governance Team.
  • Serious matters are escalated to the Executive Steering Committee.
  • Investigations are conducted independently, fairly and promptly.
  • Outcomes are acted upon, and whistleblowers are supported throughout.

Need More Information?

Refer to the full Whistleblower Protection Policy (FC-GOV-WHISTLE-001)
or contact the Governance & Risk team via [Insert internal/external contact form]

Page  of