Supervision of advice across the firm.

Alcova works inside your firm, only within the permissions and data you already grant. It gives compliance oversight of the advice the firm produces, checked against your rules before it reaches a client.

We’ll take your compliance and risk team through it directly.

Advice work Firm’s rules Audit trail On the record · time-stamped
The compliant path, by default
The compliant path runs Running
File note produced in the firm’s format
Advice classified as it’s created
Output checked against your rules before a client sees it
Every action logged, immutable
On the record · time-stamped · ready for audit
What Alcova does for compliance

The standard, applied as the work gets done.

Access stays inside your permissions.

It works through the access your firm already grants, scoped to each person and client. The information barriers and practice-group boundaries you run today hold inside Alcova.

Access
Scoped to each person, each client
Reaches only the client records the firm allows
Information barriers respected
Nothing sits outside your existing controls

The compliant path is the default.

The file note comes out in the firm’s format, advice is classified as it’s produced, and outputs are checked against your rules before a client sees them. Advisers don’t have to remember the standard; it’s applied as they work.

The default path
Compliant by default
File note in the firm’s format
Advice classified as it’s produced
Checked in the flow, not in a queue afterwards
Before it leaves

Client data caught before it ever leaves.

Models tuned to the data a wealth firm holds read every outbound draft and catch the PII in it: a name, a TFN, an account number, a date of birth, flagged before it can reach an outbox or an outside tool.

Outbound draft Screening

Hi Margaret Chen, confirming your rollover is underway. Your TFN 123 456 789, account 4471 0093 5520 and date of birth 04/09/1961 are on file. Paperwork for the Chen Family SMSF is attached.

Wealth-tuned model
  • Name
  • TFN
  • Account number
  • Date of birth
  • SMSF
0 caught and flagged

Illustrative. PII caught and flagged before the draft can leave.

The standard, enforced

Every advice document, to the firm’s template.

Statements of advice, records of advice, file notes: each one built from your approved templates, in the firm’s format. The full record is kept and time-stamped as the work is produced, not pieced together later for an audit.

Statement_of_Advice.pdf Firm template
  • Scope of advice
  • Recommendation
  • Basis for the advice
  • Fees and costs
  • Product disclosures
  • Adviser declaration
Filed to the record, time-stamped and ready for audit
Approved products only

Advice checked against your approved list.

Every recommendation is checked against your approved product list and product guides as the advice is written. Anything off-list is held before it reaches a client. Oversight of the advice, not the adviser.

Recommendations, checked Checking
Vanguard Diversified Bonds Index On your list
BetaShares Australia 200 ETF On your list
Macquarie Cash Management Account On your list
Offshore Growth Fund (wholesale) Off list, held
iShares Core S&P/ASX 200 On your list
Only approved products reach the client

Illustrative. Oversight of the advice, not the adviser.

Where to go next

Two places for a closer look.

Real-time prevention
Email Risk Protection

Misdirected email is one of the largest ways client data leaves a firm. Alcova challenges the risky send in real time, before it leaves Outlook, and puts every check on the record.

See Email Risk Protection
The posture
Security

Data residency, certifications, access control, and how your data is handled and never used to train an AI.

See security
Common questions

The questions compliance teams ask first.

How do we supervise advice across hundreds of advisers?

Every output is checked against your rules as it’s produced, and every piece of advice is classified and recorded. Oversight covers the firm’s advice as a whole, not just the files sampled for review.

What can the system access?

Only the client data your firm’s permissions already allow, enforced per user. Information barriers and practice-group boundaries are respected. Nothing sits outside your existing controls. Security.

What can we show an auditor?

SOC 2 Type II, a complete and time-stamped record of the work, and an immutable log of every action the system takes. The SOC 2 Type II report is available through our Trust Centre. Security.

Do you train on our client data?

No. It is never used to train any AI, and there is no cross-customer training. Security.

For compliance and risk

See it under your controls.

See how access is scoped, how outputs are checked before they reach a client, and how the record holds up at audit, on your own stack. We’ll take your team through it directly, or see pricing first.

Request a walkthrough