ASIC Testimonials – What Small Businesses Need To Know About Advertising And Compliance

Customer testimonials are powerful. A genuine review or case study can build trust, lift conversion rates and help your small business stand out in a crowded market.

But there are legal rules about how you collect, present and publish testimonials in Australia - and those rules are stricter if your product or service falls within the Australian Securities and Investments Commission’s (ASIC) remit (for example, credit, insurance, superannuation or investments).

In this guide, we’ll unpack what people often mean when they say “ASIC testimonials,” where the legal boundaries actually sit, and a practical, step-by-step way to use testimonials confidently without breaching Australian Consumer Law (ACL) or ASIC’s expectations.

The result: you can showcase happy customers the right way, protect your reputation and keep regulators onside while you grow.

What Do We Mean By “ASIC Testimonials”?

“ASIC testimonials” isn’t a formal legal term. In practice, people use it to describe testimonials or endorsements used to promote financial products and services that ASIC regulates.

If you advertise credit, financial advice, managed funds, superannuation, insurance or similar products, your testimonials will be assessed against ASIC’s laws and guidance on fair, balanced and non‑misleading promotions, alongside the general prohibitions on misleading or deceptive conduct.

For all other businesses, the same core principles apply under the Australian Consumer Law: testimonials must be genuine, accurate and not likely to mislead. So even if you’re not regulated by ASIC, you should treat testimonials with the same level of care you’d expect in a regulated sector.

Why Testimonials Matter - And Where Businesses Go Wrong

Done well, testimonials provide social proof, reduce buying hesitation and humanise your brand. However, regulators regularly act against businesses that cross the line, including:

• Publishing fake or fabricated reviews (including “astroturfing” or paying for undisclosed positive reviews)
• Cherry-picking the most positive quotes in a way that hides material limitations, risks or typical results
• Editing testimonials so heavily that the meaning changes, creating a misleading overall impression
• Using testimonials that imply guaranteed future outcomes (a particular concern in financial promotions)
• Failing to obtain consent to publish names, images or other personal information

The legal bottom line is simple: don’t mislead. Under section 18 of the ACL, conduct that misleads or deceives (or is likely to) is unlawful. This applies to testimonials just like any other advertising statement, and it’s why careful processes and checks matter from day one.

If you’re building out your compliance framework, it’s sensible to align advertising practices with your broader approach to consumer law - for example, the same risk lens you’d apply when reviewing claims covered by section 18 of the ACL should be applied to testimonials.

How To Use Testimonials Compliantly (Step‑By‑Step)

1) Map Your Regulatory Perimeter

Start by confirming whether your product or service is regulated by ASIC. If you’re in financial services or credit activities, you’ll be held to stricter promotional standards. If you’re outside that perimeter, the ACL still applies to your testimonials and wider advertising.

Document the decision and keep a short file note. Having a clear paper trail helps if questions arise later.

2) Collect Reviews Ethically (No Scripts, No Pressure)

• Invite honest feedback from real customers who actually used your product or service.
• Avoid coaching, scripting or incentivising only positive comments - incentives should never bias the outcome.
• Do not create or post fake reviews, and do not ask friends, family or staff to pose as customers.

If you’re working with creators or collecting video testimonials, have a simple written consent process that covers publishing and re‑use of content. Many businesses use a short consent form (for example, a Privacy Consent Form) or a straightforward video/photography release. If you need a structured approach to talent or content permissions, a clear media release form is a practical option.

3) Verify Authenticity And Keep Evidence

Put basic checks in place so you can verify a testimonial’s accuracy. This could include:

• Confirming the customer’s purchase date and the product/service used
• Keeping copies of original emails or survey responses
• Storing the testimonial, date received and publishing approval in a central register

If a regulator ever asks you to substantiate a claim, you’ll want quick access to your records.

4) Present Testimonials In Context (Avoid Cherry‑Picking)

Testimonials must reflect a fair, typical experience and not overstate results. Be cautious about:

• Editing that changes meaning, tone or balance
• Highlighting a rare “best case” result without context
• Pairing glowing quotes next to bold claims that weren’t actually made by the customer

Where appropriate, use clarifying context. For example, if a case study describes a result that depends on specific conditions, make that clear so the average consumer isn’t misled.

5) Avoid Problematic Promises (Especially For Financial Products)

In financial promotions, be extra careful. Testimonials must not imply guaranteed returns, understate risks, or suggest that past performance is a reliable predictor of future results.

Across all industries, don’t allow testimonials to morph into promises you can’t stand behind. If a statement reads like a claim, you should be able to substantiate it.

6) Get Proper Consent And Respect Privacy

Before you publish names, images, job titles or other personal information, obtain clear, written permission. Your consent language should cover where the testimonial will appear, how long you may use it, and whether it can be edited for length without changing meaning.

If you’re collecting or storing personal information, you should have a current Privacy Policy and, where relevant, a Privacy Collection Notice that explains how testimonial information will be used.

7) Keep Records, Monitor And Respond

Maintain a central register with the testimonial text, date, source, consent form and any approvals. Schedule periodic reviews to ensure published testimonials remain current and accurate.

Put in place a simple process to handle complaints or removal requests. If you host customer reviews on your website, your Website Terms and Conditions should outline moderation rules and takedown criteria.

What Laws Apply To Testimonials In Australia?

Australian Consumer Law (ACL)

The ACL applies to most businesses in Australia. In short, you must not engage in misleading or deceptive conduct or make false or misleading representations. This applies equally to your own advertising claims and to testimonials you choose to publish.

If you’re evaluating your marketing copy and customer quotes, review them through the lens of section 18 of the ACL and your overall approach to fair representations. The question is not just whether each sentence is literally true, but what impression the overall presentation creates for the average consumer.

ASIC Act And Financial Promotions (If Applicable)

ASIC regulates financial products and services under the Australian Securities and Investments Commission Act 2001 (ASIC Act), as well as related laws. Promotional material - including testimonials - must be accurate, balanced and not misleading.

If you operate under an Australian Financial Services Licence or Credit Licence, your promotional reviews should be assessed like any other advertisement for compliance risks. This typically includes ensuring risk disclosures aren’t downplayed, avoiding implied guarantees and presenting benefits and limitations in fair balance.

Privacy Law And Consent

Collecting, storing and publishing testimonials will usually involve personal information. Under the Privacy Act 1988 (Cth) and the Australian Privacy Principles, you should be transparent about how you collect testimonial content and how you intend to use it.

Make sure your Privacy Policy is up to date, and consider using a short-form Privacy Collection Notice at the point of capture. Where you’re featuring names, images or roles, written consent is best practice and helps avoid disputes.

Industry Codes And Sector-Specific Rules

Some professions (for example, certain health sectors) have additional advertising rules or restrictions on testimonials. If you’re in a regulated profession, check any applicable codes of conduct alongside general consumer law obligations.

When in doubt - particularly for financial services marketing - it’s wise to speak with a consumer law lawyer or your compliance team before a campaign goes live.

What Documents And Processes Should You Have In Place?

Strong processes make compliant testimonials easier. Consider the following documents and tools:

• Privacy Policy: Explains how you collect, store, use and disclose personal information, including testimonial content. A current, tailored Privacy Policy supports your compliance obligations.
• Privacy Collection Notice: A short notice at the point of collection setting out why you’re collecting a testimonial and how it will be used. See Privacy Collection Notice.
• Consent/Release Form: Written permission from the individual to publish their words, name and image across your channels. If you’re capturing images or video, you can adapt a media release approach - start with practical guidance like this media release form guide - or use a simple Privacy Consent Form.
• Website Terms And Conditions: Sets out your site rules, review moderation approach and takedown process if you host user reviews. You can implement these through Website Terms and Conditions.
• Advertising And Review Policy (Internal): A short internal policy describing how reviews are collected, verified, edited (for length only), approved and removed when out of date.
• Record-Keeping Register: A simple table storing the testimonial, date, source, consent evidence and publication locations. This helps demonstrate your compliance if asked by a regulator.

If you plan to feature longer case studies, consider using a lightweight content approval workflow. Having the right templates and processes in place upfront reduces the risk of something slipping through once you’re busy with campaigns.

Practical Tips To Reduce Risk (Without Losing Marketing Impact)

• Favour recency: Old testimonials can be misleading if your product, pricing or performance has changed. Review periodically for accuracy.
• Use “light edits” only: If you shorten a quote, do not change the meaning or tone. Keep a copy of the original for your records.
• Be transparent about incentives: If you offer a discount in exchange for feedback, don’t request “only positive” reviews and disclose the incentive where appropriate.
• Watch the overall impression: The law looks at the net impression on an average consumer, not merely each sentence in isolation.
• Train your team: Anyone who can publish to your website or socials should understand these rules and your internal review process.
• Escalate edge cases: If a testimonial borders on a performance promise (especially in finance), get it checked by a compliance lead or a lawyer before publishing.

As your marketing matures, consider a quick compliance review alongside other key policies. For instance, aligning your testimonials approach with your broader consumer law and privacy settings helps keep everything consistent across channels.

Key Takeaways

• “ASIC testimonials” isn’t a legal term, but it’s a useful shorthand for testimonials used to promote financial products or services regulated by ASIC.
• Whether or not you’re in financial services, testimonials must be genuine, accurate and not misleading under the Australian Consumer Law.
• Build a simple, repeatable process: ethical collection, clear consent, fair presentation, record‑keeping and periodic reviews.
• If you handle personal information, use a current Privacy Policy and a Privacy Collection Notice, and obtain written consent before publishing names or images.
• Host reviews responsibly by setting out moderation and takedown rules in your Website Terms and Conditions.
• Financial services and other regulated sectors require extra caution - avoid implied guarantees, balance benefits and risks, and escalate edge cases for review.

If you’d like a consultation on testimonials, advertising compliance and consumer law for your business, you can reach us at 1800 730 617 or team@sprintlaw.com.au for a free, no‑obligations chat.