Online investment adviser Stockspot has mistakenly released the financial and personal details of customers in an email sent this morning.

Customer information made available in breach: Investment value

Investment value The shares invested in

The shares invested in Withdrawals and deposits

Withdrawals and deposits Dividends and payments

Dividends and payments Account and BSB details

Account and BSB details Personal identifying information Source: Screenshots obtained by the ABC

The email contained a link that allowed a customer to access another person's share trading account.

That account contains the details of customer investments, the total value of shares held, the bank account details and other personal information.

Stockspot says it has thousands of customers, but could not say how many had been sent the email at the centre of the breach.

The company's chief executive, Chris Brycki, said the breach was a human error.

"The results of this audit identified this as an isolated case," he said.

Stockspot only became aware of the breach after being contacted by an affected customer.

"This is a small error, I would say," Mr Brycki said.

"In any sort of business, mistakes happen. All you have to do is make sure you're doing the right thing by the customer.

"There was no financial risk to either client at any point because, even though their details were visible, there was no ability for a client to take money out of an account or trade on another client's behalf."

Have you been affected by this breach? Contact mcghee.ashlynne@abc.net.au

Robo advisors must establish 'adequate risk management'

Stockspot is one of several robo advisers now operating in Australia.

They provide automated investment advice and fund management, using algorithms to recommend a portfolio to clients.

The Australian Securities and Investments Commission (ASIC) — which regulates financial services providers, including robo advisers like Stockspot — has told the ABC it investigates breaches like this.

Earlier this year, the industry had also called on ASIC to provide guidance about regulatory requirements.

ASIC has issued advice the companies need to be licensed as Australian financial service providers because they are providing advice to clients.

It says they must establish and maintain "adequate risk management systems" and have adequate staff to oversee the operation.

"The provision of digital advice has grown rapidly in Australia since 2014 … we expect this growth to continue," the ASIC guidance reads.