1. Introduction

The Bank views your personal data and privacy seriously. This Notice is issued pursuant to the requirements of the Personal Data Protection Act 2010.

2. Collection of Data

Individuals may have supplied and may continue from time to time, to supply the Bank with their personal data and information (“data”) in connection with the opening or continuation of accounts and the establishment or continuation of banking facilities or provision of banking services or compliance with any laws, guidelines or requests issued by regulatory or other authorities. The Bank may also verify or source personal information about you from third party sources (both public and private) such as your employers, credit reporting agencies, Companies Commission, Labuan Financial Services Authority and Insolvency Department. Your visit to our public website may be recorded for analysis on the number of visitors to the site and general usage patterns. Some of this information will be gathered through the use of “cookies”.

3. Nature of Data

Such data (including sensitive data) may include information concerning your personal details (such as name, age, gender, identity card number, passport number, date of birth, education, race, ethnic origin, nationality, citizenship), contact details (such as address, email, phone numbers), family information (such as marital status, name of spouse or child or immediate family), occupation details (such as employer name, income range, job title, job responsibilities, employer’s contact information and address) and other information such as financial reference (in respect of other bank facilities used by you). In addition, the Bank may from time to time request for certain other personal information that may be relevant for the Bank to consider your request for any other products or banking facility of the Bank.

4. Mandatory vs Voluntary Data

Failure to supply such data may result in the Bank being unable to open, establish, continue or provide the banking accounts, services or facilities or comply with any laws or guidelines issued by regulatory or other authorities.

5. Sources of Data

It is also the case that data are collected from (i) customers and other sources in the ordinary course of the continuation of the banking relationship, (ii) a person acting on behalf of the individual whose data are provided, and (iii) other sources (for example, information obtained from any bureaus or agencies established by Labuan Financial Services Authority, LIBA, registered credit reporting agencies, or debt collection agencies).

6. Purposes of Processing

The purposes for which data may be used, processed, transferred and disclosed by the Bank are as follows (“the Purposes”):

1. assessing the suitability for products and services and the processing of applications;
2. the provision of accounts, products and/or services;
3. obtaining or providing credit references and conducting credit checks;
4. creating and maintaining credit and risk related models;
5. assisting other financial institutions to conduct credit checks or fraud investigation;
6. updating and maintaining customers’ records;
7. ensuring ongoing credit worthiness of customers;
8. designing financial services or related products for customers’ use;
9. marketing services or products of the Bank;
10. improving the provision of services by the Bank;
11. determining the amount of indebtedness;
12. collection of amounts outstanding;
13. crime prevention and investigation, transaction disputes, and data analytics;
14. meeting legal and regulatory obligations, including:
    
    1. compliance with any law, regulation, or court order (“Laws”);
    2. compliance with guidelines issued by regulatory, governmental or tax authorities;
    3. compliance with contractual commitments with Authorities;
15. enforcing legal rights and obtaining legal advice;
16. maintaining the Bank’s overall relationship with the customer.

7. Disclosure of Data

Data held by the Bank relating to an individual will be kept confidential but the Bank may provide such information to the following parties:

1. any agent, contractor, sub-contractors, service providers, or lawyers of the EIB;
2. business alliance or partners who provide products or services;
3. any legal, regulatory, governmental, tax, or law enforcement Authorities;
4. any other person under a duty of confidentiality to the Bank;
5. any person acting on behalf of an individual, including payment recipients and beneficiaries;
6. third party fund managers, insurers, or credit card companies;
7. external service providers engaged for marketing or data processing;
8. credit reference agencies and credit bureaus.

12. Your Rights

Under and in accordance with the provisions of the PDPA, any individual may:

1. check whether the Bank holds data about him/her and access such data;
2. request the Bank to correct any data which is inaccurate;
3. request clarification on the Bank’s policies and practices;
4. request to be informed which items of data are routinely disclosed to credit reporting agencies.

14. Access and Correction Requests

Requests for access to data or correction of data should be made in person. A fee is chargeable as provided in the PDPA for processing data access requests.

15. Contact and Inquiries

If you have any queries or complaints relating to this Notice or suspected misuse of your personal information, you may contact the Bank at our office or call +6087-411-799.