PRIVACY POLICY
Gulf International Bank B.S.C. (“GIB”, "we”, “our” or “us”) is committed to protecting and respecting your privacy. This privacy notice (“Privacy Notice”) (together with our Terms Of Use and any other documents referred to on it) sets out the basis on which any Personal Data (as defined below) we collect from you, or that you provide to us, will be processed by us. Please read the following carefully to understand our views and practices regarding your Personal Data (as defined below) and how we will treat it.
The data controller is Gulf International Bank B.S.C., a Bahraini Shareholding Company registered in the Kingdom of Bahrain with Commercial Registration number 4660, licensed by the Central Bank of Bahrain to operate as a bank in the Kingdom of Bahrain whose principal address is at Al-Dowali Building, 3 Palace Avenue, P.O. Box 1017, Manama, Kingdom of Bahrain.
Safeguarding your Personal Data is our main concern. We maintain physical, electronic and procedural safeguards that comply with applicable laws and regulations to secure your information from unauthorized access and use, accidental or unlawful alteration and destruction; and other unlawful or unauthorized forms of processing. We engage in the continuous training of our employees in the proper management of Personal Data.
At GIB, we take data privacy very seriously and we provide our customers with all necessary data security to protect such Personal Data from unauthorized access. We require any third parties who carry out any work on our behalf to comply with appropriate compliance standards to protect your information.
DEFENITIONS
PERSONAL DATA:
Every data – of whatever source or form – that would lead to the identification of the individual specifically or make it possible to identify him directly or indirectly, including name, personal identification number, addresses, contact numbers, license numbers, records, personal property, bank account and credit card numbers, fixed or moving pictures of the individual, and other data of personal nature.
SENSITIVE DATA:
Every personal data that includes a reference to an individual's ethnic or tribal origin, or religious, intellectual, or political belief, or indicates his membership in nongovernmental associations or institutions, as well as criminal and security data, biometric data, genetic data, credit data, health data, location data, and data that indicates that both parents of an individual or one of them is unknown.
THE INFORMATION WE COLLECT
We will only collect your information in line with relevant regulations and laws.
HOW DO WE COLLECT INFORMATION?
We may collect information from a range of sources and it may relate to any of our products or services we currently provide or may have provided in the past.
We collect your Personal Data when...
• you open an account or perform transactions such as make deposits or withdrawals from your account, payment history and transactions records
• you apply for a loan or use your credit or debit card
• you seek advice about your investments
• you seek information from our customer service provider, information concerning complaints and disputes
• we seek information about your credit history from credit bureaus
• you provide account information such as your personal details e.g., name, gender, date and place of birth; contact information such as address, email address, and mobile numbers, provide your employment information
• you provide information concerning your identity e.g., photo ID, passport information, National ID card and nationality
• you use your login credentials for online banking and mobile banking apps and we collect information about your computer (or mobile device), including collecting your IP address, operating system and browser type. We use this information for system administration or for our own commercial purposes.
• we conduct necessary investigations i.e., due diligence checks, and anti money ;laundry/counter fraud and terrorism checks and obtain information that we need to support our regulatory obligations, e.g., information about transaction details, detection of any suspicious and unusual activities.
HOW WE USE YOUR INFORMATION
• We will only use your information when you have provided your consent or when we are required by the law to do so.
• We use the information we collect to provide customers with excellent products and services, to manage our business and to offer an enriched and enhanced customer experience.
• We make appropriate use of your data to manage transactions, respond to your requests, and to provide you with more relevant products and services.
• We use your information to deliver our products and services, carry out your instructions, and provide Online Banking, mobile banking and other online product and services.
• We use this information to detect and prevent financial crimes including fraud, financing for terrorism and money laundering, this is to ensure security and business continuity.
• We will use your information to meet our compliance obligations, to comply with laws and regulations and to share with regulators when absolutely necessary.
• Where we have your consent, we may use Personal Data we have about you such as your email address, mobile number, mailing address to deliver advertising to you directly or on our websites, provide updates on special deals and offers that might interest you.
• We may send you general announcements or important news about your account.
• We may need to record conversations you have with us including phone calls, face-to-face meetings, letters, emails and any other kinds of communication. These recordings may be used to check your instructions to us and improve on our product and service delivery.
• We may collect information about your computer (or mobile device), including where available your IP address, operating system and browser type, for system administration or for our own commercial purposes. This is statistical data about our users' browsing actions and patterns, and does not identify any individual.
WHO WE SHARE YOUR INFORMATION WITH?
At GIB, we, in efforts to provide you with excellent products and services, may need to outsource our product delivery, this will be done in line with relevant regulations and laws. We may share your information in order to provide you with products or services you have requested.
We may also share your information where we have a public or legal duty to do so, when we need it to conclude regulatory reporting and when we have requested and received your permission to share it.
COOKIES
A cookie is a small file that is placed on your computer’s hard drive or electronic device. Its functions include storing your login and session statuses, recording your user preferences and analyzing web traffic.
Apart from the data that you elect to disclose and share with us, we cannot access your computer or any other information about you with cookies.
Although most browsers automatically accept cookies, you can amend your browser settings to disable cookies. This may however prevent you from fully experiencing the website as it was intended.
APPLICABILITY
This Privacy Notice is applicable to Personal Data and Sensitive Data or information collected by us or our affiliates directly from the customer or through our online portals, mobile apps and electronic communications as also any information collected by our servers from the customer’s browser.
SECURITY PRACTICES & PROCEDURES
The security of Personal Data is a priority and is protected by maintaining physical, electronic, and procedural safeguards that meet applicable laws. We shall take reasonable steps and measures to protect the security of the customer’s Personal Data from misuse, loss, un-authorized access, modification or disclosure. We maintain our security systems to ensure that the Personal Data of the customer is appropriately protected and follows standard encryption norms for the transmission of information. We ensure that our employees and affiliates respect the confidentiality of any Personal Data held by us.
RETENTION OF PERSONAL DATA
At GIB, we retain your Personal Data only for as long as mandated by the regulators for the purposes set out in this Privacy Notice. We will retain and use your information to the extent necessary to comply with our legal obligations (for example, if we are required to retain your data to comply with applicable laws), resolve disputes, and enforce our legal agreements and policies which is subject to Electronic Banking Services instructions and other applicable rules & regulations within the Kingdom of Saudi Arabia.
PRIVACY NOTICE CHANGES
The effective date of this notice is provided above. Any updates or changes to the notice will be posted on this website with the new revision date, which is the effective date of changes. Your continued use of this website constitutes your acceptance of any changes to this notice.
DATA SUBJECT RIGHTS QUERIES
You may have certain rights relating to your Personal Data depending on the country in which you access our Bahraini website. In some cases, depending on applicable legislation, such as the Bahraini Law No. 30 of 2018 with Respect to Personal Data Protection (“BH PDPL”), these rights may include: the right to be informed – this right allows you to receive information from us about what Personal Data we collect and what do we do with it. The purpose of this notice is to fulfil this right.
YOUR RIGHTS - LEGAL RIGHTS AVAILABLE TO HELP MANAGE YOUR PRIVACY
Your data protection rights include the following:
- The right to be informed about the processing of your personal data;
- The right to have your personal data corrected if it is inaccurate and to have incomplete personal data completed;
- The right to object to the processing of your personal data;
- The right to restrict the processing of your personal data;
- The right to have your personal data erased (the right to be forgotten);
- The right to request access to your personal data and to obtain information about how we process it;
- The right to move, copy or transfer your personal data (data portability);
- The right not to be subject to a decision based solely on automated processing, including profiling;
- which produces legal effects concerning you or similarly significantly affects you; and
- The right to withdraw your consent at any time (e.g. no longer be included in our marketing campaigns).
These rights are neither absolute nor applicable in all circumstances. You are entitled to any other additional rights granted by applicable laws and regulations.
CONTACT US
If you have any questions, concerns or complaints regarding our compliance with this Privacy Notice and the BH PDPL, or if you wish to exercise your rights, please contact us. We will investigate and will attempt to resolve complaints and disputes and make every reasonable effort to honor your wish to exercise your rights as quickly as possible, in any event, within the timescales provided by applicable data protection laws or regulations.
If you have any questions or comments regarding the processing of your Personal Data, our privacy practices or if you would like us to update information or preferences you provided to us, please contact the Data Privacy / Protection Team (Data Management Office) through the following email: |