Data protection and privacy policies

A- A A+

1. Commitment to Protect your privacy

BBAC S.A.L (referred to in this document as “The Bank” , “We”, “Our”) is committed to comply with the national and international data protection regulations as we are aware of the importance of safeguarding the customer’s (Referred to in this document as “Data Subject”, “You”, “Your”, “yours”) privacy, confidentiality and trust by keeping their personal data, that they entrusted us on, secure against theft damage or any misuse either knowingly or unknowingly.

Personal data as defined under the Global Data Protection regulations (GDPR) is any information, whether processed manually or in electronic format, relating to an identified or identifiable natural person (data subject), an identifiable natural person is one whose identity can be ascertained, directly or indirectly, in particular by reference to an identifying identifier such as name, identity number, location data, on-line identity card, or one or more factors relevant to physical, physiological, genetic, psychological, economic, cultural or social identity of that individual.

The purpose of this privacy policy is to inform you about:

  • The purpose for which your personal data is collected.
  • How your personal data is processed (used or shared) in the course of our banking operations.
  • Your rights with respect to our privacy policy.
  • The process by which you can communicate your requests/complaint with respect to the processing of your personal data.
  • Why certain non-personal information are collected automatically.

2. Collection of personal data

In order to address your request, the Bank has to collect and use information about its direct/indirect customers with whom it works, including information about the client’s family members, customers, suppliers, etc. Furthermore, the Bank may be required by law to collect, record, use and store information in order to comply with the regulatory requirements. For more information about the collection of online information, please refer to our “Cookies disclaimer”.
The collected information is not only limited to the Bank’s customer. We treate any information collected in a private and confidential manner.

3. Automatic Collection of Non-Personal Information

When you access our website, we may automatically collect statistical information that is not personally identifiable (e.g. type of Internet browser and computer operating system used, name of the domain you used to access the website, number of visits, average time spent, pages viewed).

We may use this information and share it with our providers (e.g. ISPs, web hosting, website developers & designers) to measure the use of the website and improve its performance or content.

4. Online access

You can use our website without revealing any information about yourself.  If for any reasons we asked for your personal data online it will only be in response to your request for using one of our online provided services or products.

Through your online access to our website, we may collect and process the following data about you:

  • Information that you provide by filling in forms on our Site.
  • Any up-to-date data information concerning your personal detail that you might wish to communicated through our webiste.
  • Details of your visits to our Site (including, but not limited to, traffic data, location data, weblogs and other communication data, and the resources that you access).
  • Any infomration you communicated to us when reporting a problem with our website or when submitting an online claim.
  • When we ask you to complete an online survey or question that is used to reasearch purposes, in case you agreed to respond to them.

5. Principals of data processing

When processing your data, we will abide by the following principles:

  • We will only collect and use your information where we have lawful grounds and legitimate business reasons to do so.
  • We we will use the collected information for the purpose it was gathered for and we will inform you prior to utlizing any of the collected data in case we were planning to use it for something else in order to obtain your relevant permission.
  • We will update our records when you inform us that your details have changed or require amendment and we will continue to review and assess the quality of our information.
  • We will be transparent in our dealings with you, and will tell you about how we will collect and use your information.
  • We will abide by our information retention policies relating to your information and will ensure that your information is securely disposed of at the end of the appropriate retention period.

Furthermore, BBAC S.A.L will invest all its effort to protect your information by:

  • Providing regular and on-going trainings for our staff on their privacy obligations.
  • Implementing the most appropriate physical and technological security measures to protect your information regardless of where it is held

6. Transmission/disclosure of personal data

In order to fullfil your request with respect to specific products or services, the Bank might need to transmite your personal data to another countries or process your data by disclosing information with third parties or with its supervisory authorities or law enforcement agencies in order to comply with legislative and regulatory requirements or a contractual obligation. 

When transmiting data to third countries or third parties, we commit:

  • To ensure that the third party has appropriate security measures in place and will contractually require them to comply with our Privacy Principles.
  • To ensure that suitable safeguards are in place before personal information is transferred to other countries.

7. Your rights

Under the privacy policy you have the right to:

  • Ask us about the Bank’s obligation to protect your personal data.
  • Ask us about the lawful conditions we rely on to process your data.
  • Ask us about the type of personal data we are collecting.
  • Ask us about the purpose for collecting your personal data.
  • Be informed about the need to process your data for other purposes.
  • Ask us about other sources from where we could gather data on you.
  • Ask us about the need and purpose to disclose your data to third parties in order to meet our regulatory or contractual requirement and the consequences for not providing the data.
  • Ask us about the countries we may send your data to and the need to do so and the applied security measures.
  • Ask us about the applied method to:
    • Request using your personal data for specific circumstances.
    • Request to rectify inaccurate personal data held about you.
    • Request to erase your personal data in certain circumstances, if in compliance with the applied laws.
    • Request to provide you with a copy of your personal data in a commonly used electronic format so that you can transfer them to other businesses.
    • Request not to make automated decisions about you based on your personal data that produce significant legal effects.
    • Request to us to restrict the use of your personal data for specific circumstances.
  • Be informed about any personal data breach without undue delay, where that breach is likely to result in a high risk to your rights and freedoms.

8. Possible contraints associated with your request

Refusing to provide us with your personal information might drastically affect our ability to assist you with our banking services and it might deny you the right to benefit from specific products or services.

Furthermore, it should be noted that your request to rectify, erase, stop an automated decision or restrict the use of your personal data, might have an implication with respect to some/all of the services and products that you are benefiting from and that it is the Bank’s right to unilaterally suspend/terminate the business relationship and any/all of the services/products you are benefiting from as a result of any legal or operational implication that might result due to your request.

It should be clear that in certain circumstances we might need to share your personal information with our regulatory authorities, without your prior consent, for the purpose of complying with the applied regulations including the fighting money laundering and terrorism financing laws and all its related predicate offenses.

9. Privacy policy amendment

We constantly review our policies and attempt to keep them up to date.

Accordingly we may change this privacy policy from time to time as the need arises. Any changes we may make to our Privacy Policy in the future will be posted on this page.

10. Third Party Sites

Our website contains links to other web sites that may be of interest to our website visitors.(e.g. Payment provider, Advertising , LinkedIn, Facebook, YouTube, …). Please be notified that we are not responsible for the privacy practices of other web sites. We encourage you to be aware and read the privacy statements of each web site that collects your personally identifiable information.

11. Cookies

For the purpose of enhancing your experience when browsing our site, sometime we might uses cookies to distinguish you from other users. Please refer to our “Cookies disclaimer” for more details with respect to the cookies that we use and their purpose.

12. Contact us

For any request concerning the applied data protection policy, please contact our assigned Data protection officer on the following address: [email protected]

13. Privacy notice consent form

For further details about the purpose for collecting and processing your personal data, please refer to our Privacy notice consent form on this page.

Take our website survey