At CIMB Bank PH, we value your privacy and strive to protect your personal information in compliance with the Data Privacy Act of 2012.
Pursuant thereto, this Privacy Notice is designed to explain and elaborate upon some of our policies and principles pertaining to the privacy of your personal information, all of which we have adopted as a sign of our commitment to respecting, maintaining, protecting and safeguarding the privacy of your personal information.
CIMB Bank PH will only collect, record, hold, use, disclose and store (i.e. “process”) use your personal information in accordance with such laws (including the Data Privacy Act of 2012), this Privacy Notice and the privacy terms in your agreement(s) with CIMB Bank PH.
This Privacy Notice explains:
The type of personal information we collect and how we collect it
How we use your personal information
The parties that we disclose the personal information to
The choices we offer, including how to access and update your personal information
Your privacy matters to us, so please take the time to get to know our practices and if you need further information, please contact our Customer Care Team by calling #CIMB (#2462) or email email@example.com.
For the purposes of this Privacy Notice, please note that:
“Personal information” refers to any information, whether recorded in a material form or not, from which the identity of an individual is apparent or can be reasonably and directly ascertained by the entity holding the information, or when put together with other information would directly and certainly identify an individual.
“Sensitive Personal Information” refers to personal information
The individual’s race, ethnic origin, marital status, age, color, and religious, philosophical or political affiliations.
The individual’s health, education, genetic or sexual life of a person, or any proceeding for any offense committed or alleged to have been committed, disposal of such proceedings and the sentence of any court in such proceedings
Issued by government agencies specific to an individual. This includes, but not limited to, social security numbers, previous and current health records, licenses or its denials, suspension and revocations, and tax returns
Specifically established by an executive order or an act of Congress to be kept classified.
What Kind of Personal Information and Sensitive Personal Information We Collect and How We Collect It
In order to enable us to deal with your inquiries, open and operate an account/facility for you and/or to generally provide you with our products and services, we may need to and/or may be required to process personal information, sensitive personal information and financial information about you, including but not limited to:
Personal information including your images to establish your identity and background;
Personal information to establish your financial standing, creditworthiness and/or suitability for any of our products/services applied for (if required); and/or
Personal information that you provide when you apply for any of our products and services.
We may obtain this information from yourself and from a variety of sources, including but not limited to:
Through your relationship with us, for example, information provided by you in application forms, when using our products or services, when taking part in customer surveys, competitions and promotions, and during financial reviews;
Through your verbal and written communications with us and/or our authorised agents;
From an analysis of the way you use and manage your account(s)/facility(ies) with us, from the transactions you make and from the payments which are made to/from your account(s)/facility(ies);
From third parties connected with you, such as employers, joint account holders, security providers, guarantors and indemnitors, subject to your prior consent; and/or
From such other sources in respect of which you have given your consent to disclose information relating to you and/or where not otherwise restricted.
From recordings of Closed Circuit Television (CCTV) installed at our premises;
How We Use Your Personal Information
Other than as stated above, we may use your personal information for one or more of the following purposes:
To assess your application(s) /request(s) for our products and services;
To verify your financial standing through credit reference/reporting checks;
To manage and maintain your account(s) and facility(ies) with us;
To better manage our business and your relationship with us;
To better understand your current and future investment needs and your financial situation;
To provide you with information on our and/or third party products, services, offers and/or contests which may be of interest to you and in this respect, to contact you via SMS, phone, email, fax, mail, websites, social media and/or any other appropriate communication channels;
To improve our products and services and to develop new products and services;
To notify you about benefits and changes to the features of products and services;
To administer offers, competitions and promotions;
To respond to your enquiries and complaints and to generally resolve disputes;
To update, consolidate and improve the accuracy of our records;
To produce data, reports and statistics which have been anonymized or aggregated in a manner that does not identify you as an individual;
To conduct research for analytical purposes including but not limited to data mining and analysis of your transactions with us
To meet the disclosure requirements of any law binding on CIMB Bank PH;
For audit, compliance and risk management purposes;
To assess financial and insurance risks;
To transfer or assign our rights, interests and obligations under any of your agreements with us;
To protect or enforce our rights to recover any debt owing to us;
To conduct anti-money laundering checks; for crime detection, investigation, prevention and prosecution; to comply with any sanction requirements;
To enforce and/or defend any of our rights; and/or
For any other purpose that is required or permitted by any law, regulations, guidelines and/or relevant regulatory authorities.
Please be assured that we will ask for your consent before using your personal information for a purpose other than those that are set out in this Privacy Notice and in the privacy terms in your agreement(s) with CIMB Bank PH.
Disclosure of Your Personal Information
As a part of providing you with our products and services and the management and/or operation of the same, we may be required or need to disclose information about you and/or your accounts and/or facilities with us (as well as with other CIMB entities in or outside Philippines) to the following third parties:
Companies and/or organizations that act as our agents, affiliates, service providers, business partners, professional advisers, other banks and/or financial institutions, within or outside Malaysia, where necessary;
Companies and/or organizations that assist us in processing and/or otherwise fulfilling transactions that you have requested;
Companies and/or organizations that assist us in providing value added services that you have requested;
Companies and/or organizations that provide services to us in communicating our products and services to you;
Your advisers (including but not limited to accountants, auditors, lawyers, financial advisers or other professional advisers) where authorised by you;
Any other person notified by you as authorised to give instructions or to use the account(s)/facility(ies) or products or services on your behalf;
Any third party as a result of any restructuring of facilities granted to you or the sale of debts, or the acquisition or sale of any company by CIMB Bank PH, provided that any recipient uses your information for the same purposes as it was originally supplied to us and/or used by us;
Any guarantors or security providers for the facility(ies) granted by us to you;
Any person intending to settle any moneys outstanding under the facility(ies) granted by us to you;
Any rating agency, insurer or insurance broker or direct or indirect provider of credit protection;
Any financial institutions, merchants, VISA International Services Association, MasterCard International Incorporated and other card associations in relation to any credit card and/or debit card issued to you by us; and/or
Any person connected to the enforcement or preservation of any of our rights under your agreement(s) with us,
subject at all times to any laws (including regulations, guidelines and/or obligations) applicable to the CIMB Bank PH (whether in or outside Philippines). The afore-mentioned third parties may in some instances be located outside of Philippines.
Additionally, the individual entities within the CIMB Bank PH, our merchants and strategic partners may contact you about products, services and offers, which we believe may be of interest to you or benefit you financially. However, please note that we will only disclose your personal information (which will not include information relating to your affairs or accounts) to our merchants and strategic partners where your express prior consent has been obtained and subject at all times to any laws (including regulations, guidelines and/or obligations) applicable to the CIMB Bank PH (whether in or outside Philippines)
You may tell us at any time if you do not wish to receive marketing communications from us, from individual entities within the CIMB Bank PH and/or from our merchants and strategic partners by notifying us at the address/telephone number/e-mail address given at the end of this Privacy Notice. Your latest written instructions to us will prevail. Please take note that certain communications such as statements of account and our websites contain standard information regarding our other products and services that cannot be removed without affecting the delivery/provision of our services and/or products, the operation of your account(s) and/or facility(ies) with us, and/or additional costs to you.
We will otherwise treat your personal information as private and confidential and will not disclose your information to anyone outside CIMB Bank PH except:
Where you have given permission;
Where we are required or permitted to do so by law;
Where required or authorised by any order of court, tribunal or authority, whether governmental or quasi-governmental with jurisdiction over CIMB Bank PH;
Where we may transfer rights and obligations pursuant to our agreement(s) with you; and/or
Where we are required to meet our obligations to any relevant regulatory authority (whether in or outside Malaysia).
Security of Your Personal Information
Information is our asset and therefore CIMB Bank PH places great importance on ensuring the security of your personal information. We regularly review and implement up-to-date technical and organizational security measures when processing your personal information.
Employees of CIMB Bank PH are trained to handle the personal information securely and with utmost respect, failing which they may be subject to disciplinary action.
Retention of Your Personal Information
CIMB Bank PH will retain your personal information in compliance with this Privacy Notice and/or the terms and conditions of your agreement(s) with CIMB Bank PH for the duration of your relationship with us, for such period as may be necessary to protect the interests of CIMB Bank PH and/or its customers as may be deemed necessary, where otherwise required by the law and/or where required by CIMB Bank PH’s relevant policies.
What If Personal Information Provided by You Is Incomplete?
Where indicated (for example in application forms or account opening forms), it is obligatory to provide your personal information to us to enable us to process your application for our products or services. Should you decline to provide such obligatory personal information, we may not be able to process your application/request or provide you with our products or services.
Your Rights to Access and Correct Your Personal Information
We can assist you to access and correct your personal information held by us.
Where you wish to have access to your personal information in CIMB Bank PH’s possession, or where you are of the opinion that such personal information held by us is inaccurate, incomplete, misleading or not up-to-date, you may make a request to us via our Data Access Request Form or Data Correction Request Form respectively. These forms are available at CIMB website (www.cimbbank.com.ph).
We will use reasonable efforts to comply with your request to access or correct your personal information within 21 days of receiving your duly completed Data Access Request Form/Data Correction Request Form and the relevant processing fee (if any).
Please note that CIMB Bank PH may have to withhold access to your personal information in certain situations, for example when we are unable to confirm your identity or where information requested for is of a confidential commercial nature or in the event we receive repeated requests for the same information. Nevertheless, we will notify you of the reasons for not being able to accede to your request.
Please also note that CIMB Bank PH may use its discretion in allowing the corrections requested and/or may require further documentary evidence of the new information to avoid fraud and inaccuracy.
You can also assist us to keep your personal information (such as your current mailing address) up to date, as it will enable us to serve you better.
Exercising Choices Over the Disclosure, Retention and Use of Your Personal Information
Subject always to our contractual rights and obligations under relevant laws and regulations, you may exercise your choice in respect of the disclosure, retention and use of your personal information. Should you wish to do so, kindly contact us at the address/telephone number/e-mail address given at the end of this Privacy Notice.
Revisions to Privacy Notice
This Privacy Notice may be revised from time to time. Notice of any such revision will be given on CIMB Bank PH’s website and/or by such other means of communication deemed suitable by CIMB Bank PH.
Contacting CIMB Bank PH About Your Privacy And How We Handle Your Personal Information
Should you have any query in relation to this Privacy Notice or how we handle your personal information, kindly contact our Data Privacy Officer at the following contact points: