Loading...
Listen

Privacy Policy

Introduction:

 

The protection and safeguarding of your personal data is of paramount importance to Jordan Kuwait Bank, hereinafter referred to as "the Bank". In fact, the Bank is committed to protecting the privacy of its customers' and users' data. We assure you that the personal data you have provided to us is always treated as private data with the highest levels of security and confidentiality. Actually, it is being processed in accordance with the provisions of the Personal Data Protection Law No. 24 of 2023, the regulations and instructions issued thereunder as well as the relevant Central Bank orders, hereinafter referred to as "the Law". This policy explains how Jordan Kuwait Bank collects, uses, shares and protects your data and your rights as well regarding the privacy of your data and how to exercise these rights.

 

Definitions:

  • (Personal/Sensitive Personal) Data: the same is defined as being any data or information relating to you that can identify you directly or indirectly, regardless of its source or form, including information relating to your identity, marital status or location as well as any data or information that directly or indirectly indicates your origin, race, religion, physical, mental or genetic health status, if any, or your biometric fingerprints.
  • Data processing (the processing): the same is defined as being one or more of operations carried out in any form or by any means for the purpose of collecting, recording, copying, preserving, storing, organizing, revising, exploiting, using, transmitting, distributing, publishing, linking to other data, making available, transferring, displaying, anonymizing, encoding, destroying, restricting, erasing, modifying, describing or disclosing data by any means whatsoever.

 

Scope of application

 This policy applies to all personal data collected or processed by the Bank through any of its various channels or platforms.

 

Policy objective

 The policy aims to explain how the Bank processes your data, how it is obtained, the nature of the data collected and processed as well as the various preventive and precautionary measures including technical, physical and organizational steps that it will take to ensure your data remains in a secure and confidential environment. This environment will protect your data from loss, misuse, unauthorized access, accidental disclosure, alteration or damage, whether during storage, processing or transmission. The policy also informs you of your rights regarding your data.

 

Data processed by the Bank

 This includes your sensitive personal data that the Bank obtains at the beginning of your Banking relationship or at any time thereafter including, for example, as follows:

 

  • Personal details, e.g. name, date of birth, email address, nationality, marital status, gender and contact information.
  • Details regarding your physical, (mental and genetic health, etc.).
  • Addresses, including your current and permanent addresses as well as any other relevant addresses along with supporting documentation.
  • Identity documents (National ID card, passport or any other official document that verifies your identity).
  • Nature of employment, employer, employment status, job title, contact information for your employer and supporting documentation.
  • Financial details, e.g. income, source of income, source of wealth and account activity.
  • Tax information: Foreign Account Tax Compliance Act (FATCA) forms, Common Reporting Standard (CRS) forms and other relevant information.
  • Details of transactions you or any related party have made including dates, amounts as well as currencies and payer and beneficiary details.
  • Digital identifiers: IP address, email address.
  • Data about your geographic location, ATMs used and branches visited.
  • Website tracking files ("Cookies").
  • Audio, video and photographic images.
  • Risk rating information, e.g. your credit risk rating and data about your ability to manage your existing credit.
  • Due diligence data, e.g. data required in agreements, contracts and invoices to ensure compliance with anti-financial crime requirements and data necessary to fulfill regulatory obligations.
  • Data about related individuals (e.g., family members, agents, guardians, witnesses).

 

How we collect your data

 The Bank collects your data via one of the following methods:

  • Directly from you, when you contact the Bank directly through its branches or any of its communication channels and/or by accessing the Bank's websites and applications for inquiries to obtain a specific service from the Bank or for any other interaction with the Bank.
  • Indirectly, from multiple sources including as follows:

 

  1. When you use or access any of the Bank's platforms including, but not limited to, website tracking files (cookies) and device identification files.
  2. The Bank's social media channels.
  3. Government and official entities authorized to provide the Bank with data (e.g. Civil Status and Passports Department, Ministry of Industry and Trade, Social Security Corporation, Ministry of Digital Economy and Greater Amman Municipality).
  4. Authorities issuing official documents.
  5. Any other entities approved by the Bank.

 

  • Through other parties related to you (e.g. a family member, your legal representative, your attorney, your authorized representative, your employer).
  • Through publicly available sources.

 

Purpose and use of your data

The Bank processes your sensitive personal data for various reasons related to your Banking transactions, your access to Banking services or products, supervisory and regulatory purposes as determined from time to time by the Central Bank of Jordan or other legitimate service-related matters including, but not limited to, as follows:

  • To provide you with banking products and services.
  • To manage your accounts and your relationship with the Bank.
  • To provide you with any other information and data about your account.
  • To market banking products, services and offers that may be of interest to you.
  • To evaluate, develop and improve the services provided to you.
  • To handle inquiries and complaints received from you.
  • To communicate with you via mail, telephone, text messaged, email and other available digital channels.
  • To provide you with all available electronic banking services.
  • To monitor, record and analyze any communications exchanged between you and the Bank as well as to protect your financial interests.
  • To evaluate your applications submitted to the Bank 
  • To share data with government authorities, credit rating firms, regulatory bodies and external authorities.
  • To share your data with the Bank's partners, service providers and external auditors.
  • To comply with regulatory requirements and reporting obligations related to anti-money laundering and the financing of terrorism.
  • To take necessary measures to foster anti-fraud and financial crimes.
  • To take precautionary security and technical measures related to cyber-security.
  • To verify the accuracy and adequacy of data from other parties involved in your transactions with the Bank.
  • For your own security purposes.
  • To collect any outstanding debts in addition to litigation purposes and seeking legal advice.

 

Legal basis for processing

 

The Bank processes your data in accordance with the following bases:

Cases permitted by law, other regulations and/or orders of the Central Bank of Jordan.

  • Your explicit consent.
  • Performance of contracts concluded with you.
  • Managing the Bank's relationship with you.
  • Legal and regulatory compliance (e.g. instructions from the Central Bank and regulatory authorities, judicial requirements or regulatory authorities).
  • For security purposes related to the Bank such as CCTV or video surveillance.
  • To protect your essential interests.
  • A legitimate interest of the Bank (e.g. developing and offering products and services, marketing products and services as well as offering promotions that may interest you, keeping our records up-to-date, debt recovery, enhancing security and technology, enabling you to complete transactions as well as facilitating communication between you and the Bank).

 

Data protection

The Bank takes numerous security, technical organizational and precautionary measures to protect your data including protection against unauthorized or illegal processing, prevention of breaches of its security and integrity in addition to the prevention of its loss, misuse, alteration, disclosure, destruction, damage or unauthorized access. Yet, parties with access to your data are required to maintain its confidentiality through various means designated for this purpose.

 

Entities to whom data may be disclosed

In accordance with the law, and pursuant to the provisions of the regulations governing the Bank's operations and the provisions of this policy, the Bank may share and transfer your data, to the extent permitted, with the following parties:

  • The Bank's branches within and outside Jordan as well as its subsidiaries or affiliates.
  • Any person you appoint to be associated with your Banking relationship with the Bank, whether by power of attorney, guardianship, trusteeship, legal representative, guarantor (a person guaranteeing your financial obligations), joint account party or authorized signatories of a body corporate. 
  • External auditors, correspondent Banks within and outside Jordan, clearing or settlement systems.
  • Other financial institutions, tax authorities, credit information centers or payment service providers.
  • Law firms, lawyers or legal advisors.
  • Real estate appraisal companies.
  • Attorneys acting on behalf of the Bank.
  • Regulatory and oversight bodies, government authorities and agencies, law enforcement agencies and dispute resolution bodies.
  • Postal services and services provided by Bank card issuers including issuance and management.
  • Insurance or finance companies associated with the Bank.
  • Technical and consulting service providers.
  • Parties on whose accounts you conduct any transactions by a notarized power of attorney, a duly made authorization, a court order (guardianship) or transactions you are authorized to perform on their accounts.
  • Other parties who have agreed to share your data with them.
  • Any parties or entities that the Bank deals with and to which the terms of the section "Purpose of Processing Your Data and Scope of Use" apply.

 

Data storage

The Bank stores your data using secure systems and technologies including local and backup servers within the Hashemite Kingdom of Jordan. Your data is retained throughout the contractual relationship and after the termination of the Banking relationship with you to ensure that you receive the highest level of service and to maintain communication with you in addition to complying with laws and regulations, if required, as follows:

 

  • The data is needed to comply with applicable legal requirements and regulations.
  • It contributes to the detection and prevention of fraud and financial crimes.
  • It responds to requests from regulatory or supervisory authorities.

 

Actually, the Bank will retain this data only as long as necessary to fulfill the obligations mentioned above and will dispose of it securely when it is no longer needed but in accordance with applicable laws.

 

Your rights regarding your data

Subject to the Bank’s compliance with applicable regulations and laws, you may exercise the rights outlined below regarding your data under set the Personal Data Protection Law:

  • Accessing your data and to request information about how it is processed.
  • To correct, amend or update your data.
  • In the event of a data breach affecting your personal data, then the Bank is obligated to notify you directly without undue delay if the breach is likely to significantly impact your rights.
  • Objecting to the processing of your data or request that it be restricted to a specific scope.
  • Withdrawing your consent at any time.
  • To file a complaint with the Directorate of Personal Data Protection at the Ministry of Digital Economy and Entrepreneurship.

In fact, please note that the Bank will process requests promptly and efficiently bearing in mind that regulatory requirements for personal data protection state at responses to be made within fifteen (15) working days from the date of receipt of the request. We also wish to point out that the response to your requests may be subject to certain limitations in specific circumstances according to the provisions of the law, for example, it may be impossible to execute a request to delete your personal data held by the Bank if there is a legal obligation to retain this data for a specific period.

Use of Cookies and digital technologies

 We use Cookies on our website to improve user experience. Users can control their Cookies settings through their browser.

Terms concerned with marketing

The Bank may, subject to your consent, use some of your personal data (e.g. name, email address and telephone number) to send you promotional offers or information about the Bank's products and services. Yet, you have the right to withdraw your consent or object to receiving any marketing communications from the Bank at any time through the designated channels. This withdrawal will not affect your right to access basic banking services. However, your data will not be shared with third parties for their own independent marketing purposes without your separate and explicit consent.

 

Amendments to the Privacy Policy

The Bank may amend this policy from time to time to comply with legal or technical requirements. Amendments will be reflected in the policy on the Bank's website. Yet, and by continuing to use the website, you agree to these amendments and their consequences.

 Filing complaints

You can file complaints regarding any allegation of data breach or violation of your data rights through any of the following means:

 

  • + (962) 6 5629404 and the toll-free number 080022200 during official working hours.
  • In person by visiting the Customer Complaints Unit at the General Administration building during official working hours.
  • Via email: [email protected]

Yet, you can also submit complaints to any of the relevant regulatory authorities.

 

Data related to the Data Protection Officer:

 

  • Officer's Name: Nadeen Barakat
  • Landline Number: 06/5629400 Ext. 4623 during official working hours.
  • Email: [email protected]