Corporate and Institutional Banking, Global Banking and Commercial Banking Privacy Statement
This Privacy Statement relates to the collection, use and disclosure of personal data, including special or sensitive personal data, by any member of the Standard Chartered Group (“SCB”, “we” or “our”). In this Privacy Statement and related contractual terms and policy documents “Personal Information” or“Personal data” is information relating to an individual (“you” or “your”) and “data subject” has the same meaning as “individual”. Personal data we collect in respect Corporate and Institutional Banking, Global Banking and Commercial Banking (collectively “Corporate and Institutional Banking”)relationships is primarily limited to the information on Directors and Officers, direct and indirect beneficial owners and authorised persons we need to enable us to meet our due diligence obligations, signatory details and contact information of individuals we interact with to enable the provision of services to a Corporate and Institutional Banking entity.
The data controller of your personal data is the SCB entity you have arelationship with. Our Head Office functions may also be the controller of yourpersonal data. A list of SCB entities can be found here.
Personal data comprises all the details SCB holds or collects about you, directly or indirectly, your transactions, transactions you effect, financial information, interactions and dealings with SCB, including information received from third parties, the public domain, collected through use of our website, cookies, and our electronic banking services.
If you have or are party to more than one account with SCB, or to a Private or Retail Banking relationship, we will link all yourPersonal data to enable us to have an overall picture of your relationship with us.
Purposes for which we may process your Personal data
We process Personal data where it is in our legitimate interests to do so to enable us to fulfil the contract between us and the corporate or institutional entity for the services requested, including the following:
- processing applications for products and services, effecting payments, transactions and completing instructions or requests;
- providing products and services (including electronic banking service);
- assessing suitability for products and services;
- credit assessment, including conducting credit checks and setting credit limits;
- operational purposes;
- establishment, continuation and management of banking relationships and accounts; and
- surveillance of premises
For some purposes in connection with the service requested, we have a legal or regulatory obligation to process your personal data. These purposes include:
i. the prevention, detection, investigation and prosecution of crime in any jurisdiction (including, without limitation, money laundering, terrorism, fraud and other financial crime);
- identity verification, government sanctions screening and due diligence checks; and
- to comply with: local or foreign law,regulations, directives, judgments or court orders, government sanctions or embargoes, reporting requirements under financial transactions legislation, and demands of any authority, regulator, tribunal, enforcement agency, or exchangebody.
We may also process your personal data in line withany voluntary codes; to effect agreements between SCB and any authority,regulator, or enforcement agency; to comply with policies (including the Standard Chartered Group’s policies) and good practice standards where it is inour legitimate interest to do so.
Personal data is also processed where it is in our legitimate interests to seek professional advice, including, in connection with any legal proceedings (including any prospective legal proceedings), for obtaining legal advice or for establishing, exercising or defending legal rights.
To whom we may disclose Personal data
Any member of SCB, including our officers,employees, agents, advisers and directors, may disclose your Personal data to any of the following parties for any of the purposes specified above:
- any other member of SCB anywhere in the world, including any officer, employee, agent, advisor or director;
- professional advisers (including auditors), third party service providers, agents or independent contractors providing services to support SCB’s business;
- any person to whom disclosure is allowed or required by local or foreign law, regulation or any other applicable instrument;
- any court, tribunal, regulator, enforcement agency, exchange body, tax authority, or any other authority (including any authority investigating an offence) or their agents;
- any financial institution to conduct credit checks, anti-money laundering related checks, for fraud prevention and detection of crime purposes;
- anyone we consider necessary to facilitate requests for services orapplications for products with any member of SCB;
- anyone we consider necessary in order to provide services in connection with a product;
- any actual or potential (a) assignee of all or any part of the business and/or asset of the Standard Chartered Group or (b) participant or sub-participant of our rights in respect of any product agreement, in order to evaluate the transaction intended to be the subject of the assignment, participation or sub-participation (or any officer, employee, agent or adviser of any of these parties); located in any jurisdiction.
Personal data may be transferred to, or stored at, a location outside of your country of residence, which may not have data protection law. The security of your personal data is important to us. SCB has technical and organisational security measures in place to safeguard your personal data. When using externalservice providers, we require that they adhere to security standards mandated by SCB. We may do this through contractual provisions, including any approved by a privacy regulator, and oversight of the service provider. Regardless of where personal data is transferred, we take all steps reasonably necessary to ensure that personal data is kept securely.
You should be aware that the Internet is not a secure form of communication and you must not send us any personal data over the Internet as this carries with it risks including the risk of access and interference by unauthorised third parties. Information passing over the Internet may be transmitted internationally (even when sender and recipient are located in the same country) via countries with weaker privacy and data protection laws than in your country of residence.
Other Terms and Conditions
There may be specific terms and conditions in our banking and product agreements that govern the collection, use and disclosure of your personal data. Such other terms and conditions must be read in conjunctions with this Privacy Statement.
We retain your Personal data in line with our legal and regulatory obligations and for business and operational purposes.
We will use your business contact data:
i. to conduct market research and surveys with the aim of improving our products and services to corporate and institutional clients;
ii. to market our products to corporate and institutional clients and for promotional events;
We process your personal data for these purposes because it is in the interest of our business to do so with the intention of improving our products and services and generating business. We will not send you marketing material if you have specifically asked us not to do so. You have the right to opt out of receiving marketing material on behalf of the corporate or institutional entity that you represent at any time. To do so please contact your relationship manager.
If you change your mind and ask us not to send you marketing material or other promotional or research material you have subscribed to receive, we will need to retain a record that you have asked us not to do so to ensure that you donot receive anything further.
To the extent permitted by law, we may record and monitor your electronic communications with us to ensure compliance with our legal and regulatory obligations and internal policies for the purposes outlined above.
Subject to applicable law, regulations and/or banking industry guidelines, you may have the right to request a copy of the Personal data processed in relationto you. SCB may be allowed by law to charge a fee for this.
You can request at any time that we correct your personal data at your branchor through your relationship manager.
In some circumstances you have the right to ask us to delete your personal data, for example if we no longer have a valid reason to process it.
In some circumstances you may have the right to object to how we process your personal data but this does not mean you can decide or choose how we process your personal data other than in relation to marketing. If you have any concerns about how we process your personal data, please discuss this with your Relationship Manager. We may not be able to offer the services if you do not want us to process the personal data we consider it necessary to provide the services.
In some circumstances you may have the right to restrict how your personal datais processed.
CONTACTS FOR COMPLAINTS & RQUESTS
The Data Protection Officer can be contacted at: email@example.com orat
Standard Chartered Bank AG,
60325 Frankfurt am Main, Germany.
Telefon: +49 69 770 750 0
Telefax: +49 69 770 750 100
This Statement was last updated on 1 March 2019
Applying to work for the Standard Chartered Group
Please see our separate Group Recruitment Privacy Statement.