iv. Provide training and support for staff and volunteers who handle personal data,
so that they can act confidently and consistently
d. Recognize that its first priority is to avoid causing harm to individuals, which
means:
i. Keeping information securely in the right hands, and
ii. Holding good quality information.
e. Security and confidentialityof Customer Data
i. As per Information Systems security policies and procedures implemented in the
Bank, Bank has implemented administrative, physical and technical safeguards to
protect electronic personal data from loss, misuse and unauthorized access.
Customers’ personal data shall be stored on a secured database.
ii. Bank shall not sell personal data to any third party or anybody and shall remain
fully compliant with confidentiality of the data as per law.
iii. Bank shall share customers’ personal data to third party if required for business
purpose only after implementing adequate controls to ensure maintenance of
confidentiality and security of the data by the concerned third party.
f. Data Usage
i. Bank shall use customers’ personal data only for the purpose for which it is
collected. Bank is committed to ensuring that personal data is kept strictly
confidential. However, personal data may be disclosed to regulatory authorities for
the purposes of obtaining regulatory approval in accordance with applicable legal
requirements, or otherwise to comply with applicable legal requirements.
g. The Bank use or share customer’s only thatdatawhich is necessaryfor that service.
h. Data Retention
Customer’s data shall be retained as per senior management Directives and
Regulatory Standards (RBI directives)
i. Datamodification
I. Bank shall update the customer data only after ensuring the authenticity of the
change request. Adequate access controls and authorization controls shall be in
place to monitor data modifications.
II. Bank shall change or update any changes in customer’s data after verifying the
documents for which customer gives request to change.
j. DataQuality
Bank shall continuously review and asses the quality and completeness of the data
k. SECURITYAWARENESS AMONG USERS: