This Application collects some Personal Data (including account related information) from its Users.
Following data is accessed for the following purposes and using the following services:
|Data / Information
|Bank account information
|View account information and account debit authority
|Mobile banking service
|Phone book contacts
|Fetch mobile number from the phone’s contact list
|Password (Default password provided by the system and password created by the user)
|Mobile banking login / transactions. (application password and mPIN is stored at server in encrypted form)
|Mobile banking service
Collection of Personally Identifiable Information and Other Information
When you use our application, we collect and store your personal information provided by you from time to time. We do so to ensure that you are provided a safe, efficient, smooth and seamless experience. This also allows us to understand your needs and provide for services and features that best suit them. We strive to provide for services and features that best suit them. We strive to provide for customizations on our application to ensure that your experience is always safer and easier. This requires collection of personal information to the extent necessary for achieving this purpose and objective.
You may please note that it is mandatory to register yourself in order to use the app. And once you give us your personal information, you are not anonymous to us. We may automatically track certain information about you based upon your behavior on our app to the extent permitted by law.
If you choose to transact on the app, we collect information about your transaction behavior. We collect some additional information such as a billing address, details of recipient or payer of the transaction, location, etc. which may be used for providing better experience to you while using the App.
If you choose to provide information by way of messages on our message boards (as & when available) and/ or chat rooms or any other message areas or if you prefer to leave feedback, we will collect that information you provide to us. We retain this information as necessary to resolve disputes in terms of transactions and otherwise, where needed, provide customer support and troubleshoot problems as permitted by law. We collect personally identifiable information (email address, name, phone number etc.) from you when you register with us to create your unique identification in terms of Virtual Payment Address and/ or any other unique registration identification that is/ shall be made available to our customers.
Use of Demographic/ Profile Data/ Your Information
We use personal information to provide the services you request. We use personal information to resolve disputes; troubleshoot problems; Send money, collect money; measure consumer interest in our products and services and we may use the information to keep you apprised on any online and offline offers, products, services and updates that shall be made available for use of our customers. We use the information thus obtained to customize your experience; detect and protect us against error, fraud and other criminal activity; enforce our terms and conditions which are an integral part of the use of this application; and as otherwise described to you at the time of such collection.
We identify and use your IP address to help diagnose problems with our server, and to administer our app. Your IP address is also used to help identify you and to gather broad demographic information.
Sharing of personal information
We may disclose personal information if required to do so by law or in the good faith belief that such disclosure is reasonably necessary to respond to subpoenas, court orders, or other legal processes. We may disclose personal information to law enforcement offices upon such requests, third party rights owners or others in the good faith belief that such disclosure is reasonable necessary to:
- Respond to claims that an advertisement, posting or other content violates the rights of a third party
- To protect the rights, property or personal safety of our users or the general public.
Methods of Data processing:
Data is controlled and processed in house by the bank. The in house Data center processes the data of Users in a proper manner and appropriate security measures are taken to prevent unauthorized access, disclosure, modification, or unauthorized destruction of the Data. The Data processing is carried out using computers and / or IT enabled tools, following organizational procedures and modes strictly related to the purposes indicated. In addition to the Data center, in some cases, the Data may be accessible to bank officials, involved with the operation of the service (administration, sales, marketing, legal, system administration) or external parties (such as vendors, third party technical service providers, mail & SMS carriers) appointed, if necessary, as Data Processors by the business Owner. The updated list of these parties may be requested from the business owner at any time.
Storage of your information:
With reference to the provision of the regulatory laws and rules, Bank shall maintain all necessary records of transactions between the Bank and the customer for at least five years from the date of the transaction.
Further, preserve the records pertaining to the identification of the customers and their addresses obtained while opening the account and during the course of business relationship, for at least eight years after the business relationship is ended.
Bank is also required to maintain the records for a longer duration in case there is a dispute and matter is pending in any Court/Enforcement Agencies etc.
Notwithstanding anything, Regulators/Courts may, by an order in writing, direct any banking company to preserve any of the books, accounts or other documents, for a period specified for their preservation.
In case of e-record, Bank has well defined procedures for process of sanitization, to expunge data from storage media for destruction.
Bank has well defined procedures and standards for handling data security.
Place of data processing: The Data is processed at the bank’s Data center and in any other places where the parties involved with the processing are located.
Retention time: The Data is kept for the time necessary to provide the mobile banking service, as requested by the User.
Legal action: The User's Personal Data may be used for legal purposes by the bank, in Court or in the stages leading to possible legal action arising from improper use of this application or the related services. The User is aware of the fact that the Data Controller may be required to reveal personal data upon request of public authorities.
System Logs and Maintenance: For operation and maintenance purposes, this Application and any third party services may collect files that record interaction with this Application (System Logs).
Information not contained in this policy: More details concerning the collection or processing of Personal Data may be requested from the bank at any time. Please see the contact information at the beginning of this document.
The rights of Users: Users have the right, at any time, to know whether their Personal Data has been stored and can consult the bank to learn about their contents and origin, to verify their accuracy or to ask for them to be supplemented, cancelled, updated or corrected, or for their transformation into anonymous format or to block any data held in violation of the law, as well as to oppose their treatment for any and all legitimate reasons. Requests should be sent to the bank at the contact information set out above. This Application does not support “Do Not Track” requests. To determine whether any of the third party services it uses honor the “Do Not Track” requests, please read their privacy policies.
Definitions and legal references
Personal Data (or Data): Any information regarding a natural person, a legal person, an institution or an association, which is, or can be, identified, even indirectly, by reference to any other information, including a personal identification number.
Usage Data: Information collected automatically from this Application (or third party services employed in this Application ), which can include: the mobile number and SIM serial number of the Users who use this Application, the method utilized to submit the request to the server, the size of the file received in response, the numerical code indicating the status of the server's answer (successful outcome, error, etc.), the features of the browser and the operating system utilized by the User, the various time details per visit (e.g., the time spent on each page within the Application) and the details about the path followed within the Application with special reference to the sequence of pages visited, and other parameters about the device operating system and/or the User's IT environment.
User: The individual (registered customer) using this Application, which must coincide with or be authorized by the bank Subject, to whom the Personal Data refer.
Bank (or Owner): Bank of Baroda is the Owner of this Application.
This Application: The hardware or software tool by which the Personal Data of the User is collected.
Cookie: Small piece of data stored in the User's device.