Who is the data controller?
Bankinter, S.A. (hereinafter, 'Bankinter' or the 'Bank'), which holds Tax ID number A28157360, has its registered office at Paseo de la Castellana 29, 28046 Madrid, and has telephone number 91 657 88 00.
How can you contact the Data Protection Officer?
You can contact its Data Protection Officer at the following email address: [email protected]
For which purposes will Bankinter process your data?
Bankinter will process your data for the following purposes: ñ
Complying with legal obligations applying to Bankinter, in particular, legal obligations connected with anti-money laundering regulations and consumer credit and responsible lending regulations, which require financial institutions to assess the solvency of their customers for the purposes of providing, controlling and monitoring financing products and/or services. In order to fulfil these obligations, Bankinter Group companies may need to disclose data to each other, provided that regulations allow it.
Formalising, maintaining and executing the pre-contractual and/or contractual relationships that you sign with Bankinter.
Consulting your data in the shared credit information systems in which it participates in order to assess your solvency when you apply for products and/or services involving financing, or when you have already contracted one of these products, and/or the Bank may share said data with these systems when you have a certain, matured and enforceable debt with the Bank that has not been satisfied and to avoid situations of non-payment.
Preventing situations involving fraud connected with products and/or services that you have arranged with the Bank. To this end, Bankinter is a member of different fraud prevention files, such as Confirma or of the Spanish Society of Payment Systems (Iberpay). You can read more about how we process this information and about the files of which Bankinter is a member at this link
www.bankinter.com/file_source/nbol/nav/seguridad-privacidad/uso_datos_personales.pdfsection C) point II) Fraud prevention.
Contacting you through any channel (including electronic) to inform you in particular about products and/or services which are similar to ones that you already have arranged with us and that the Bank wants to promote.
Assessing your personal characteristics using data that you have provided or data from your products and/or services so that we can learn more about you and anticipate your financial situation, personal preferences, interests and behaviours. This will enable us to prepare a commercial profile about you and find out which products and/or services that the Bank wants to promote may interest you, personalise marketing actions related to these products and/or services, and create new products and/or services and improve their features
More information about the logic applied to profiling is available at this link www.bankinter.com/file_source/nbol/nav/seguridad-privacidad/uso_datos_personales.pdfsection C), point IV) Profiling using internal data.
Contacting you through any channel (including electronic) to inform you about products and/or services from Bankinter, Bankinter Group and its investees or those companies with which Bankinter Group has signed partnership agreements, which bear no similarity to the ones you have with us and that are offered by Bankinter. Your data will not be disclosed to third-party companies when they are processed.
Including data about you collected from external sources in our files and assessing your personal characteristics using personal data that you have provided or data from your products and/or services, as well as from external sources, so that we can learn more about you and anticipate your financial situation, personal preferences, interests and behaviours. This will enable us to prepare a commercial profile about you and find out which products and/or services that the Bank wants to promote may interest you, personalise marketing actions related to these products and/or services, and create new products and/or services and improve their features. For this data processing, data from public records, credit information systems, the Central Credit Register of the Bank of Spain (CIRBE), social media, Informa and other sources will be accessed.
More information about the logic applied to and the categories of data used for profiling is available at this link www.bankinter.com/file_source/nbol/nav/seguridad-privacidad/uso_datos_personales.pdfsection D), point V) Commercial profiling with own and external data.
Sharing your personal data with Bankinter Group companies and investees so that they can offer you products and/or services through a range of channels (including electronic).
Sharing your personal data with Bankinter Group companies and its investees so that they can evaluate your personal characteristics and get a better knowledge or make predictions about your financial situation, personal preferences, interests or behaviour in order to create a commercial profile about you
If you would like more information about each type of data processing, please go to our website: www.bankinter.com/banca/nav/seguridad-privacidad
What are our legal grounds for processing your data?
-
For purpose 1:complying with legal obligations.
-
For purpose 2: executing the contract and/or request for pre-contractual measures.
If you refuse to provide the personal data requested or submit inaccurate or incomplete data, we may be unable to properly provide you with the arranged service.
-
For purpose 3: the legitimate interest of both Bankinter and the rest of the entities participating in the common credit information systems, in sharing situations of non-compliance with monetary, financial or credit obligations they may be involved in.
-
For purpose 4: the legitimate interests of account holders who may be affected by third-party fraud, and of Bankinter in its attempts to detect and prevent fraud in transactions where holders' accounts are either the originators or beneficiaries.
-
For purposes 5 and 6: legitimate interest of Bankinter.
You can consult the information about the weighting reports released by Bankinter for the purposes carried out based on legitimate interest, via the email address [email protected]
-
For the remaining purposes: consent. You do not need to provide this consent to formalise this contract. If you have given your consent for some or all of this data processing, you can withdraw it at any time by following the steps set out in the 'Rights' section
Bankinter will only process the data based on legitimate interest and/or consent if you have not objected and/or have given us your authorisation for those purposes. Remember that you can always consult this information on our website www.bankinter.com profile and security section or through the channels listed in the 'Rights' section.
Who receives your data?
Bankinter will disclose your data to the following recipients:
-
Public administrations, authorities and bodies, including courts, where required by applicable legislation, or needed in order to prevent, investigate and detect fraud.
-
The Banco de España Risk Information Centre (CIRBE). Any data required to identify individuals who maintain any credit risk directly or indirectly, as well as the characteristics of these individuals and risks, specifically including those which affect the amount and the possibility for recovery, will be disclosed. Holders of a risk position declared to the CIRBE may exercise their rights of access, rectification, erasure, objection, restriction of processing and portability under the legal terms and conditions established by contacting Banco de España
-
Common credit information systems. If you have a verified, overdue and enforceable debt with the Bank that has not been repaid within the specified period, Bankinter may enter this default in the following credit information systems: ASNEF-EQUIFAX, SERVICIOS DE INFORMACIÓN SOBRE SOLVENCIA Y CRÉDITO and EXPERIAN, BUREAU DE CR�DITO. - FILE BADEXCUG
-
Bankinter Group companies for the purposes of: (i) complying with our legal obligations, in particular, legal obligations connected with anti-money laundering regulations and consumer credit and responsible lending regulations, which require financial institutions to assess the solvency of their customers for the purposes of providing, controlling and monitoring financing products and/or services; (ii) enabling the companies of Bankinter Group and/or its investees, provided that we have your consent, to send commercial offers and/or analyse personal aspects of your financial situation, preferences, interests or behaviours, as per purposes 9 and 10 of this document. You can find more information about the companies that form part of Bankinter Group and its investees, at the following link: https://www.bankinter.com/file_source/nbol/estaticos/plataformas/banca_online/area_publica/proteccion_datos/empresas-del-grupo-bankinter.pdf
-
The bank-transaction fraud-prevention common file, managed by Sociedad Española de Sistemas de Pago (Iberpay).
-
The common filing system for the prevention of fraud provided by the entity Confirma Sistemas de Información, S.L.
-
Data processors engaged by Bankinter, or who may be contracted by Bankinter, may also have access to your personal data. You can see the list of service provider categories at the following linkhttps://docs.bankinter.com//stf/plataformas/banca_online/area_publica/proteccion_datos/categorias_servicios.pdf
As a general rule, Bankinter will only process your data in the European Economic Area. However, Bankinter may contract services that are provided outside this area, meaning that data would be transferred internationally as a result. This will only occur when necessary and the suppliers involved will always ensure that these transfers will comply with the prevailing legislation and/or will only be made to countries with suitable protection guarantees. In addition, Bankinter may transfer data internationally when it is required to provide information to foreign authorities.
Which rights can you exercise?
You may exercise your rights of access, rectification, erasure, objection, restriction of processing and data portability in the circumstances and under the scope established by the applicable legislation currently in force. If you have provided your consent for the purposes described above, you may withdraw it at any time.
If you would like to exercise your rights, please call our telephone banking service (900 80 20 81), visit your regular branch or write to Bankinter, S.A. Operaciones- Protecci�n de Datos. Calle Pico San Pedro, 1. Tres Cantos. Madrid. 28760, or contact us via the website:
www.bankinter.com
or by email at
[email protected]
You are also entitled to lodge a claim with the Spanish Data Protection Agency.
Spanish Department of Social Security
Applicable anti-money laundering legislation requires banking institutions to obtain and verify information from their customers on their economic activity. Therefore, as the account holder, you authorise Bankinter, S.A. to request, on your behalf, all the relevant information concerning your economic activity from the Spanish Department of Social Security. Data obtained from the Spanish Social Security Department will be used exclusively for the aforementioned purposes. If the financial institution and/or staff providing the services fails to comply with this obligation, all the actions established by prevailing personal data protection legislation will be enforced.
Where do we get your personal data from?
Bankinter obtains your data from the following sources:
-
Data provided by you for registering as a customer at the Bank and data that you have provided for arranging the different products and/or services that you have with the Bank.
-
Data from providing the products and/or services that you have arranged with Bankinter and that have been obtained as a result of the contractual relationship.
-
Data obtained from third parties, in particular, among others, data from the CIRBE (including reports on the risk positions that may be registered), credit information systems of which the Bank is a member (when a customer's financial solvency needs to be assessed), the Spanish Social Security Department, Iberpay, Confirma, Bankinter Group companies, the Mercantile Registry, the Property Registry, Bankinter's aggregation service and financial assets service, Informa, the Land Registry, social media and other virtual platforms.
What types of data will Bankinter process?
Bankinter will process different categories of data, in particular:
Identification details, contact details, professional and socioeconomic data, financial and investment data, data about your personal characteristics, demographic data, data from products or services that you have arranged or in which the Bank has any type of involvement, transaction data, browsing data, risk assessment or scoring data, vulnerability data, geolocation data, data about your status as a Bankinter shareholder, data from the Bankinter aggregation service and financial assets service, data on your special communication needs that have been disclosed to the Bank to enable you to access dialogue or day-to-day transaction management, voice, image and biometric data, all in relation to the purposes outlined above, with more details available in the privacy policy
www.bankinter.com/banca/nav/seguridad-privacidad
Additional information
If you would like more information about how and why Bankinter processes your data, it is available on our website:
www.bankinter.com/banca/nav/seguridad-privacidad