GDPR is the new General Data Protection Regulation effective since 25th of May 2018.
Data that relates to a living individual, known as a “data subject” and “natural person”, who can be identified directly or indirectly through those data by:
It applies to ‘Data Subjects’ who are natural persons living or being in the European Union and whose personal data is processed by a controller or a processor. KBL epb data subjects are mainly:
KBL epb is the ‘controller’ as a Bank that directly holds personal data and determines how and why this personal data is processed. For example, the client address is a personal data collected in KBL systems “the how” in order to allow communication with the client in line with his contract “the why”.
We have reviewed our General Terms and Conditions (GT&C) describing the data protection measures and rights regarding our clients, please refer to §7- Protection of personal data.
We have also the following policies:
- Data Protection notice for prospects and other third parties describing the data protection measures and rights regarding our prospect and other third parties.
- Website Data Protection policy describing the cookies management and your rights as visitor of the website.
If you wish to make a request for exercising your rights or to raise a complaint related to data protection, please refer to https://www.kbl.lu/en/kbl-epb-data-protection/