รายงานความยั่งยืน

Privacy Policy
       In 2020, the Bank has established a privacy policy to reflect the Bank's transparency in connection with activities such as collection, use, disclosure and/or international transfer of customers’ personal data by performing in accordance with the law on personal data protection as follows:
The Bank’s operations in collecting personal data
       Personal data that the Bank collects are personal information, financial information, information that the Bank provides to customers, etc. It also covers personal information that is classified as legally sensitive personal information, namely biometrics and identifiable information such as religion, race, etc.
Purpose of collecting, usage and disclosure of personal data
       The Bank has determined the purpose for collecting, usage, disclosure and/or transfer of personal data overseas, including sensitive personal information that requires the consent of the data subject, unless the personal data protection law allows the collection, usage and disclosure of personal data without the prior consent of the data subject.

Disclosure of personal data
Disclosure of personal data
International transfer of personal data
International transfer of personal data
Retention period for personal data
Retention period for personal data
Rights of data subject
Rights of data subject
Disclosure of personal data
The Bank may disclose or transfer personal data in accordance with the purposes under the Bank's privacy policy to third parties, namely subsidiaries, business partners of the Bank, third parties as required by law, etc.
International transfer of personal data
The Bank has established guidelines for ensuring adequate protection of transferred personal data under the standard of protection of personal data as well as comparable to Thailand’s standard.
Retention period for personal data
The Bank shall store personal data for as long as necessary to carry out the purposes for which it has been received by the Bank. However, the Bank may have to retain the personal data for a longer time in the case that it is prescribed by law.
Rights of data subject
Data subjects may exercise their rights under the conditions stipulated by law and the Bank's rights management process, namely (1) the right to access or request a copy of the personal data collected, used, disclosed, and/or transferred overseas by the Bank, (2) the right to request rectification of personal data, (3) the right to obtain personal data in electronic form and request transfer of such personal data to another data controller, (4) the right to object to collection, usage and disclosure of personal data (5) the right to suspend use of personal data (6) the right to withdraw consent (7) the right to request erasure of personal data or make that personal data anonymously (8) the right to complain.
Operation in relation to the disclosure of corporate customers' information
       The Bank has no intention to disclose information about corporate customers or information of individuals related to corporate customers for marketing purposes. The Bank shall only collect and use such personal information within the Bank.