Identification data of an individual
In particular, the first name, surname, birth number, date of birth, place of birth, nationality, identity cards numbers, photograph and other personal data stated in the identity card. For businesspersons, also their IČO (ID number), VAT number, etc. It also applies to individuals with a connection to specific products, e.g. a joint holder, statutory representative of a legal person, co-debtor, applicant, or family member. This data is important to make sure we really contact the right person.
Data required to determine the risk profile under the AML Act
This is typically the data relating to the source and amount of your income and/or the amount and structure of your assets. You provide this information to us upon establishing the business relationship and throughout its duration.
Special categories of personal data (sensitive personal data)
In particular, the health data you provide to us with a view to strengthening your interests or that is needed to arrange for a product to be provided.
The dynamic biometric signature makes it possible to replace signing on paper with signing on a special signature capturing device (in particular a tablet or signpad). It involves scanning the graphical form of a handwritten signature on a screen of the device and capturing dynamic parameters of hand movement, such as pressure exerted on a pen-based device, speed, inclination, curves, sequence of strokes, etc., which are unique in their entirety The biometric data captured in this way is encrypted immediately after signing and inserted into the signed document (e.g., a contract). The graphical form of the handwritten signature is then visible on the signed document, just as with usual signing.
Due to the special protection of this type of personal data, this data is not provided in the exercise of the rights of the subjects, e.g., in the case in multi-party contracts where there are several parties on the client side.
Contact details
In particular, all addresses of the subject, e.g. the permanent residence address, correspondence addresses (for businesspersons also the address of the company) and other contact details of the entities, e.g. their telephone numbers, electronic addresses, social networking addresses, data mailbox IDs, etc. This data is necessary so that we can deliver our communications to you.
Socio-demographic data
In particular, statistical data, such as age, gender, marital status (single, divorced, etc.), education, profession, employer’s data, number of children, etc. Such data, which you usually share with us when applying for your product, allow us to better tailor our offer and services to your needs.
Property
In particular, data related to financial circumstances, such as ownership of real estate, securities or shares. In some cases, we also process information about your income and liabilities, as well as other loans/credits balances, lease contract balances, building savings instalments, pension insurance instalments, insurance premiums, other individual expenses (e.g. alimonies), other liabilities (surety, guarantee, ...) etc. We collect this data from you in particular as part of a product/service request, or from external sources (e.g. credit registers), or from information about the use of our products, and are primarily used for the evaluation of your loan/credit applications. In the case of beneficial owners, this means data related to the ownership structure according to Act No. 37/2021 Coll., On Registration of Beneficial Owners.
Tax-related information
In particular, data associated with identifying your tax residencies, i.e. where you are liable to pay taxes in order to comply with the statutory tax liability.
Data on used products and services
Information about which services provided by KB or its subsidiaries and/or partner companies you have arranged and how you use them (e.g. account numbers, account balances, transaction data on card payments, ATM withdrawals, outgoing and incoming payments, etc.). If you choose to use direct banking channels to operate your products/services, we keep information about your location, IP address, activity on our website, etc. We derive, for example, your transactional behaviour from this data and accordingly adjust our offer of products and services. We also create analytical models with outputs in the form of anonymised or pseudonymised data, so it is not possible to find out whom the data concerns. Thanks to this, we can make various data analyses and statistics, which we also may forward to third parties as anonymous outputs.
Means of electronic communication used for authentication and authorisation
In particular, data on means of electronic communication that are primarily used for authentication, i.e. verifying your identity. The data that fall into this category include, without limitation, a digital signature, certificate, or commonly used application login user name, identification or authentication through a mobile device, or serial numbers of the devices (MAC address), etc. The main reason for processing these data is to ensure a high level of security of while these means of communication are used.
Activity records of banking equipment and/or applications
In particular, identification data e.g. from payment terminals, communication channels or banking applications logs, as well as other data, such as geolocation data from payment terminals. The data is used, above all, to monitor and optimize the availability of our facilities and services, e.g. when dealing with your complaints or preventing the misuse of payment cards.
Data stored in and retrieved from your device
Cookies are small text files created and stored in your computer by a browser or an application. They often contain a so-called cookie ID. Such ID allows for a unique identification of a given cookie; it consists of a string of characters that can be used to associate a website with the specific internet browser in which the cookie was stored. This is also the case with our applications that use similar technologies. Such cookies make it possible, e.g., to distinguish your individual browser from other internet browsers that contain other cookies. A particular internet browser can therefore be recognised and identified by means of a unique cookie ID. Cookies may also include personal data that we process, such as the cookie ID, date and time of the request, website from which the request comes, the browser, operating system, language, software version, etc. A list of cookies and similar technologies can be found at the KB website.
Communication recordings
In particular, telephone call recordings, written records of meetings with relationship managers or other specialized staff, recordings of your complaints and claims. We collect this data on the basis of legal obligations and/or for the purpose of the arrangement and performance of a contract and/or due to the legitimate interests of KB, in particular defending its legal claims; this data is also intended to prevent you from being contacted too often and helps us to adjust our offer to your current needs. You are always informed in advance that a given telephone call is going to be monitored/recorded.
Camera recordings
In particular, data/recordings from the monitoring devices of KB’s branches/points of sale, as well as KB’s other premises, such as ATMs and safes. They are used, first and foremost, to ensure the safety of clients and employees of the bank and to protect property.
Photographs or videos
These are mainly photographs or video footage taken at mass events organised by KB for the public, e.g. educational or promotional events. In these cases, the information is part of the invitation or registration for the event. Where possible, the location of the event shall be marked with pictograms.
In exceptional cases, this may include photographs or video footage relating specifically to your person. In this case, you shall be asked for consent and the processing of this personal data shall only be possible on the basis of your consent.