Why we Process Personal Data: The Applicable Law obligates us to identify our Clients and, where relevant, their representatives and persons participating in an occasional transaction.
How we Process Personal Data: For this purpose, we will ask you to provide a valid identity document and if necessary, other documentation relevant for identification. We use the authentication tools when verifying your identity. We must ensure that your Identification data is correct and up to date during the Service provision period.
Identification
When you apply for Services or conclude a Service agreement, we have a legal obligation to identify you. For identification, we will ask you to provide a valid identity document which we verify in the Register of Invalid Documents. If you conclude a Service agreement on behalf of a child, we will ask you to provide a valid identity document of the child which we will verify in the Register of Invalid Documents, in addition to verifying your child’s identity and your right to represent the child.
When you use our Services continuously, we need to ensure that your Identification data is correct and up to date. For this purpose, we will ask you to update your Identification data provided to Swedbank, and we also obtain necessary Identification data from the Register of Natural Persons and update them automatically.
For the purposes described in this Section, based on our legal obligation or performance of agreement, we may Process such categories of Personal Data like Identification data, Contact data.
We will share your Identification data within the Swedbank Group entities registered in Latvia depending on the products and Services you use or have requested, to ensure that your Personal Data is correct and up to date.
Authentication
During authentication, we verify the identity of persons who obtain our Services.
Authentication is mainly done by using the authentication tools provided by companies like SK ID Solutions AS (Smart-ID, Mobile-ID). You can also use authentication tools that we accept based on the regulatory requirements (eID card, eParaksts Mobile), or other solutions which we consider secure and efficient (biometrics, PIN in Swedbank’s mobile app, security token).
When you use an authentication tool provided by another company, we will share with that company your Identification data and Communication and device data (such as the IP address and device type). In addition, we will share the fact that you use our Services. Please be informed that during the authentication, we do not Process such Personal Data as “biometric data”, but relevant companies providing the authentication services to you and acting as independent Data Controllers. Therefore, if you are interested in more details about Personal Data processing, please visit relevant websites of authentication service providers.
For the purposes described in this Section, based on our legal obligation or performance of agreement, we may Process such categories of Personal Data like Identification data, Contact data, Communication and device data.
Why we Process Personal Data: We Process Personal Data to fulfil a legal obligation imposed by the Applicable laws on prevention of money laundering and terrorism and proliferation financing, and enforcement of international and national sanctions.
How we Process Personal Data: We collect Personal Data from you and external sources such as public registers. Your Personal Data is transferred to data Recipients, such as the authorities, when it is required by and according to the respective Applicable Law.
Applicable Law obligates us to perform due diligence activities, including to know our clients and understand the purpose and nature of the business relationship and occasional transactions with us. We must also assess the risks associated with money laundering, terrorism and proliferation financing, international and national sanctions. This helps to safeguard public interests, as well as ensures that our Services are used for legitimate purposes and are protected against persons who have inappropriate intentions.
For this purpose, we are obligated to identify you (please see the Identification and authentication section), as well as to ask you to provide accurate and truthful Personal Data about yourself and documents confirming the Personal Data, if necessary. We may use the Personal Data about you obtained directly from you or from the external registers such as the Register of Natural Persons, business registers, asset registers, publicly available databases of politically exposed persons if relevant. Also, we may review your data in the media to check for adverse information. According to the Applicable Law we are also obliged review your Personal Data against sanction lists to ensure that our Services are not provided to sanctioned persons or persons related to sanctions and otherwise used to violate or evade sanctions.
During your business relationship with us, we, regularly or based on a particular case, may ask you to update the Personal Data you’ve provided and may check if the data obtained from the external registers mentioned above is up to date. The Applicable Law also obligates us to monitor your activity and transactions to ensure that they are not considered suspicious and do not fall under sanctions. The scope of due diligence activities and their regularity depend on the assessment of the money laundering, terrorism and proliferation financing risk and sanctions risk. We stand a guard over your financial assets to prevent unauthorised activity with your funds or other fraud attempts. In this regard we act reactively by promptly investigating information we receive about possible fraudulent activities. We also proactively, to the extent possible, analyse your transactions with the aim of identifying, preventing or eliminating unauthorised or authorised but possibly fraudulent outflows of your funds. In case of criminal investigation we provide any relevant information that may contribute to the investigation.
For these purposes, as described above we also Process Personal Data of individuals related to Corporate Clients. We identify the legal entity’s representatives (legal representatives, authorized persons, persons holding a position in the company’s highest management body such as the procurator, insolvency administrator) and ask to provide their Identification data, Demographic data, Contact data and data about the relationship with legal entities. We may also ask to provide Identification data and Demographic data about the legal entity’s shareholders. The legal entity has an obligation to disclose its beneficial owners and provide their Identification data, Demographic data and Contact data. If it is necessary, we may ask the legal entity to provide additional documents and information about beneficial owners, for example, proof of source of wealth. Where relevant, we also collect and regularly update Personal Data about the legal entity’s representatives, shareholders and beneficial owners from the external registers such as the Register of Natural Persons, business registers, asset registers (such as the Land Registry) etc. For the purposes described in this Section, based on our legal obligation and legitimate interest, we may Process such categories of Personal Data like Identification data, Contact information, Financial data, Account data, Data about trustworthiness and due diligence, Family data, Demographic data.
Why we Process Personal Data: We Process your Personal Data to provide the daily banking Services, such as bank accounts, deposits, payment services and other daily banking Services requested by you, as well as to manage relationship with you, provide, control and administer access to the Services.
How we Process Personal Data: The Processing involves the collection of Personal Data from you and from the use of the Service, transfer of Personal Data to the Recipients in order to perform a Service agreement, when it’s required under the Applicable Law, and the receipt of Personal Data from third parties, such as other payment service providers.
You have opened and hold a current account with us
When you open an account with us, we Process your Personal Data for the purpose of serving you according to the agreement and to provide you with other Services related to the bank account as requested by you.
According to the Applicable Law we have legal obligation to share the Personal Data about the held accounts with the centralized account register, the tax authority.
When the account information service is provided to you by Swedbank, which allows you to access account information from your account held at another financial institution, your Personal Data, such as the Identification, Account, Communication and device data, is transmitted to Swedbank from this financial institution.
Based on our legal obligation we Process your Personal Data to fulfil the account information service requests initiated through an account information service provider. This service ensures that you have access to your Swedbank account information at another financial institution. For this purpose at your request, we disclose your Personal Data, such as Identification, Account, Communication and device data, to relevant financial institution.
For the purposes described in this Section, based on our legal obligation, performance of agreement or legitimate interest, we may Process such categories of Personal Data like Identification data, Contact data, Financial data, Account data, Family data, Demographic data and Children’s data.
You use a Swedbank payment card
If you request and conclude an agreement for a Swedbank payment card (credit or debit card), we Process your Personal Data for the purpose of concluding and fulfilling the respective payment card agreement, including card ordering, card personalization and activation, providing support in card related issues and preventing card fraud.
In order to execute card transactions, we Process your Personal Data for authorization and clearing of the transaction (incl. transactions initiated by the merchant). If you file a complaint about a card transaction, your transaction data may be shared with the relevant international payment card organisation (for example, Mastercard).
When Client orders a supplementary payment card linked to their account and we Process Personal Data of the holder of the supplementary card, the Processing is based on performance of the agreement to carry out business activity and provide the Service.
For the purposes described in this Section, based on our legal obligation, performance of agreement or legitimate interest, we may Process such categories of Personal Data like Identification data, Contact data, Account data, Professional data, Children’s data, Demographic data, Communication and device data (for example, when enabling and managing digitized cards and mobile contactless payments), Family data, Financial data.
You send or receive payments
We Process Personal Data when providing domestic and international payments, including payment initiation services. For providing these Services we Process your Personal Data (including sharing data with external parties like the payee, payment organisations, correspondent banks and similar parties) as indicated by you when you submit a payment order.
If you have registered your phone number linked to your account with the Proxy Registry "Instant Links" maintained by the Bank of Latvia acting as an independent Data Controller, your Personal Data is Processed for the purpose of the inclusion in the register based on your acceptance of the conditions/your consent to use the Service, and the Processing involves sharing Personal Data (your phone number, full name and IBAN) with the payee.
Based on our legal obligation, we Process your Personal Data to fulfil requests in order to provide payment initiation services from your account initiated through a payment initiation service provider. This service ensures that, you can authorize payments from your Swedbank account through interface provided by another financial institution. For those purposes your Personal Data, such as Identification, Account, Communication and device data, is disclosed to relevant financial institution.
Similarly, your Personal Data is Processed when you initiate payments from your account held at another financial institution through Swedbank as payment initiation service provider. Swedbank provides payment initiation service through multiple tools such as Swedbank Internet Bank, mobile application or Bank Link service.
For the purposes described in this Section, based on our legal obligation, performance of agreement or legitimate interest, we may Process such categories of Personal Data like Identification data, Account data, Communication and device data.
Why we Process Personal Data: We Process Personal Data for the purpose of providing the financing Services chosen by you and to comply with the Applicable Law in the area of financing Services.
How we Process Personal Data: Personal Data is Processed when we conclude, perform and terminate agreements such as agreements for consumer credit (like Small Loan, Car Loan, Home Small Loan, Solar Panels Loan, Study Loan, credit card limits), mortgage loan, leasing and similar Services related to the provision of financing to the Client. Personal Data is collected from you and from external sources. Depending on the financing Service and the particular situation of the Client, Personal Data is disclosed to the Recipients in order to conclude and execute the agreement, to comply with the Applicable Law or to defend our legitimate interest.
Swedbank pursues legitimate interest to enable fast decision-making once the Client applies for financing. Considering this, we Process, by automated means, the Client’s Personal Data obtained from the Client and the Client’s use of the Service, including the Personal Data from transactions performed in an account held with Swedbank, in order to ensure fast and accurate decision-making when the Client applies for financing.
Part of assessing loan applications and making loan decisions is based on automated Processing of Personal Data, including Profiling. We assess your creditworthiness by automated means. For these assessments, we evaluate the Personal Data provided in your application as well as Personal Data collected from internal and external data sources. Assessment of your creditworthiness is carried out to ensure compliance with legal obligation, such as the responsible lending requirements, and is necessary for entering into an agreement between you and Swedbank. You have the right to contest the automated decision and ask Swedbank’s employee to review it manually.
When you enter into an agreement with us (including the co-borrower or surety agreement), we have legal obligation to provide data on the concluded financial Services agreements, their performance and/or changes in the performance, therefore we share relevant Personal Data of contracting parties with such external register as Credit Register of the Bank of Latvia.
When you conclude a financing agreement, the fulfilment of which is secured by a third party under specially approved programmes or when you conclude an agreement on granting financing for a specific purpose, your Personal Data may be shared with third parties involved in such approved financing schemes, for example a third party providing a guarantee for the borrower (Altum), or in case of a student loan, the State Education Information System.
For the purposes described in this Section, based on our legal obligation, performance of agreement or our legitimate interest, depending on specific financing Service, we may Process such Personal Data categories as Identification data, Demographic data, Family data, Contact data, Account data, Financial data, Data about the trustworthiness, Relationship status data, Professional data.
Amount of your Personal Data which we Process depends on your role in the financing process, i.e. whether you are the Client concluding the agreement with us or you have a different role in the financing relationship, for example, your creditworthiness will not be assessed if you are the seller of an asset in a leasing deal. In case of the role of a contact person or authorized representative we only Process Identification data and Contact data.
You are a person related to a Corporate Client
For purpose of creditworthiness assessment of Corporate Client, based on legitimate interest we may Process Personal Data of individuals closely related to Corporate Client, such categories of Personal Data as Identification data, relationship with relevant legal entities data, Financial data.
This enables Swedbank to evaluate if funding may be granted to the related Corporate Client and minimizes the default risks.
Why we Process Personal Data: We Process your Personal Data to advise you on selecting suitable products, provide the Services chosen by you and in order to comply with the Applicable Law applicable in relation to the specific Service.
How we Process Personal Data: Personal Data is collected and regularly updated from you directly, from your use of our Services, including communication with us, and from external sources such as third-party registry providers (for example, State of Social Insurance Agency of the Republic of Latvia). As part of the suitability assessment, Processing of your Personal Data also includes Profiling. Depending on the Service, Personal Data is disclosed to the Recipients if necessary to conclude and perform an agreement and/or to comply with Applicable Law.
Investment Services
When you have applied for an investment or ancillary Service, we Process your Personal Data for the conclusion, performance, maintenance and termination of the agreement. This involves safekeeping of your financial instruments and execution of your orders concerning financial instruments, performing the activities necessary for the execution of corporate actions related to your financial instruments, provision of investment advice or portfolio management to you as well as the provision of other investment and ancillary Services.
We process your Personal Data, including Profiling, for purpose of applying target market rules, as well as assessing the suitability and appropriateness of the relevant Service or financial instrument to you.
Based on Applicable law we must also record phone conversations and video streams in the provision of investment and ancillary services.
We Process your Personal Data to provide mandatory reports to you about the costs and charges, trade execution, financial instrument holdings, losses for certain Services and financial instruments, and for other types of reports.
Your Personal Data may be disclosed to local and foreign supervisory and tax authorities, central securities depositories, exchanges or other execution venues, issuers of financial instruments or third parties appointed by the issuers, fund managers and other financial intermediaries.
Personal Data is collected and regularly updated from you directly, from your use of the Services, including your communication with us, and from external sources, such as the Register of Natural Persons, business registers, asset registers. For purposes described in this Section, based on our legal obligation or performance of agreement, depending on the specific investment Service, we may Process such Personal Data categories as Identification data, Contact data, Children´s data, Family data, Demographic data, Professional data, Financial data, Data about financial experience, Account data, Data about habits, preferences and satisfaction, Data about trustworthiness, Communication and device data.
3rd pension pillar pension plans
If you invest in Swedbank’s 3rd pension pillar pension plans, we Process your Personal Data according to the requirements of Applicable Law and pension plan regulations. This includes providing you with necessary information, administering and Processing your investments in the pension plan, keeping record of your individual pension account, pay-outs from the pension plans and inheritance, providing information to tax authorities and supervisory authorities.
Based on your application, we transfer your accrued pension capital from Swedbank to other pension funds managed by third-party pension fund management companies.
For purposes described in this Section, based on concluded agreement or our legal obligation, depending on the specific Service, we may Process such Personal Data categories as Account data, Demographic data, Contact data, Financial data and Identification data.
Why do we Process Personal Data: We Process Personal Data to provide the Service of -life and unit-linked life insurance chosen by you, including to assess your individual risk and calculate insurance premiums where needed, to conclude and perform insurance contract, to handle claims related to the insurance contract and pay insurance benefit, and in order to comply with the Applicable Law applicable in relation to the Service, as well as to protect our legitimate interests.
How we Process Personal Data: Personal data is collected from you and from external sources, as well as regularly updated. Depending on the life insurance Service, Personal Data is disclosed to data Recipients in order to conclude and execute the agreement or to comply with the Applicable Law.
When you have submitted an application for a risk life insurance Service, we Process your Personal Data to assess your individual risk level, calculate the life insurance premium and sum insured and make an underwriting decision. We Process your Personal Data, including health data, by automated means and take automated decisions based on the Profiling. When additional information is needed or you object to automated decision making, our specialist manually evaluates the application received. For this purpose, we Process your health data we receive from you, from medical practitioners and medical institutions, as well as Personal Data that is already in our disposal.
In case you apply for the unit-linked life insurance Service, we also Process your Personal Data, including by Profiling, to assess the suitability and appropriateness of the Service for you.
After life insurance contract conclusion, we Process your Personal Data to perform the life insurance contract (including sending insurance service-related messages), amend and terminate it and make a pay-out based on the contract. In addition, in order to comply with legal obligation, we Process your Personal Data to send, event-based and annual reports (regarding unit-linked life insurance contracts), as well as to comply with requirements regarding taxation of the insurance benefit.
When you have submitted a life insurance benefit application, in order to handle the claim, we Process your Personal Data including health data we receive from medical institutions, as well as Personal Data that is already at our disposal. We also Process your Financial data we receive from other entities belonging to Swedbank Group if it is necessary to pay the life insurance benefit and Personal Data we receive from the authorities, for example data about criminal convictions and offences.
We also may share your Personal Data, including health data, with the reinsurance company to fulfil our obligations arising from the reinsurance agreement to handle the claim and receive the insurance benefit.
For the purposes described in this Section, based on performance of agreement, our legal obligation or legitimate interest, as well as your consent, we may Process such Personal Data categories as Identification data, Account data, Contact data, Financial data, Family data, Children’s data, Data about relationships with legal entities, Communication and device data, Relationship status data, Demographic data, Professional data, health data and data about criminal convictions and offences, data about the Client’s financial experience, Data about trustworthiness and due diligence, Data about habits, preferences and satisfaction.
Why we Process Personal Data: We Process Personal Data to provide the Service of non-life insurance, including to assess your insurance risk and calculate insurance premiums, to handle claims related to the insurance contract and pay the insurance benefit, and in order to comply with the Applicable Law applicable in relation to the Service of non-life insurance, as well as to protect our legitimate interests.
How we Process Personal Data: Personal Data is collected from you and from external sources, as well as regularly updated. Depending on the Service, Personal Data is disclosed to data Recipients in order to conclude and perform the contract, to comply with the Applicable Law.
When you have applied for an insurance Service, we Process your Personal Data to assess your trustworthiness and to set the non-life insurance premium and the conditions according to your risk level. In order to assess the non-life insurance risk, calculate the insurance premium and conclude the insurance contract, we Process your Personal Data by automated means, including Profiling. When additional information or risk assessment is needed or you demand to take decision manually, our specialist evaluates the received application. We Process Personal Data we receive from providers of registers and the Personal Data we have regarding you, and the data shared by other Swedbank Group entities.
After insurance contract conclusion, we Process your Personal Data to perform the contract, to send policy renewals and insurance Service related messages, amend and terminate the contract, refund insurance premiums. In addition, in order to comply with legal obligation, we Process your Personal Data to send insurance Service-related messages.
When you have submitted a claim application, we Process your Personal Data to handle the claim, including making the claim decision and paying the insurance benefit. We Process your Personal Data we receive from other insurance companies, providers of registers, the authorities, medical practitioners and medical institutions, other Swedbank Group entities, as well as Personal Data, including health data, we have regarding your previous claims.
When you need medical assistance in connection with an insured event under travel insurance or in order to handle motor third party liability claim in relation to a country outside the EU/EEA, your Personal Data is transferred to the respective country to perform the contract.
In addition, we Process your Personal Data to provide you with an insurance price corresponding to your personal level of risk and to develop pricing models, to control the quality of vehicle repair work and to submit a claim for the compensation of damage against the third party who caused damage to you, or a claim against another insurance service provider. We may share your Personal Data, including health data, with the reinsurance company to fulfil our obligations under the reinsurance agreement to handle the claim and receive the insurance benefit. We may also share your Personal Data with other insurance service providers in order to reduce their operational risks and perform fraud prevention.
For the purposes described in this Section, based on performance of agreement, our legal obligation or legitimate interest, depending on the specific Service, we may Process such Personal Data categories as Identification data, Account data, Contact data, Financial data, Family data, Children’s data, health data, Professional data, Data about criminal convictions and offences, Data about relationships with legal entities, Communication and device data, data about habits, preferences and satisfaction, Relationship status data, Demographic data, Data about trustworthiness and due diligence.
Why we Process Personal Data: We Process Personal Data to prepare and provide you with offers that meet your needs, relevant information and to conduct opinion surveys, organise lotteries and campaigns, and customer service programs for Clients.
How we Process Personal Data: We Process your Personal Data that is collected from you and from your use of Services for marketing purposes, including creation of your profile to provide you with personalised marketing communication. We share your Personal Data within Swedbank Group companies operating in Latvia for this purpose.
Profiling in marketing
We carry out Profiling using Personal Data for marketing purposes in order to assess which products and Services may be suitable and relevant to your interests and needs. This enables you to receive tailored offers and Services rather than general information.
For these purposes, we assess certain personal characteristics of the Client, in particular to analyse or predict, for example, the economic situation, personal preferences, interest of such individual. We may automatically Process Personal Data for the purpose of creating a Client profile and thereby providing the Client with suitable recommendation and offers. Such Personal Data may be, for example, information about the Client’s product holdings and the Client’s usage of the Service. We also may process data about the Client’s economic situation, typical behaviour and lifestyle patterns based on the Client’s usage of the Service, performed transactions and information provided to Swedbank. This data may be used for creating segments and profiles, which are necessary to execute customer service programs for the Client and providing suitable offers to the Client. The Processing may result in advice and offers provided based on the Client’s needs, inclusion of the Client in customer service programs and therefore application of special prices and service conditions, and exclusion from the programs.
Information about Personal Data Processed when you provide consent or do not object to Processing based on legitimate interest is provided to you in the information concerning such consent or permission (legitimate interest) for the Processing as described in Sections below.
Preparation of offers
To provide you with the best user experience and to prepare relevant offers at the most convenient time by identifying the Client's interests and needs at the time, we have prepared the following types of offers:
- Personalized suggestions – practical marketing offers to you to choose the most appropriate Services, to improve their everyday use or to refrain from inappropriate use and other suggestions to best serve the Client's interests and needs, for example, product upgrade, replacement.
- Personalized financing and insurance limits – practical calculations designed to help you understand what lending and leasing options, as well insurance premiums are available to you (applicable only from the age of 18).
- Offers together with partners – practical offers designed to help you (applicable from the age of 16) choose suitable Services and benefits from Swedbank's collaboration partners. No Personal Data is shared with the partners.
You may receive these offers by providing consent to all or some of the above types of offers. You can provide and manage consent by logging in to our Internet Banking and going to the "Privacy settings" page or by visiting any Swedbank branch. We may occasionally offer you the opportunity to consider providing consent to receive offers via our Internet Banking or mobile app.
You can withdraw your consent at any time:
- by visiting our Internet Banking site’s page "Privacy settings";
- by visiting any Swedbank branch;
- by calling the Consultation Centre.
If you are interested in tracking your spending and having a categorized overview of your spending in all your accounts in a single view, you can use our My Budget tool available in Internet Banking and mobile app. Processing of your Personal data in this tool is subject to your consent.
We will occasionally remind you of the consents you have provided and invite to consider whether these are in line with your current wishes when withdrawing or providing them.
Please note that any changes made by you in the offer preparation settings will take effect within 5 days.
For the purposes described in this Section, based on your consent and depending on chosen offers we may Process such categories of Personal Data categories as Identification data (except national identification number), Contact data, Account data and Demographic data, information about products/Services/channels the Client already uses, the Client’s previous experience with using them, Financial data including income and transactions in the Client’s accounts, as well as data that indicates if the Client is eligible for special customer program offers. When the Client visits Swedbank’s website, Internet Banking or mobile app, we also take into account the Client’s browsing behaviour and targeting technologies to the use of which the Client has consented. In case of offers with financing and insurance limits, before setting the limits, Swedbank first considers if the Client meets the basic lending and insurance conditions.
Preparation of other information
To increase the Clients’ awareness of Swedbank’s news and Services, we prepare the following types of information for our Clients:
- Relevant information – information created to invite the Client to events, to send greetings and newsletters;
- Client satisfaction surveys – questionnaires designed to invite the Client to provide feedback on the Services they use and to help us improve those.
We will prepare this information based on our legitimate interest without asking for consent, but you can decide whether or not to permit us to do so. You may choose which types of information to receive or to object to, that is, each type separately or both together.
You can object to the preparation of this information at any time and further manage your permissions:
- by visiting our Internet Banking site’s page “Privacy settings”;
- by visiting any Swedbank branch;
- by calling the Consultation Centre.
Please note that any changes made by you in the information preparation settings will take effect within 5 days.
For the purposes described in this Section, based on our legitimate interest, we may Process Personal Data categories such as Account data, relationship status data, data about habits, preferences and satisfaction, Communication and device data, Contact data, Demographic data, Family data, Identification data (except national identification number) and Financial data.
You may receive our marketing offers and other relevant information to which you have provided consent or permission as described in Sections above through the following communication channels: 1) e-mail; 2) SMS; 3) phone; 4) post.
You may receive offers and other information by providing your consent to one, some or all channels. This consent may be provided or withdrawn by you in the same manner as described in Section 2.8.2. In addition, you may unsubscribe from receiving direct marketing e-mails by clicking on the link in the footer of each e-mail sent.
Please note that the choice of channels may affect the offers and other information you receive. Each offer and other information has a dedicated communication channel. For example, some offers and surveys are sent only by e-mail, while other types of offers will also be available via our Internet Banking and mobile app, for example:
- if you consent to the preparation of offers but do not consent to any communication channel, we will prepare an offer which might be valuable for you to receive now in the form of an e-mail, but we will not be able to send it. In this case, however, some of the offers may be available on our Internet Banking, mobile app, branch and Consultation Centre;
- if you consent to any or all communication channels but, for example, do not consent to the preparation of offers, we often will not be able to prepare an offer to send to you.
Please note that consent to communication channels is not required for sending service messages to the Client in relation to the Service used, for example, expiry of the concluded agreement, fraudulent activity in the current account. We will send such information on the basis of our contractual relationship to ensure that you are always informed in a timely manner about the current status of the Services used.
For the purposes described in this Section, based on your consent, we may Process such Personal Data categories as Identification data and Contact data.
We offer special customer service and loyalty programs for our Clients, where better pricing and/or additional values are available for participants of the programs. In order to be able to include in and apply special conditions of the customer service programs, we Process Personal Data by automated means. Information about Processing of Personal Data in relation to the project or program is provided in the terms and conditions of the respective project or program or in a separate notification related to relevant project of program.
The Processing of Personal Data for the above purpose is performed if the Client does not object to the Processing when the Processing is based on legitimate interest of Swedbank, or the Client has accepted the terms and conditions and thereby agreed to participate in the program.
For the purposes described in this Section to execute customer service programs, based on performance of agreement or legitimate interest, we may Process such Personal Data categories as Identification data, Contact data, Demographic data, Relationship status data, Data about relationships with legal entities, Communication and device data, Account data, Data about habits, preferences and satisfaction or financial data.
In order to improve financial literacy of society and/or increase our brand recognition, we organize campaigns, educational and informative events, lotteries and competitions for our Clients.
For the purpose described in this Section, based on legitimate interest or consent, we may Process such Personal Data categories as Account data, Professional data, Financial data, Contact data, Data about habits, preferences and satisfaction and Demographic data.
Why do we Process Personal Data: Processing of Personal Data is necessary for the purpose of Service quality and to protect the interests of the Client and Swedbank, to handle Clients’ complaints and comply with the Applicable Law.
How do we Process Personal Data: For the purpose of Service quality and to protect the interests of the Client and Swedbank, and when applicable for the purpose of verification of commercial transactions or other business communication to comply with the Applicable Law, with regard to the provision of investment services, phone calls and video streams are recorded. Additionally, Swedbank Processes Personal Data in relation to written correspondence in order to ensure the quality of the Service and data for handling Clients’ complaints.
Swedbank Processes Personal Data when it records telephone calls with the Client to improve the Service quality and to protect the interests of the Client and Swedbank. For the purpose of Service quality and to protect the interests of the Client and Swedbank, phone calls are recorded if the Client agrees to such recording.
Additionally, we Process Personal Data in relation to written correspondence received via email, Internet Banking message and chat in order to ensure the quality of the Service by pursuing Swedbank’s legitimate interest. We Process the Personal Data for handling and replying to Clients’ complaints and this Processing is based on the legal obligation of Swedbank.
For the purposes described in this Section, based on legal obligation or legitimate interest we may Process Personal Data categories such as Communication and device data, Account data, Professional data, Financial data, Data about habits, preferences and satisfaction, Family data, Contact data, Data about trustworthiness, Data about relationships with legal entities, data obtained while erforming a statutory obligation, data about the Client’s financial experience, Identification data and Demographic data, Children’s data in case the Service is related to children, special (health) data when it is necessary in relation to life and non-life insurance service or to handle the Client’s complaints.
Why we Process Personal Data: We Process Personal Data to provide consultations and service communication to the Clients.
How we Process Personal Data: We Process your Personal Data when we serve you at customer-serving branches of Swedbank or in other ways of serving Clients and when we communicate with the Client via phone, chat, email and other means of communication. Your Personal Data, such as Contact data, is shared within Swedbank group companies operating in Latvia, in order to ensure that the Personal Data is kept up to date.
When you register for a consultation at customer-serving branches of Swedbank, we Process your Personal Data for the purposes of identifying you and successfully registering for a consultation at a time of your choice and preparing for the provision of the Services you’ve requested.
We Process your Personal Data available to Swedbank, such as Financial data, in order to provide you with the requested consultation on our Service. For this purpose your Personal Data can be obtained from Swedbank group companies operating in Latvia.
For the purposes described in this Section, based on legal obligation, performance of agreement or legitimate interest we may Process Personal Data categories such as Contact data, Financial data, information about requested, provided Services and/or performance of a Service agreement.
Why we Process Personal Data: We Process Personal Data to manage risks, ensuring that Swedbank operates safely and soundly and in compliance with the Applicable Law.
How we Process Personal Data: We Process Personal Data in order to comply with Applicable Law in relation to risk management, fulfilment of capital requirements, preventing fraud and managing incidents. We disclose Personal Data to data Recipients, such as the authorities, when it is required under the Applicable Law or to protect the legitimate interest of Swedbank.
Sound risk management is part of the Applicable Law requirements which we must comply with, so that we are able to provide you with the Services, ensure secure banking and protect your money from fraudsters. We strive for low risk in our operations because it is the basis for building trust and delivering high value to you in the long-term.
For complying with legal obligations in risk management area, we Process your Personal Data for the following purposes:
- Assessing and managing the credit risk, liquidity risk, market risk and counterparty risk.
- Carrying out risk hedging and fulfilling capital requirements for Swedbank.
- Solving incidents which may have impact on our core processes affecting the Services provided, as well as Personal Data breaches which may affect your private life.
- Discovering, investigating and reporting potentially suspicious transactions and market abuse.
- Monitoring transactions, including card transactions to detect and prevent fraud and reviewing, diagnosing and responding to detected activity that has been identified as potential fraud incidents.
- Monitoring compliance with laws, statutes, other regulations and relevant internal regulations.
- Ensuring business continuity and crisis management.
- Communicating with supervisory and other authorities, including regular mandatory and event-based reporting, obligation to alert the authorities of the Client's behaviour that is suspicious from the market abuse perspective, cooperating with the authorities in carrying out various supervisory procedures or investigations.
- Cooperating and providing information to external auditors.
For the purposes described in this Section, based on legal obligation or legitimate interest we may Process Personal Data categories such as Identification Data, Contact data, Financial data Trustworthiness data, Communication and device data, Data obtained and/or created while performing an obligation arising from Applicable Law, Professional data, Data about habits, preferences and satisfaction, Family data, Data about relationships with legal entities, Demographic data, Data about Client’s financial experience.
Why we Process Personal Data: We Process Personal Data to manage, maintain, develop, analyse and improve our business, the Services and your user experience, as well as to protect our legal interests.
How we Process Personal Data: We need to Process Personal Data when we perform activities like document management and archiving, perform analysis and testing for improving our Services, ensuring security and compliance of IT solutions in order to comply with the Applicable Law or protect our legitimate interest.
Running our business requires us to carry out several administrative activities to ensure prudent operations. For example, we have a legal obligation to maintain accounting records. As a part of this, we Process your Identification data, Account data, Contact data and Demographic data when invoicing payments and issuing invoices.
Personal Data Processing is necessary also for the activities supporting our core business of providing Services. This includes, for example, document management and archiving, including storage of paper and digital information based on legal obligations or our legitimate interest.
It is our legitimate interest to maintain, develop, examine and improve our business, the Services and your user experience. Among other things, this includes using your data for administering our website and network, including testing to ensure quality, security and compliance of IT solutions to be deployed or when an incident occurs. In each case, Personal Data Processing is limited to the needs of the particular case, both categories of Data Subjects, the Personal Data used and the actual Processing.
We also Process Personal Data for the establishment, exercise or defence of legal claims. In most cases, Personal Data Processing for this purpose is limited to storing the data for potential legal claim cases. When we need to protect our legal rights or a claim has been lodged, the data relevant to the specific case is Processed. Depending on the case, this may also involve sharing data with other legal entities within Swedbank Group, the authorities, such as the Financial Supervisory Authority, courts or out-of-court disputes resolution bodies for the settlement of dispute and law firms providing legal services to us.
For the purposes described in this Section, based on legal obligation or legitimate interest we may Process Personal Data categories such as Identification Data, Contact data, Financial data, Demographic data, Account data.
Why we Process Personal Data: We Process Personal Data of individuals related to Corporate Clients for concluding and maintaining agreements, communicating with Corporate Clients, providing Services under the agreement, and ensuring that we follow the Applicable Law.
For the sake of clarity, the term “Client” also includes all natural persons related to a Corporate Client whose data we Process.
How we Process Personal Data: Personal Data is collected from the Data Subject, from the Corporate Client and from external sources, as well as regularly updated. Personal Data is disclosed to Recipients in order to conclude and perform the agreement with the Corporate Client and to comply with the Applicable Law.
When you represent a Corporate Client, we Process your Personal Data based on our legitimate interest to conclude and fulfil agreements between that Corporate Client and us. This could be, for example, for communication with the Corporate Client’s representatives and contact persons and keeping information about legal and authorized representatives up to date. This ensures that only authorized persons can sign agreements, perform transactions, submit documents, access information or take other necessary actions on behalf of the Corporate Client.
For the purposes described in this Section, based on legitimate interest, we may Process Personal Data categories such as Identification data, Contact data, Professional data, Data about relationships with legal entities, Data about trustworthiness and due diligence, Demographic data, Financial data, data obtained and/or created while performing an obligation arising from the Applicable Law, data about criminal convictions and offences, other Personal Data (if the Corporate Client is off-boarded due to it ceasing to exist, we need to have the fact of the Corporate Client’s status stored in our systems in order not to avoid some activities like communication and reporting).
Why we Process Personal Data: To ensure the security of Swedbank’s visitors, employees, premises and assets; to defend Swedbank’s legal claims and legitimate interests; detect and prevent unlawful activities.
How we Process Personal Data: For the purpose of conducting video surveillance as part of safety measures, Swedbank uses surveillance cameras at Swedbank’s premises and ATMs. Areas under video surveillance are marked with informative signs.
When Swedbank conducts video surveillance, Personal Data is contained in visual images and video recordings. When Swedbank conducts video surveillance of its branch offices, Personal Data may be contained in visual images, video and audio recordings.
Swedbank carries out video surveillance based on legitimate interests to ensure the security of Swedbank visitors, employees, premises and assets; defend Swedbank’s legal claims and legitimate interests; detect and prevent unlawful activities.
Visual images, video and audio recordings containing Personal Data are shared with the relevant Recipient in case the recorded material is needed for criminal investigation, or with a Recipient that maintains and services the video surveillance systems on behalf of Swedbank.
We use cookies on our website. The cookies are used as stated in Swedbank’s Cookie Policy available on the website: https://www.swedbank.lv/about/swedbank/about/termsAndConditions.