In order to achieve our goal of providing you with the best banking service, we sometimes collect certain information during your visits to perform certain tasks such as grant you access to some parts of our web site or conduct research on your behaviour on our site in order to improve our services. We will not disclose your information to any person outside our organization except as described in this Privacy Policy.

Cookies are small text files stored on your computer or mobile devices whenever you visit a website. Cookies have many uses, such as memorizing your preferences to tailor your experiences while on our site– or to help us analyse our website traffic.

CEMCS MFB uses cookies to improve your experience while on this site. We would like to let you know a few things about our cookies:

• Some cookies are essential to access certain areas of this site;
• We use analytics cookies to help us understand how you use our site to discover what content is most useful to you

Kindly refer to our cookie policy for more information on cookies.

The collection and use of personal data by CEMCS MFB is guided by certain principles. These principles state that personal data should

• be processed fairly, lawfully and in a transparent manner.
• be obtained for a specified and lawful purpose and shall not be processed in any manner incompatible with such purposes.
• be adequate, relevant and limited to what is necessary to fulfil the purpose of processing.
• be accurate and where necessary, up-to-date. In the event data is inaccurate, steps should be taken to rectify or erase such data.
• Not be kept for longer than necessary for the purpose of processing.
• be processed in accordance with the data subject’s rights
• be kept safe from unauthorised processing, and accidental loss, damage or destruction using adequate technical and organizational measures.

Any personal information provided by you to CEMCS MFB will be used with your consent, or when we have another lawful reason. These include

• Cases where processing of personal data is required for the fulfilment of a contractual obligation.
• Cases where processing of personal data is required for compliance with legal and/or regulatory requirements.
• Cases where processing is required to protect your vital interest or that of any other natural person.
• Cases where processing is required for an activity to be carried in significant public interest.
• Cases where processing is required for legitimate interests of CEMCS MFB or a third party insofar as this does not conflict with the requirements for the protection of your personal data.

Your personal information is used in:

• Updating and enhancing CEMCS MFB’s records
• Executing your instructions.
• Establishing your identity and assessing applications for our products and services
• Pricing and designing our products and services
• Administering our products and services
• Managing our relationship with you
• Managing our risks
• Identifying and investigating illegal activity (i.e.), such as fraud
• Contacting you, for example in instances where we suspect fraud on your account or when the need arises to tell you about recent occurrences in the banking sector or some event(s) of significance.
• Conducting and improving our businesses and improving your experience with us
• Reviewing credit or loan eligibility.
• Preventing money laundering or terrorism financing activities.
• Complying with our legal obligations and assisting government and law enforcement agencies or regulators/supervisors
• Identifying and informing you about other products or services that we think may be of interest to you.
• Processing your job application if you apply for a job with us.

We may also collect, use and exchange your information in other ways permitted by law.

We sometimes use automated systems and software to help us reach decisions about you, for example, to make credit decisions, to carry out security, fraud and money laundering checks, or to process your data when you apply for some of our products and services.

This type of processing is carried out under lawful basis and you can contact us to request that automated processing be reviewed by a human being if you detect any inaccuracies in your personal data.

We may share the information about you and your dealings with us, to the extent permitted by law, with the following:

• CEMCS MFB’s Branches and Subsidiaries
• Regulators/Supervisors, Government Agencies/courts - It may be necessary by law, legal process, litigation, and/or requests from public and governmental authorities within or outside your country of residence for CEMCS MFB to disclose your personal information. We may also disclose information about you if we determine that for purposes of national security, law enforcement, or other issues of public importance, disclosure is necessary or appropriate.;
• External Auditors;
• CEMCS MFB’s staff;
• Credit Agencies;
• Correspondent banks;
• CEMCS MFB’s strategic partners/service providers – for the purpose of improving and providing our products and services to you. Your Personal information will not be shared with third parties for their marketing purposes.

We may also disclose information about you if we determine that disclosure is reasonably necessary to enforce our terms and conditions or protect our operations or users. Additionally, in the event of a reorganization, merger, or sale we may transfer any and all personal information we collect to the relevant third party.

Information about our customers and their usage of our website is not shared with third parties for their marketing purposes. We do not disclose any information about any user’s usage of our web site except in specific cases, and we do not share information with any unaffiliated third parties for marketing purposes unless you expressly give us permission to do so.

We take appropriate technical and organizational measures to prevent loss, unauthorized access, misuse, modification or disclosure of information under our control. This may include the use of encryption, access controls and other forms of security to ensure that your data is protected. We require all parties including our staff and third-parties processing data on our behalf to comply with relevant policies and guidelines to ensure that information is protected in use, when stored and during transmission.

Your personal information with us remains secure because:

• We use strict security measures and technologies to prevent fraud and intrusion.
• Our Security controls and processes are regularly updated to meet and exceed industry standards.
• Our employees are trained to respect the confidentiality of any personal information held by us

Where we have provided you (or where you have chosen) a password which grants you access to specific areas on our site, you are responsible for keeping this password confidential. We request that you do not to share your password or other authentication details (e.g. token generated codes) with anyone. Other security measures you can take that will help us protect your data can be found at www.cemcsmfb.com/security-centre.

All Personal Information you provide to us is stored on our secure servers as well as secure physical locations and cloud infrastructure (where applicable) for the purposes of providing seamless services to you, including but not limited to ensuring business continuity, the data that we collect from you may be transferred to or stored in cloud locations at globally accepted vendors' data center. Whenever your information is transferred to other locations, we will take all necessary steps to ensure that your data is handled securely and in accordance with this privacy policy.

We retain your data for as long as is necessary for the purpose(s) that it was collected. Storage of your data is also determined by legal, regulatory, administrative or operational requirements. We only retain information that allows us comply with legal and regulatory requests for certain data, meet business and audit requirements, respond to complaints and queries, or address disputes or claims that may arise.

Data which is not retained is securely destroyed when it is identified that is no longer needed for the purposes for which it was collected.

You have certain rights available to you, these include

• The right to access your personal information held by us. Your right of access can be exercised by sending an email to [email protected]
• The right to rectify inaccurate or incomplete information.
• withdraw consent for processing in cases where consent has previously been given.
• restrict or object to processing of your personal data. We might continue to process your data if there are valid legal or operational reasons

You also have the right to:

• Request that your personal data be made available to you in a common electronic format and/or request that such data be sent to a third party.
• Request that your information be erased. We might continue to retain such data if there are valid legal, regulatory or operational reasons.

Keeping your account information accurate and up to date is very important. You have access to your account information, which includes your contact information, account balances, transactions and similar information through various means, such as account statements, SMS Banking, Social Media Banking and Internet Banking.

If you discover any inaccuracies in your personal information, please promptly notify us, via our branch network or Contact Centre, and provide the required documentary evidence, to enable us to implement the necessary updates or changes.

CEMCS MFB refers to CEMCS Microfinance Bank Limited and its subsidiaries.

CEMCS Microfinance Bank Limited comprises of CEMCS MFB branches nationwide.

CEMCS MFB’s websites, products, applications, and services may contain links to third-party websites, products and services. Our products and services may also use or offer products or services from third parties. Information collected by third parties, which may include such things as location data or contact details is governed by their privacy practices and CEMCS MFB will not be liable for any breach of confidentiality or privacy of your information on such sites. We encourage you to learn about the privacy practices of those third parties.

CEMCS MFB may interact with registered users of various social media platforms, including Facebook, Twitter, Google+, LinkedIn and Instagram. Please note that any content you post to such social media platforms (e.g. pictures, information or opinions), as well as any personal information that you otherwise make available to users (e.g. your profile) is subject to the applicable social media platform’s terms of use and privacy policies. We recommend that you review this information carefully in order to better understand your rights and obligations with regard to such content.

CEMCS MFB’s Policy contains the following disclosure statement for children:

"CEMCS MFB respects the privacy of children. We do not knowingly collect names, email addresses or any other personally identifiable information from children. We do not knowingly market to children nor do we allow children under 18 to open online accounts."

CEMCS MFB may sometimes contact you with products or services that we think may be of interest to you. If you don’t want to receive such promotional materials from us, you can opt out at any time by sending an email to [email protected]

This policy may be revised on an ad-hoc basis to reflect the legal, regulatory and operating environment and such revised versions will automatically become applicable to you. We will post any revisions we make to our Privacy Policy on this page and such revised policy becomes effective as at the time it is posted. We will notify you when any changes to our privacy policy have been made. We also encourage you to check this page from time to time for updates to this policy.

Questions, comments and requests regarding this privacy policy are welcomed and should be addressed to [email protected].

To contact our Data Protection Officer, kindly address your request to “The Data Protection Officer” at , Udeco Medical Rd, Lekki Penninsula II 106104, Lekki, Lagos, Nigeria.