Your privacy is very important to The Erode District Central Co-operative Bank Ltd., Hence the Bank is committed to the Privacy Promise for Customers.
The Bank's most important asset is its customers' trust. Keeping customer information secure and using it is the top priority for every Bank to provide superior service. Here then, is the Bank's promise to the customers:
1. The bank will process customer's personal information on computer as well as for statistical analysis.
2. The bank will safeguard all information that the customers share with the Bank securely and confidentially. The bank will continue to maintain its tradition of not sharing the information of customer's account with any one except when required by law or statutory agencies. When required by any external agencies, it will be shared only if the customer authenticates the same.
3. The bank will limit the collection and use of customer information to the minimum required for delivering effective service to the customers and to advise customers about the Bank's products, services and other safeguards.
4. The bank will give access to customer information to authorized employees only. Employees who violate Bank's Privacy Promise will be subject to the Bank's disciplinary proceedings. The bank will always maintain control over the confidentiality of the customer information.
5. Whenever the bank hires other organizations to provide support services, the bank will require them to confirm to the Bank's privacy policy standards.
6. The bank may exchange information about the customers with reputed and clearing house centre for the purposes of credit reporting, verification and risk management.
7. The bank will exercise due diligence about ensuring the accuracy of the information collected.
8. Bank's website may contain other links. While such links are provided for customer convenience, customer should be aware that accessing such links is at their own risk, since the Bank cannot provide assurance as to the information handling practices of the linked websites.
The bank will continuously assess to ensure that customer's privacy is respected and will conduct the business in a manner that fulfils the Bank's Promise.
AADHAAR RELATED DATA PRIVACY POLICY
Introduction:
The Unique Identification Authority of India (UIDAI) has been established by the Government of India with the mandate to the Authority is to issue a unique identification number (called Aadhaar or UID) to Indian residents that is robust enough to eliminate duplicate and fake identities, and can be verified and authenticated using biometrics in an easy and cost-effective manner.
The UID has been envisioned as a means for residents to easily and effectively establish their identity, to any agency, anywhere in the country, without having to repeatedly produce identity documentation to agencies.
The UIDAI offers an authentication service that makes it possible for residents to authenticate their identity biometrically through presentation of their fingerprints / iris authentication or non-biometrically using a One Time Password (OTP) sent to the registered mobile phone or e-mail address.
Aadhaar Authentication Services:
Aadhaar Authentication is defined as the process wherein, Aadhaar number along with the Aadhaar holder's personal identity information is submitted to the Central Identities Data Repository (CIDR) for matching following which the CIDR verifies the correctness thereof on the basis of the match with the Aadhaar holder's identity information available with it. The purpose of Authentication is to enable Aadhaar-holders to prove identity and for service providers to confirm the resident's identity claim in order to supply services and give access to benefits. To protect resident's privacy, Aadhaar Authentication service responds only with a "Yes/Nos" and no Personal Identity Information (PII) is
returned as part of the response.
e-KYC Service: UIDAI also offers the e-KYC service, which enables a resident having an Aadhaar number to share their demographic information (i.e. Name, Address, Date of Birth, Gender, Phone & Email) and Photograph with a UIDAI partner organization (called a KYC User Agency - KUA) in an online, secure, auditable manner with the resident's consent. The consent by the resident can be given via a Biometric authentication or One Time Password (OTP) authentication.
The Bank has entered into a formal agreement with UIDAI in order to access Aadhaar authentication services, and e-KYC services. To protect the Aadhaar beneficiary, the data privacy policy of the Bank is formulated as under.
Data Privacy on Aadhaar and Biometric details: -
The submission of Aadhaar details by a customer to the Bank is voluntary, and the Bank will not insist on a customer to produce their Aadhaar details for availing any of the services. In cases where Aadhaar number is offered voluntarily by the customer to the Bank, the Bank will seek a declaration by the customer towards the same.
For cases where e-KYC verification is required, the Bank will get an explicit consent from the resident for download of resident demographic details from UIDAI mentioning the purpose for which the details are sought. The consent will be either in the form of an authorization letter or a provision to electronically record the consent in a software application. Biometric details will also be required to be captured by the Bank for purposes of authentication, for example to authenticate a customer before permitting transaction through a Micro ATM / any other device, as an AEPS (Aadhaar Enabled Payment System) transaction. The biometric details whenever captured by the Bank will be used only for data exchange with UIDAI which validates the captured biometric data against the biometric data maintained in CIDR (Central Identities Data Repository) against the specific Aadhaar number. The Bank will use STQC certified devices for capturing biometric details and secured network for transmission. While the demographic details received from UIDAI will be stored for future reference, the biometric details will not be stored by the Bank in any manner and form. A system log wherever required will be maintained to extract the details in case of disputes. The logs will capture Aadhaar Number, timestamp etc., but will not capture / store the PID (Person Identity Data) associated with the transaction.
