Privacy Policy - ESAF Small Finance Bank
banner image of Privacy Policy

Privacy Policy

1 Definitions:

The use of the term “Bank” is in reference to the following organization: ESAF SMALL FINANCE BANK (ESFB).

WEBSITE means website of the Bank with URL: // and other sites that can be directly reached by Bank owned URL .

USER \ YOU \VISITOR refer to all persons who is accessing Banks various Websites.
CUSTOMER refers to person doing any transactions with Bank directly or indirectly.

PERSONAL INFORMATION include but not limited to , financial information including Banking related information, financial and credit information, ethnicity, caste, race or religion, health related details of the individuals, sexual orientation, medical records and history, biometric information, email, address, PAN, TAN, payment card information, photographs; provided that, any information that is freely available or accessible in public domain or furnished under the Right to Information Act, 2005 or any other law for the time being in force shall not be regarded as sensitive personal data or information for the purposes of this policy.

PRIVACY POLICY refers to privacy commitment of the BANK Services as specified in this document.

THIRD PARTY refers to an entity that is not the Bank or its direct customer.

2 Scope:

This policy covers all users who interact with Bank and those whose personal information is collected or received or transmitted or processed or stored or dealt with or handled by Bank. This policy covers the “sensitive personal data or information” of the persons handled by Bank in any form or mode.

Please note that this Privacy Policy does not extend to third party websites linked to Bank Websites, if any.

Any information that is freely available or accessible in public domain or furnished under the Right to Information Act, 2005 or any other law for the time being in force shall not be regarded as personal information for the purposes of this Policy.

3 Introduction:

The Bank is committed to respect the privacy and use of personal information responsibly. The Bank is guided by the regulations and best practices in the area of privacy. If customer is providing certain information with which that customer can be identified personally, then customer can be assured that it will only be used in accordance with this privacy policy.

4 Requirement for information collection:

Bank collects and uses the financial information and other personal information from its customers as is required under various regulations and guidelines including the KYC Norms of the RBI. Such information is collected and used for specific business purposes or for other related purposes designated by Bank or for a lawful purpose to comply with the applicable laws and regulations.

5 Consent:

By providing the personal information, the persons provide consent to the Bank to use personal information for the usage of the information for the product or services requested or applied or shown interest in and/or to enable Bank for personal verification and or process applications, requests, transactions and/or maintain records as per internal or legal or regulatory requirements and shall be used to provide the persons with the best possible services or products as also to protect interests of Bank.

6 Usage of information:

Bank may use Personal Information:

  • To allow customers to apply for products or services and evaluate customer eligibility for such products or services;
  • To verify customer identity and/or location in order to allow access to accounts, conduct online transactions and to maintain measures aimed at preventing fraud and protecting the security of account and Personal Information;
  • For risk control, for fraud detection and prevention, to comply with laws and regulations and to comply with other legal process and law enforcement requirements;
  • To inform customer about important information regarding the Site, products or services for which customer apply or may be interested in applying for, or in which customer are already enrolled, changes to terms, conditions, and policies and/or other administrative information;
  • For business purposes, including data analysis, audits, developing and improving products and services, enhancing the Site, identifying usage trends and determining the effectiveness of promotional campaigns;
  • To allow customer to utilize features within our sites by granting Bank access to information from customer device such as contact lists, or geo-location when customer request certain services.
  • To respond to customer inquiries and fulfill customer requests;
  • To deliver marketing communications that we believe may be of interest to customer, including, ads or offers tailored to customer;
  • To personalize customer experience on the site;
  • To allow customer to use some site financial planning tools, information that customer enter into one of these planning tools may be stored for future access and use. Customer will have the option not to save the information;

Bank will not be held responsible for content, information usage and privacy policies of linked site which will not be under the control of the Bank. The authenticity of the personal information provided by the customer will not be the responsibility of Bank.

7 Information protection:

Bank customers have access to a broad range of products and services such as basic Banking Products, ATM, Online Banking, etc. To deliver products and services effectively and conveniently, it is extremely important that the Bank uses technology to manage and maintain certain customer information while ensuring that customer information is kept confidential and protected.

Bank is committed in ensuring that the information is secure. In order to prevent unauthorised access or disclosure, Bank has put in place reasonable physical, electronic and managerial procedures to safeguard and secure the information that Bank collects.

8 Information sharing:

The Information shall be shared with any external organisation or persons to enable Bank to provide services or to enable the completion or compilation of a transaction, credit reporting, or the same is necessary or required pursuant to applicable norms or pursuant to the terms and conditions applicable to such Information as agreed to with Bank or pursuant to any requirement of law or regulations or any Government or court or other relevant authority’s directions or orders.

Information may be disclosed without obtaining persons prior consent, with government agencies mandated under the law where disclosure is necessary for compliance to legal obligations. Any Information may be required to be disclosed to any third party by Bank by an order under the law for the time being in force.

It may be necessary to disclose the information to one or more agents and contractors of Bank and their sub-contractors, but such agents, contractors, and sub-contractors will be required to agree to use the information obtained from Bank only for specific assigned purposes and will be disposing the information in a secured manner consistent with Bank’s policies.

The persons authorises Bank to exchange, share, part with all information related to the details and transaction history of the Covered Persons to its Affiliates or Banks or financial institutions or credit bureaus or agencies or participation in any telecommunication or electronic clearing network as may be required by law, customary practice, credit reporting, statistical analysis and credit scoring, verification or risk management or any of the aforesaid purposes and shall indemnify Bank for use or disclosure of this information.

9 Retention and disposal:

Bank’s current policy to retain information for so long as it is needed by the business. Since most information is in continuous use, much is retained on an indefinite basis or for such period to satisfy legal, regulatory or accounting requirements.

When Bank finds that information collected or stored or transferred is no more in use and if there is no legal obligation to retain such information, Bank will determine appropriate means to dispose or to de-identify personally identifiable information in a secure manner in keeping with its legal obligations.

10 Amendments:

This policy will be displayed through a link which will be embedded in Website. The customers are advised to visit the site and go through the privacy policy as Bank modifies the policy from time to time as, Bank constantly absorbs advanced technology and redefines processes.

11 Contact Us:

If you have any questions about this Privacy Policy you can send us an email at: privacy(at)esafbank(dot)com or contact us at the following address:
Chief Privacy Officer
ESAF Small Finance Bank
Mannuthy ,Thrissur
Kerala, India