UBA's Privacy Policy

This privacy policy regulates how personal information can be used by United Bank for Africa (UBA) Plc and Group of companies.

The Privacy Policy

Thank you for visiting our website. This privacy policy regulates how personal information can be used by United Bank for Africa (UBA) Plc and Group of companies. To preserve the confidentiality of all information you provide to UBA Plc, we maintain the following privacy principles:

Data Security

Security Assurance

Collection of Personal Information

The General Data Protection Regulation (GDPR) of the European Union imposes new rules on organizations that offer goods and services to the Citizens and residents of the European Union (EU) as part of the business requirements if an organization collects, stores, processes data tied to EU residents, no matter where they are located. This law came into effect by May 25, 2018.

The personal privacy includes the individuals having the right to:

UBA, by offering services to EU citizens through our Offices in Nigeria and 19 African locations, the United Kingdom, New York and Paris Offices where the Bank collects and analyses data tied to EU residents, is mandated to be compliant to GDPR.

1. What we need
United Bank for Africa will be known as the “controller” and “processor” of the personal data you provide to us. United Bank for Africa is a registered Bank with Headquarters at 57 Marina Street Lagos, with Business offices in 20 African countries; New York, United Kingdom and France.

We will only collect basic personal data from you which will include Name; Address; Nationality; Email, Phone number; ID Number; Bank Verification Number (BVN) and any other information as may be mandated by the regulatory requirements of the respective countries and the European Central Bank.

We will NEVER ask for personal banking information such as the following: Card details (CVV); PIN; Password; Secure Passcode; Token number.

2. Why we need it
We require your basic personal data to provide you banking services you have engaged us for based on the requirements from the respective Central banks and/or governmental regulations.

3. What we do with it
All the personal data that the Bank collects from you will be held and processed from our Facilities at Lagos Headquarters or any of its subsidiaries and/or authorized service providers where applicable in a secure manner. The Bank is compliant to the latest Information security standards such PCI-DSS, ISO/IEC 27001:2013 etc. Unless required by a Legal or regulatory requirement for the Banking services, your data will be held confidential. We will take all reasonable actions to ensure that personal data of all customers and employees are handled securely and in a controlled manner.

4. How long we keep it
As a regulated financial services institution, we will retain your personal data for a period of 10 years or as may be required by regulation in the country under consideration, after which it will be disposed of as required under the respective Government laws and Banking regulations. Please note that regulations may require the Bank to retain your personal data for a specified period of time even after the end of your banking relationship with us.

5. What we would like to do with it
In order to enable you to obtain banking services through us, we will require to collect, store and process some of your personal data as required under law. Your consent is required in order to make banking services available to you in accordance with the law/regulation in force.

Please click here to express your consent to allow us to collect and use your personal data to continue providing you banking services.

If you want to know more on this subject or withdraw your consent to all or some of the consent, please contact us. We will be more than glad to help you in accordance with the regulations.

Remedies for personal data violation

If your personal data is violated at any given time, you are at liberty to contact the Data Protection Officer (DPO) of the bank on dataprotectionoffice@ubagroup.com

Within 3days of UBA receiving a complaint, UBA shall notify the Individual in line with data privacy requirements of either,

(i) UBA’s position with regard to the complaint and any action UBA has taken or will take in response; or,

(ii) when the individual will be informed of UBA’s position which date shall be in line with data privacy requirements.

Remedies shall include but not limited to investigating and reporting to appropriate authorities, recovering the personal data, correcting it and/or enhancing controls around it.

Use of Cookies

Privacy Contact Information

Help & Support

If you need assistance or have questions, we are always here to help.
Call Now Button