1. General Provisions
1. EVOCABANK OJSC (hereinafter, the Bank) believes that maintaining confidentiality of information is a cornerstone of banking and builds trust among its customers and partners ensuring that sensitive information is secure, private and protected. In its activities, the Bank adheres strictly to the fundamental principles of the RA Constitution, the requirements of the RA laws On Personal Data Protection, Banking Secrecy and the best practices for data protection.
2. This Policy will outline the principles of the Bank's Confidentiality Policy in terms of collection, utilization, retention and disclosure of the information obtained by the Bank via its website (www.evocabank.am), social media, Evoca Online, Evoca Touch, Evoca Invest apps (hereinafter, the Website).
3. We ask that you familiarize yourself with this Confidentiality Policy before providing your personal data to the Bank.
4. By using the Website and providing your personal data, you give your clearly-articulated, free and informed consent to the provisions hereof.
5. The Website may contain links to the websites of other entities and whenever you visit third-party websites, the Bank will not be responsible for their confidentiality policy and data processing practices. So, we recommend that you familiarize yourself with the confidentiality policies of third parties prior to disclosing your personal data to them.
2. Collection and use of personal data
1. The Bank will collect and process to the extent needed the personal data:
1.1. Directly provided by you, such as: first name, last name, phone number, e-mail address and other details which will be used for the following purposes:
- To communicate with you,
- To conduct identity verification,
- To answer your questions and respond to your problems,
- To deliver services,
- To notify you of changes of service terms and conditions and of the newly introduced services,
- To send offers to you,
- To fulfill the obligations under the agreement signed by you and the Bank,
- To improve the service quality,
- To identify potential problems and the cases of misuse of information,
- To upgrade the website,
- To comply with other legislative requirements.
1.2. Automatically collected data: IP address, device type, operational systems, browser type, time spent on website and other technical metrics used to improve the Website performance, ensure security and conduct statistical analysis.
2. The received data will not be subject to disclosure to third parties without your explicit permission, but they may be used by the Bank's structural and territorial subdivisions (except the cases specified by the RA legislation).
3. The received data may be used also for fulfillment of the obligations imposed on the Bank by the law (in particular, the RA law on Combating money laundering and Tax legislation).
4. The personal data obtained from the Website may be combined with the information provided by you in another manner (be it orally or in written form) when you visit the Bank and/or submit documents, via Evoca Online, Evoca Touch, Evoca Invest apps, by contacting the Call center or otherwise.
5. Your information will be stored in the Bank's database which will be updated each time whenever new information is available.
3. Access to information
1. The Bank will not disclose, sell or transfer your personal data to third parties without your prior explicit consent, except for the cases stipulated by the RA legislation (for example, upon the request of law enforcement authorities, courts, RA Central Bank),
2. Your data may be accessed only by the Bank employees who need them in performing their work duties and provision of services to you.
3. The entities involved in website hosting service as well as parties delivering web operation, technical maintenance and other support services may receive and process users' personal data only to the extent necessary for provision of their services. The mentioned parties will be considered third parties involved in data processing and will be obliged to ensure data confidentiality, security and utilization solely for the set purposes. The Bank will require that these entities apply relevant technical and organizational measures in order to guarantee data protection in accordance with current legislation and agreements signed.
4. Your non-personal data may be provided to third parties for marketing, promotional and other commercial purposes.
4. Choice
1. The Bank will allow you to receive various types of information which may include information on new products and services, special offers. All the information will be provided to you electronically.
2. Whenever you are not willing to receive such information, you can refuse to receive the information by notifying the Bank.
5. Online surveys
1. Using the website-based data, the Bank can conduct surveys intended to collect data on your age, income, gender and other personal information.
2. The Bank needs the mentioned information in order to:
- Deliver services,
- Identify customer preferences,
- Improve the quality of banking products and services.
3. Anyway, at any time you can refuse to provide the requested information.
6. Ensuring information security
1. The Bank employs advanced organizational, technical and software tools in order to protect your personal data, including data encryption, SSL firewalls and other security technology.
2. These mechanisms help the Bank protect your personal data from unauthorized access to the system, data loss, destruction, modification and disclosure.
3. The Bank protects the information you input into the website by using most advanced technology. Apart from it, the Bank employs additional security mechanisms to ensure your personal data security.
7. Refusal to provide information
1. To make the web performance more efficient and tailored to your preferences, we use cookies, small text files stored on your device.
2. You can block cookies or delete them through your web browser’s settings. But in this case, some Web functionalities may not be accessible or may cause performance drops.
8. Amendments to the Confidentiality Policy
1. The Bank will retain your personal data as long as it is necessary to achieve the customer-focused goals outlined herein or as long as it is required under Banking or Tax regulations and the RA law On combating money laundering and terrorism financing (as a rule, for at least 5 years after termination of business relationship).
9. Your Rights
1. Under the Armenian legislation (RA Constitution, RA law On banking secrecy, RA law On protection of personal data) you have the right to:
- Get information as to what data is processed by the Bank,
- Request correction of your personal data if they are incorrect or incomplete,
- Request that your data are blocked or destroyed (erased) if their processing is no longer necessary or whenever you revoke your consent (except for the data whose retention, under the Armenian legislation, is mandatory for the Bank),
- Refuse from getting marketing or promotional letters by notifying the Bank of it or tapping the Unsubscribe button.
10. Amendments of Confidentiality Policy
- The Bank will have the right to unilaterally amend this Policy. All the amendments will be published on this page of the Web at least 15 days prior to its effective date, as to essential amendments to the Policy, the Bank will let you know on them also by other means of communication.
- The updated version of the Policy will enter into effect 15 days from the date of its publication on the Website unless otherwise specified in the publication.
11. Feedback
- If you have issues, complaints or proposals regarding this Policy or your personal data processing, please contact the Bank via all the possible ways outlined in the Web «Feedback» section, the Call center or visit the Bank.