API Portal & Third Party Privacy Policy

To ensure we are collecting your data in a fair, transparent manner we set out how we will use the information collected in this Privacy Policy.

When we ask you for your personal information it will only be in response to you actively applying for and using our Open Banking services and related support functions.

We shall treat all personal information provided by you, and collected by us securely at all times. We are committed to protecting your privacy and acting lawfully at all times.

The personal information we collect will be used only for the purpose it was collected, to provide you with the services offered via our online banking systems. Unless you specifically provide us with consent to do so, we shall not use your data for any other purpose such as marketing.

• Data Subject Rights.
• Data Subjects have certain rights in relation to their personal data.
• The right to access and rectify the information the Bank holds about them.
• The right to erase or restrict processing.
• The right to object to processing.
• The right to data portability.

Collection of Information

Use of basic profile data

When you register as a user of the UBL UK API Portal, we shall collect the following information about you:

• your name
• your email address
• IP address
• UBL UK API Portal user log-on details and information relating to your use of Security Tools.
• Information relating to your access and use of the API Portal.

Registering for Password-Protected Areas

When you register for any restricted areas of the website, we shall collect your email address and user name.

Using Test and Production Environments

You may wish to register for access to our application programming interface ("APIs") in our website test or production environment. If you do we shall collect the following personal information:

• your name
• your email address
• any other personal information which you provide to us through or about the website and
• personal information relating to your access and use of the website (see Website Use above).

We collect this registration and user information in order to comply with our legal and regulatory obligations and for our legitimate business interests to ensure the security of the website and for monitoring your compliance with the terms of use applicable to our APIs and the website.

IP address

We may collect your IP address and store it to assist us with the operation and security of our services.

Consent

Each time a customer gives you consent as a Third Party Provider (TPP) to request account information requests (AISP) and make payments (PISP) on their behalf we store the consent. This allows us to ensure that only TPP’s with consent can act on behalf of our customers.

Account information requests (AISP)

Each time you make an account information requests (AISP) on behalf of a customer, we shall store details of the request and the information shared. This allows us to provide support around customer queries and the information we may have shared.

NOTE: We must let them know their personal information may be shared.e.g.

In order to provide the services offered your information may be shared with limited third parties whom we have business relationships with to fulfill your requests.

Payment requests (PISP)

Each time you make a payment on behalf of a customer, we shall store the details of the payment. This allows us to support any customer queries about payments they have made through you as a TPP.

TPP Queries

Each time you raise a query through our developer portal, we will store all the correspondence so we can support you with your issue.

Cookies

Cookies are used to monitor website traffic and enhance your experience of our website. Cookies are pieces of data which your computer, mobile or tablet device downloads when you visit a website. Cookies are used to keep track of your preferences and to recognise return visitors. You can set your browser to reject cookies. However, if you choose to reject cookies, you may not be able to use or access certain areas of our Developer/Sandbox pages.

How We Keep Your Information Safe

We take the security of your personal information very seriously and have put in place security controls to help protection your personal information from unauthorised disclosure whist complying with our legal requirements.

Amendments

We reserve the right in our sole discretion to amend this privacy statement at any time, if we do we shall inform you via our portal.

Contacting Us

If you have any queries regarding this Developer Portal Privacy Statement or how we use your personal information, please contact the Data Protection Officer at dpo@ubluk.com

If you have any queries in relation to Open Banking please write to us at the following email OpenBanking@UBLUK.com