Privacy Policy

Introduction:
The protection and preservation of your personal data is crucial for the Housing Bank hereafter referred to as (the “Bank”). Accordingly, the Bank is committed to safeguarding the privacy of its customer’s and banking service user’s data. We Affirm that the personal data you have provided to us shall always be treated as confidential data, and with the highest levels of security and privacy. Such information is processed pursuant to the provisions of Personal Data Protection Law No. 24 of 2023 and regulations, and instructions issued thereunder, and the relevant orders of the Central Bank of Jordan hereafter referred to as (the “Law”). This policy outlines how the Housing Bank collects, uses, shares, and protects data, and highlights your rights relating to the privacy of your data and how to exercise such rights.

  • Personal Data / Sensitive Personal Data: Known as any data or information related to you that can directly or indirectly identify you, regardless of its source or form, including information about your identity, family status, or location, as well as any data or information that directly or indirectly indicates your origin, race, religion, or health status (physical, mental, genetic) – if any – or your biometric data.
  • Data Processing (Processing): Known as one or more operations performed in any manner or by any means for collecting, recording, copying, saving, storing, organizing, cleaning up, exploiting, using, sending, distributing, publishing, linking to other data, making available, transferring, displaying, anonymizing, encoding, destroying, restricting, destroying, restricting, erasing, modifying, describing or disclosing the data in any manner whatsoever.
 
Purpose of the Policy:

This Policy is intended to provide you with information on how the Bank processes and receives your data, the nature of the data collected and processed, and the various preventive and precautionary measures, including technical, physical, and organizational measures that the Bank will take to ensure that your data remains secure and confidential in order to protect your data from loss, misuse, unauthorized access, accidental disclosure, alteration, or damage, whether during storage, processing, or transfer as well as demonstrating your rights pertaining to your data.

 

How We Obtain Your Data?

The Bank collects your data through one of the following means:

  • Directly from you, when you communicate with the Bank through it’s branches or through any of its communication channels and/or when you access the Bank’s websites and applications for inquiries or obtain a certain service, or through any interaction and communication with the Bank.
  • Indirectly from various sources, as follows:
    • When you use or access any of the Bank’s platforms, including, but not limited to, the website cookies and device identifiers.
    • Bank’s Social media platforms.
    • Governmental and official authorities authorized to provide the Bank with your data (e.g. the Civil Status and Passport Department, the Ministry of Industry and Trade, the Social Security Corporation, the Ministry of Digital Economy and Entrepreneurship, the Greater Amman Municipality).
    • Competent authorities issuing official documents.
    • Any other authorities approved by the Bank.
  • Through third parties related to you (e.g. a family member, your legal representative, attorney, designee, employer).
  • Through publicly available sources.

 

Data Processed by the Bank:

The personal and/or personal sensitive data obtained by the Bank at the start of the banking relationship or at any subsequent time include, without limitation, the following:

  • Details related to your identity (e.g. name, date of birth, email address, nationality, marital status, gender and contact information).
  • Details related to your health status: (physical, mental, genetic…etc.).
  • Addresses, including your current residence address, permanent residence address and any other related addresses, along with the supporting documents of such addresses.
  • ID documents (personal ID card, passport or any other official ID document).
  • Nature of work, employer, employment status, job title, contact information of your employer and the supporting documents thereof.
  • Your financial details (e.g. income, income source, source of wealth and financial activities on your account(s)).
  • Tax status data, including foreign tax identification number and forms for compliance with the Foreign Account Tax Compliance Act (FATCA) and other necessary relevant information.
  • Details of transactions conducted by you or through another party related to you, including dates, amounts, currencies and payer/payee details.
  • Digital identifiers: IP address, email address.
  • Data about your geographic location, ATMs used and branch visits.
  • Website usage cookies.
  • Audio, video & Photo’s recordings.
  • Risk classification information (e.g. credit risk rating and data regarding your ability to manage your credit).
  • Due diligence data, including data required in agreements, contracts and invoices to ensure compliance with the requirements for combating financial crimes and data required for fulfilling supervisory obligations.
  • Data about individuals related to you (e.g. family members, attorneys, guardians, witnesses).

 

Purpose and Scope of Data Processing:

The Bank processes your personal and/or personal sensitive data for various reasons related to your banking and commercial interactions with the Bank, providing you with banking services and products or for supervisory and regulatory purposes as decided by the Central Bank of Jordan from time to time, including and without limitation, the following:

  • To provide you with banking products and services.
  • To manage your accounts and relationship with the Bank.
  • To provide you with information about your account.
  • To market banking products, services and offers that you may be interested in.
  • To evaluate, develop and improve services provided to you.
  • To handle inquiries and complaints received from you.
  • To communicate with you by mail, phone, SMS, email and other available digital channels.
  • To provide you with all available electronic banking services.
  • To monitor, record and analyze any communications between you and the Bank to protect your financial interests.
  • To evaluate your applications submitted to the Bank.
  • To share data with government authorities and agencies, credit reference and inquiry agencies, regulatory authorities and foreign authorities.
  • To share your data with the Bank’s partners, service providers and external auditors.
  • To comply with regulatory requirements and whistleblowing obligations related to anti-money laundering and counter-terrorism financing.
  • To take necessary measures to combat fraud and financial crimes.
  • To take preventive security and technological measures related to cybersecurity.
  • To verify the accuracy and sufficiency of data received from other parties related to your transactions with the Bank.
  • For security reasons related to you.
  • To collect any outstanding debts and for litigation and legal consultation purposes.

 

Legal Grounds for Processing:

The Bank processes your data based on the following grounds:

  • Any case permitted by law, and other legislations and/or orders issued by the Central Bank of Jordan.
  • Your explicit consent.
  • To execute contracts concluded with you.
  • To manage the Bank’s relationship with you.
  • Legal and supervisory compliance (e.g. as instructions of the Central Bank and regulatory authorities or judicial or regulatory requirements).
  • For security purposes related to the Bank, such as CCTV monitoring.
  • To protect a critical interest of yours.
  • A legitimate interest of the Bank (e.g. developing and offering products and services, marketing products and services and offering you offers that you may be interested in, keeping our records up to date, debt recovery, enhancing security and technical levels, enabling you to complete transactions and facilitating communication between you and the Bank).

 

Data Protection:

The Bank adopts multiple security, technological and organizational measures and precautionary procedures to protect your data, including the protection against unauthorized or unlawful processing and preventing security breaches, loss, misuse, alteration, disclosure, destruction or unauthorized access to data. Parties authorized access to your data are required to maintain its confidentiality through various means designated for such purpose.

 

Data Sharing, Exchange and Access:

Pursuant to the law and under the provisions of the applicable regulations governing the Bank’s operations and the provisions of this Policy, the Bank may share and transfer your data, within the permitted scope, to the following parties:

  • The Bank’s branches in Jordan and abroad and its subsidiaries or owned companies.
  • Any person you appoint to be associated with your banking relationship with the Bank, whether under a power of attorney, guardianship or custodianship, or as your legal representative, financial guarantor, joint account holder or authorized representative of legal persons.
  • External auditors, correspondent banks in Jordan and abroad, offsetting or settlement systems.
  • Other financial institutions, tax authorities, credit reference and inquiry centers or payment service providers.
  • Law firms, attorneys, or legal advisors.
  • Real estate appraisal firms.
  • Agents acting on behalf of the Bank.
  • Internal and external regulatory and supervisory authorities, government authorities and law enforcement and dispute resolution authorities.
  • Postal services and bank card issuing and management service providers.
  • Insurance or financing companies associated with the Bank.
  • Technological and consultancy service providers.
  • Other parties on whose accounts you conduct transactions under a legal power of attorney, authorization or legal decision (guardianship), or other transactions where you are authorized to conduct their accounts.
  • Other parties you have consented to share your data with them.
  • Any parties or entities the Bank deals with, whom are governed by the provisions of the “Purpose and Scope of Data Processing” Section above.

 

Data Retention Period:

The Bank retains your data after the end of our banking relationship to ensure the highest level of service and to remain in contact with you, as well as compliance with applicable laws and regulations, where necessary, based on:

  • The need for data to comply with legal and applicable regulatory requirements.
  • Contributing to the detection and prevention of fraud and financial crimes.
  • Responding to requests from regulatory or supervisory authorities.

The Bank will retain such data as long as necessary to fulfill the aforementioned obligations, and will securely dispose of it when no longer needed.

 

Your Rights Regarding Your Data:

Subject to the Bank’s compliance with the applicable laws and regulations, you may exercise the rights below regarding your data under the Law:

  • To access to your data and request information about how it is processed.
  • To request correction, Modify and update of your data.
  • If your data is breached in a manner that seriously compromises your rights and freedoms, the Bank will notify you and provide necessary measures to avoid any potential consequences.
  • To object to the processing of your data or request the restriction of data within a specific scope.
  • To withdraw your consent at any time.

Subject to your rights mentioned above, the Bank may refuse to respond to your requests and rights if they conflict with applicable laws or regulatory requirements of supervisory authorities to which the Bank is subject, or in cases that may result in concealing, modifying, or intentionally altering information necessary to establish your identity, the beneficial owner’s identity or your credit report validity, or in case it compromises due diligence requirements or security and safety of the Bank’s operations or exposes the Bank to risk.


Use of Cookies and Digital Technologies:

We use cookies on our website to enhance the user experience. You can control cookies settings through your browser.

Amendment to the Privacy Policy:

The Bank may amend this policy from time to time to comply with legal or technological requirements. Amendments will be reflected in this policy on the Bank’s website. By continuing to use the website, you agree to such amendments and their implications.

 

Filing Complaints:

You can file complaints pertaining to any allegation related to the violation of your data or your data rights through any of the following means:

  • Toll-free number (080022205) from any landline or by calling (06-5103111) during the business hours.
  • The electronic complaint form is available on the Bank’s website: www.hbtf.com.
  • In person by visiting the Customer Complaint Unit at the headquarters during the business hours.
  • In writing to the postal address, i.e. the Housing Bank, the Customer Complaint Unit, P.O. Box 7693, Amman 11118, Jordan.
  • Fax Number: (06-4616202).
  • Via email at CComplaint@hbtf.com.jo.

You can also file complaints to any competent supervisory authority.

 

Contact Us:

To exercise any of your privileges mentioned in this Privacy Policy, please contact us through one of the following channels:

  • Phone: Toll-free number (080022205) from any landline or by calling (06-5103111) during the business hours.
  • Email: CComplaint@hbtf.com.jo
  • Address: In person by visiting the headquarters during the business hours.