Privacy & Security

Notice to Customers Relating to the Do Not Call Provisions under Part IX of the Personal Data Protection Act (PDPA) ("DNC Provisions")

At UOB, we take our responsibility to protect the information you provide us very seriously.

From time to time, UOB and our partners may call or SMS our customers to inform them about our latest products or promotional offers.

The DNC Provisions introduce certain changes in the way we may contact you via the telephone for promotional and marketing calls and messages. Products and services that may be covered by such calls and messages include:

• investments, insurance, loans, credit card, travel, banking; and
• reward, loyalty and/or privileges programmes.

If you have previously consented to receiving such calls and messages, you will continue to be updated on our promotions and marketing campaigns.  However, if you no longer wish to continue to receive marketing calls or messages, you may withdraw your consent by completing and submitting the form here. You can also find the form in our Personal Banking webpage, under Quick Links – Fees, Rates and Forms, and by selecting Personal Application Forms.

For all other customers, we will only contact you via the telephone for marketing and promotional messages/calls after ascertaining that you have not registered with the national Do Not Call (DNC) Registry administered by the Personal Data Protection Commission of Singapore. However, as we may rely on the one-month validity period of our search results, you may inadvertently still receive marketing or promotional messages/calls.

If you had received a telemarketing call from someone representing UOB although you have registered with the DNC Registry or withdrawn your consent, please inform us at dataprotectionofficer@uobgroup.com, or contact us by calling 1800 222 2121.

The above changes will generally not affect informational and service related messages sent by UOB (e.g. messages relating to your account).

Your Role In Safeguarding Your Personal Data And Account Information

You are responsible for keeping your online Password confidential. Failure to do so exposes you to the risks of fraud and loss. The UOB Group will not be responsible for losses suffered by customers as a result of:

• Input errors or misuse of its Internet banking services;
• Negligent handling or sharing of Password;
• Leaving a computer unattended during an online session;
• Failure to immediately report known incidents of unauthorised account access.

FURTHER INFORMATION ON THE LIMITS OF OUR LIABILITY TO YOU IN PROVIDING INTERNET BANKING SERVICES CAN BE FOUND IN THE FOLLOWING TERMS AND CONDITIONS:

• UOB Personal Internet Banking
• Business Internet Banking
• UOB COE Open Bidding

We strongly recommend that you observe the following best privacy and security practices at all times:

1. Managing Your Username And Password
   
   • Your Username and Password identify you when you use our Internet banking services. If any of these become invalid or ceases to have effect, it is imperative that you inform us by calling the direct hotlines for the respective services.
   • Ensure that no one can see your Password when you log in to our system.
   • Ensure that you keep your Password confidential at all times and do not divulge it to anyone.
   • Do not allow anyone (without exception) to use your Username and Password, as you are responsible for all transactions undertaken with your Username and Password.
   • Do not base your Password on your Username or personal information such as your telephone number, birth date or the like.
   • Memorise your Password and do not record it anywhere.
   • Change your Password regularly.
   • Do not use the same character more than twice for your Password.
   • Do not recycle your recently used Password.
   • Change your Password IMMEDIATELY if you suspect that someone knows it.
   • The same Password should not be used for different websites, applications or services particularly when they relate to different entities.
   • Do not select the option on your browser for storing or retaining user name and password.

   Note:No staff members of the UOB Group should ever ask you for your Password for whatsoever reasons.

2. Use of Technology Devices
   
   • Do not allow anyone (without exception) to keep, use or tamper with your Technology Devices, as you are responsible for all transactions undertaken
   • Do not reveal the One-Time Password (OTP) generated by your Technology Devices to anyone
   • Do not divulge the serial number of your Token-OTP Device
   • Notify the Bank if your Technology Device is lost or fails to function as intended
   • Ensure that the Device is kept safely
3. Take Precautions Against Your Password Keystrokes Being Captured
   

   Exercise the necessary precautions to protect your personal computer against viruses and other malicious programs. Aside from damaging and/or destroying data, viruses and malicious programs can capture your Password keystrokes and other personal information and send them to another person without your consent.
   
   Precautions that you can take include the following:

   • Ensure that you install an effective personal firewall as well as anti-virus, anti-spyware and anti-Trojan horse software. These should be updated regularly.
   • Do not download any software from a website that is of doubtful origin.
   • Do not open any email or attachment that is from a source unknown to you. When in doubt, delete such email without opening it.
4. Log In Directly
   

   If you wish to access a website belonging to UOB or its subsidiaries or associates, always personally and directly enter the relevant website address in the browser address bar. Do not login via any hyperlink within emails.
   
   A list of the relevant website addresses is set out below for your reference. If you encounter suspicious email or fraudulent websites passing off as websites of UOB or its subsidiaries or associates, please notify us immediately at 1800 222 2121 (24-hour, toll-free) or email us.

5. Remember To Log Out
   

   Always remember to logout of your Internet banking session when you have completed your Internet banking transactions or when you need to walk away from your computer even for just a minute. Do not leave your computer unattended while Internet banking transactions are being processed.

When you use our website, we may automatically collect data from you using cookies or similar technological tools. A cookie is a small file which our web servers can store on your device. This allows our website to automatically recognize and remember you. You may find our cookie policy here.

Default files on a computer, sometimes called 'cache' files, can retain images of data sent or received over the Internet, making them a potential target for a system intruder. Therefore, we strongly advise that you clear your browser's disk cache after each Internet banking session.

For Firefox

• Launch Firefox.
• Click the menu button and choose Options.
• Select the Advanced panel.
• Click on the Network tab.
• In the Cached Web Content section, click Clear Now.
• Close the about:preferences page. Any changes you've made will automatically be saved.

For Chrome

• Open Chrome.
• On your browser toolbar, click the Chrome menu.
• Click More tools > Clear browsing data.
• In the box that appears, click the checkboxes for "Cookies and other site and plug-in data" and "Cached images and files."
• Use the menu at the top to select the amount of data that you want to delete. Choose beginning of time to delete everything.
• Click Clear browsing data.

Internet Explorer

• Select 'Tools' from the Menu bar.
• Select 'Internet Options'.
• Select the 'General' tab.
• Click the 'Delete' button and select only Temporary Internet Files and website files in 'Delete Browsing History' Dialog Box and Click 'Delete' button.
• Click 'OK' to exit the 'Internet Options' dialog box.

Avoid Sharing Personal Computers (PCs)

Avoid using shared PCs or public PCs such as those found in cyber cafes to perform Internet banking transactions. If there is a need to do so, always satisfy yourself thoroughly that the PCs are free from viruses and be sure to clear the browser's cache upon completion of your transactions.

Update Your Browsers

You should update your browsers and application software to support 128-bit SSL encryption or a higher encryption standard.

Verify The Authenticity Of The UOB Group Internet Banking/Transaction Website(s)

We provide a Secure Zone icon (as symbolised by a 'padlock' icon) within our Internet banking/transaction web pages for your verification of its authenticity.

To verify the authenticity of the UOB Group Internet banking/transaction website(s), look for the Secure Zone icon on the web page, click it, and ensure that 'United Overseas Bank Ltd' is displayed as a part of UOB's VeriSign Secure Server ID from https://digitalid.verisign.com.

There are two ways by which you can verify that you are logging in to a secure web page:

1. Check that the UOB Group Internet banking/transaction website address changes from http:// to https:// and that a security icon (as symbolised by a lock or key) appears at the bottom status bar of the browser. These indicate that the web page that you are online with uses encryption technology. You can double click the security icon to view information pertaining to the security certificate for the web page.
2. Depending on the browser that you are using, you can also verify that you are in a secure web page by doing the following:

   On Internet Explorer
   Point the mouse on the web page and right click the mouse. Scroll to 'Properties' and click the mouse. Ensure that the following information appears in the 'Properties' dialogue box shown on the screen:
   Protocol : Hyper Text Transfer Protocol with Privacy
   Connection : SSL 3.0, RC4 with 128 bit encryption (High); RSA with 1024 Bit Exchange
   Address (URL) : The URL should start with 'https://'

   You can click the 'Certificates' button in the dialogue box to view information pertaining to the security certificate for the web page.

   On Netscape
   Point the mouse on the web page and right click the mouse. Scroll to 'View Frame Info' and click the mouse. Ensure that the following information appears on the display screen:
   Location : The location should start with 'https://'
   Security : This is a secure document that uses a high-grade encryption key for U.S. domestic use only (RC4, 128 bit)
   Certificate : This Certificate belongs to... United Overseas Bank Ltd...

Inform Us Immediately Of Suspected Invasion Of Your Privacy Or Of Unauthorised Transactions

If you suspect that your privacy has been invaded or that your account(s) has/have been accessed by unauthorised persons, please change your Password immediately and contact us by calling the direct hotlines for the respective services. Check your account statements to see if any transaction has been performed without your authorisation. Should there be any unauthorised or unusual transactions, please notify us immediately.

You should check your account statements regularly and notify us promptly of any errors. At the minimum, you should check your account statements at least once at the beginning of each month.

Bank accounts
If you object to any entry or omission in your bank account statement in respect of any calendar month, you must inform the Bank in writing within 14 days of the date from which the full statement for that calendar month is made available on UOB Personal Internet Banking. Failure to do so shall imply your acceptance of the account statement and the correctness of the account statement.

Email Security

As information submitted via email is not encrypted during transmission, it is important that you do not give your account or credit card number nor convey any confidential information or banking or other instructions in your enquiries and/or comments.

If you encounter any suspicious email, passing off as an email from UOB Group, please notify us immediately.

Additional Recommended Good Practices To Safeguard Your Online Security

• Remove file and printer sharing in your computer, especially when you have Internet access via cable modem, broadband connection or a similar set-up.
• Make regular backup of critical data.
• Consider the use of encryption technology to protect highly sensitive data.
• Do not install junk software or run programs of unknown origin.
• Delete junk or chain emails.
• Do not open email attachments from strangers.
• Do not disclose personal, financial or credit card information to little-known or suspect websites.
• Do not use a computer or device which cannot be trusted

At the UOB Group, we are committed to providing you with responsive customer service. When we receive any customer complaint, our priority is to attend to it as expeditiously as possible.

Customer Choices In The Event Of Unavailability Of The UOB Group Internet Banking/Transaction Website(s)

Should the UOB Group Internet banking/transaction website(s) be unavailable, customers can choose to do their banking/transactions via the following alternative channels:

Should the UOB Group Internet banking/transaction website(s) be unavailable, customers can choose to do their banking/transactions via the following alternative channels:

Privacy Policy

We, United Overseas Bank Limited, Tokyo Branch, are aware that the personal information provided by our customers is the important property of each customer and its appropriate protection and use is one of our most important considerations.

We hereby declare that we comply with the following and make efforts at all times to accomplish appropriate protection and use of customers' personal information.

1. We will comply with all applicable laws, regulations and guidelines in relation to customers' personal information, and safeguard, according to strict standards of security and confidentiality, any information our customers share with us.
2. We will acquire customers' personal information in a lawful and fair manner. And unless the customers' consent is obtained or other exceptions apply, we will limit the use of personal information to the minimum we require for implementing the purpose of use disclosed to customers.
3. We will permit only authorized employees, who are trained in the proper handling of customer information, to have access to that information.
4. We will establish measures as necessary to prevent leakage, loss or destruction of, or safeguarding of, personal information and implement such measures strictly. We will also establish a system and manual to deal with emergency situations.
5. We will not provide the customers' information to outside parties unless one of the following applies:
   1. The customer agrees to such provision
   2. Such provision is required by applicable laws
   3. Such provision is required for the protection of human life, physical health or property
   4. Support services are outsourced to other organisations
   5. We co-use with the co-users as mentioned
6. Whenever we hire other organisations to provide support services, we will choose the organisations in accordance with our internal rules regarding safeguarding of personal information and supervise them as necessary and appropriate, including auditing them for compliance with our internal rules.
7. We will attempt to keep customer files complete, up-to-date and accurate. We will tell our customers how and where to conveniently access their information such as name and home address. If there is a request for disclosure, correction and suspension of use of the personal information which we deal with, upon confirmation that such request is made by the customer himself/herself or the proxy authorised by the customer, we will take such measures for disclosure, correction and suspension of use unless there is any special reason not to do so.
8. We will continuously attempt to improve this Privacy Policy.

This Privacy Policy has been effective since 10 December 2018.

If you have any queries, please contact: 03-3596-7200

Usage of Personal Information

The Bank will ensure to use personal information of customers for the following business operations to the extent necessary to achieve the purpose of use pursuant to the Act on the Protection of Personal Information (Act No. 57 of 30 May 2003).

Scope of Business Operations

• Accepting deposits, effecting domestic funds transfer, providing money exchange, granting loans, executing foreign exchange and other operations incidental thereto; and
• Other business operations which a bank can operate and other operations incidental thereto (including those which a bank will come to operate).

Purpose of Use

• To deal with opening accounts for various financial products, transactions, applications of the financial products and services with customers;
• To confirm the identity of customers pursuant to the laws etc. or to confirm the eligibility of customers for the financial products and services;
• To manage continuous transactions, such as controlling the date of depositing or financing;
• To make decisions on or manage applications for loans or other continuous transactions;
• To make decisions on the appropriateness of the financial products and services, in light of the principles of suitability, etc.;
• To disclose to third parties to the extent necessary for proper operation of the business, such as disclosing the personal information to private credit information institutions in relation to providing credit;
• To properly handle the personal information entrusted by other business entities when any part or all of the handling is entrusted;
• To exercise the rights or implement the obligations under agreements with customers or laws;
• To research and develop financial products and services by conducting market research, data analysis and questionnaires;
• To propose financial products and services, such as sending direct mail;
• To propose the products and services of allied companies;
• To deal with termination of transactions or management after the termination; and
• To properly and smoothly implement the transactions with customers.

Furthermore, as stated below, where the purpose of use of specific customer information is limited under laws and ordinances, such customer information shall not be used for any other purpose：

• Pursuant to Article 13-6-6 of the Enforcement Regulations of the Banking Act and so forth, any information provided by private credit information institutions concerning the debt-paying ability of the customer who is in need of funds shall not be used for any purpose other than examination of the debt paying ability of such customer nor shall it be provided to any third party;
• Pursuant to Article 13-6-7 of the Enforcement Regulations of the Banking Act and so forth, any specific private information such as information on race, belief, family origin, registered domicile, healthcare record or criminal record shall not be used for any purpose other than those deemed necessary for the appropriate management of operations or otherwise nor shall it be provided to any third party.

Entrustment of handling Personal Data

We entrust an entity with the handling of personal data and exercise necessary and appropriate supervision over the trustee in the following cases (not limited):

• Transaction such as foreign currency exchange (entrust another bank with the handling of personal data in relation to the transaction)
• Operations regarding sending direct mail (entrust with the handling of personal information for addressing)
• Maintenance of information system (entrust with the handling of personal information while maintenance)

Co-Use of Personal Data among UOB Group

We have affiliated entities in UOB Group and will jointly use personal data among the entities set out in the Scope of co-use below only when customers’ consent is obtained or it is necessary. We will ensure to implement stringent control measures in using the data jointly.

Co-Use of Personal Data of dishonoured customer among financial institutions

When a note/check is dishonoured, a holder of the note/check or a transacting financial institution will be multiply impacted. In such cases, transactions need to be suspended for a certain period of time for a customer whose notes/checks are dishonoured or whose transactions are suspended in order to secure smooth distribution of notes/checks. Personal data of a customer—a drawer, an accepter of bill of exchange or who seeks to open a current account—may therefore be provided to a clearing house and used jointly by participating financial institutions to facilitate referencing the following items of personal data and check on a disposition of suspension of transactions for the customer.

1. Items of Personal Data to be Co-Used The information regarding the drawer of dishonoured note/check (or accepter of bill of exchange. This shall apply hereinafter) and applicant for opening a current account as follows:
   1. Name of the relevant drawer (in the case of a corporation, its name, name of representative and title of representative);
   2. Trade name of the relevant drawer if any;
   3. Address (in the case of a corporation, place where it is located) (including the zip code);
   4. Name of applicant for opening a current account (in the case of a corporation, name, name of representative, title of representative and trade name (if any));
   5. Date of birth;
   6. Occupation;
   7. Capital (only in the case of a corporation);
   8. Category and face value of the relevant note or check;
   9. Distinction between a report of dishonour (the first dishonour) and report of suspension of transactions (disposition of suspension of transactions);
   10. Date of exchange (Date of presentation);
   11. Paying Bank (including the name of department or branch);
   12. Out-clearing Bank (including the name of department or branch);
   13. Reason of dishonour;
   14. Date of disposition of suspension of transactions;
   15. Clearing house in which the paying bank (branch) of the dishonoured note/check participates and the bankers association to which the relevant clearing house belongs;
   (Note) If the information regarding a through c above described in the dishonoured note/check is different from the information that has been filed with the paying bank, the information described in the relevant note/check shall be included for Co-Use.
2. Scope of Co-Users
   1. Local clearing houses;
   2. Financial institutions participating in local clearing houses
   3. Personal Credit Information Center established and managed by the Japan Bankers Association
   4. Each local bankers’ association which is a special member of Japanese Bankers Association (including Reference Center to Persons Whose Transactions Are Suspended of each local bankers association)
   A list of co-users may be found on the website of Japanese Bankers Association (Japanese).
   https://www.zenginkyo.or.jp/abstract/clearing/
3. Purpose of Use
   To ensure smooth distribution of notes and checks and to judge credit transactions of their own by financial institutions
4. Name of Person Responsible for Management of Personal Data
   Local Bankers Association to which the clearing house belongs in which the paying bank of the dishonoured note/check participates.

Customer Complaints and Inquiries

1. Please direct complaints, questions regarding handling of customer information, to the inquiry desk indicated below:
   United Overseas Bank Limited, Tokyo Branch: 03-3596-7200
   Address: Sanno Park Tower 13F, 2-11-1 Nagata-cho, Chiyoda-ku, Tokyo 100-6113
2. We are a member of All Banks Personal Data Protection Council that is an Authorized Personal Information Protection Institution for the financial sector. You can also consult:
   All Banks Personal Data Protection Council
   URL: http://www.abpdpc.gr.jp/ (Japanese)
   TEL: 03-5222-1700　（Complaints/Consultation）
   Or please contact Japanese Bankers Association Consumer Relations Office nearby.

Procedures for Disclosure Request, etc.

We use personal data for the purposes set out above in line with the Act on the Protection of Personal Information (hereinafter referred to as "the Act"). At the request of the customer, we will deal with notification of purpose of utilisation and disclosure, correction or suspension of utilisation of retained personal data pursuant to Article 27 Paragraph 2, Article 28 Paragraph 2, Article 29 Paragraph 2 and Article 30 Paragraph 2 and Paragraph 4 of the Act.