2. Home
  4. Key Fact Documents

Key Fact Documents

Effective Date: 01st October 2025

  1. Introduction

At Seylan Bank PLC, we are committed to safeguard the personal data of our customers, employees, vendors, and other third parties. This Privacy Notice outlines how we collect, use, store, and protect your personal information in accordance with applicable data protection laws.

  1. Information We Collect

We collect various types of personal data and special category personal data depending on your relationship with us, which may include but are not limited to:

  • For Customers:
    • Identification Information: Name, date of birth, gender, nationality, and identification numbers (e.g., NIC Number, passport number).
    • Contact Information: Address, email address, phone number.
    • Financial Information: Bank account details, credit card information, income, financial history, and transaction records.
    • Demographic Information: Employment status, marital status, and dependents.
    • Usage Data: Information about how you use our services, including transaction history and preferences.
    • Compliance Information: Data necessary for anti-money laundering (AML) and know your customer (KYC) regulations.
  • For Employees and Candidates:
    • Personal Identification Information: Name, date of birth, NIC Number, and identification documents.
    • Contact Information: Address, email address, phone number.
    • Employment History: Job title, department, employment dates, performance evaluations, and training records.
    • Compensation Information: Salary, bonuses, benefits, and tax information.
    • Health Information: Medical records and disability information.
    • Work-related Data: Attendance records, disciplinary actions, and work-related communications.
  • For Vendors:
    • Company Information: Company name, registration details, and business type.
    • Contact Information of Company Representatives: Name, email address, phone number.
    • Financial Information: Bank account details, payment history, and invoices.
    • Contractual Information: Terms of service, agreements, and performance evaluations.
    • Compliance Information: Certifications, licenses, and insurance details.
  • For Third Parties:
    • Identification Information: Name, contact details, and identification numbers (if applicable).
    • Transaction Data: Information related to transactions involving our customers.
    • Compliance Information: Data necessary for anti-money laundering (AML) and know your customer (KYC) regulations.
    • Feedback and Communication: Any information provided through customer service interactions or feedback forms.

  1. Purpose of Data Collection

We collect personal data for various purposes, including but not limited to:

  • Providing and managing banking services and products.
  • Complying with legal and regulatory obligations.
  • Conducting employee management, payroll processing, and benefits administration.
  • Managing vendor relationships and ensuring service delivery.
  • Preventing fraud, conducting risk assessments, and ensuring security.
  • Communicating with you regarding services, updates, and promotions.
  • Collecting outstanding payments and managing recoveries.

  1. Legal Basis for Processing

We process personal data based on the following legal grounds:

  • Consent: Where you have provided explicit consent for us to process your data.
  • Contractual Necessity: To fulfill our contractual obligations with you.
  • Legal Obligation: To comply with applicable laws and regulations.
  • Legitimate Interests: To pursue our legitimate interests.
  • Public Data: Where the relevant data has been made manifestly public.
  • Legal Claims: For the defense of legal claims and litigation.

  1. Data Sharing and Disclosure

We may share your personal data with your consent

  • Regulatory authorities and law enforcement agencies as required by law.
  • Affiliates and subsidiaries. (Legitimate internal purposes in accordance with data protection requirements.)
  • Credit references to debt collection agencies when necessary.

 

This sharing may involve cross-border data transfers, which will be performed in line with the directions provided by the applicable data protection laws.

  1. Data Retention

We will retain your personal data only for as long as necessary to fulfill the purposes for which it was collected, including compliance with legal obligations. Specific retention periods may vary based on the type of data and applicable regulations.

  1. Your Rights

You have the following rights regarding your personal data:

  • The right to access your personal data.
  • The right to rectify inaccurate or incomplete data.
  • The right to request the deletion of your personal data.
  • The right to request a review of a decision made through automated decision making.
  • The right to withdraw consent and object to the processing of your personal data.
  • The right to Opt-in/Opt-out of Promotional Communications to provide or withdraw consent for receiving marketing or promotional messages from the Bank.

  1. Security Measures

We implement appropriate technical and organizational measures to protect your personal data from unauthorized access, loss, or misuse. This will include encryption, access controls, and regular security assessments, as well as awareness and training for our staff.

You also play a vital role in protecting your data:

 

  • Keep your passwords and banking credentials secret.
  • Do not share login details, OTPs with anyone.
  • Use strong, unique passwords and change them regularly.
  • Contact us immediately if you suspect unauthorized access.

 

SEYLAN Bank will never request your internet banking password via email or phone.

 

  1. Changes to This Notice

We may update this Privacy Notice from time to time. The updated privacy notice will be made available on our website, which you should monitor to identify any changes.

  1. Contact Us

If you have any questions or concerns regarding this Privacy Notice or our data protection practices, we encourage you to follow the steps outlined below.

  1. Branch level Resolution

Initially, we recommend that you raise your complaint with your branch, as they are well- equipped to assist you and address your concerns directly.

  1. Calling our hotline: (+94) 112008888

 

  1. Sending email to customer.experince@seylan.lk

 

  1. Contacting Data Protection Officer at Seylan Bank PLC Level-05, Seylan Bank Head office,

No 90, Galle Road, Colombo 3.

 

Linked Websites Disclaimer

 

Our Privacy Statement applies only to our own websites and services. It does not cover third-party websites, including those where our ads may appear or any external links you may follow from our platform.

 

Once you leave our platform and visit another site, their privacy practices may differ. We recommend reviewing their privacy policies before sharing any personal information.