Privacy Policy

Personal Data Notice

In order to comply with the personal data protection legislation, OTP Bank S.A. ensures that the personal data subject is informed about the processing of personal data.

Privacy Policy: Extract from the Policy on security of personal data processed within OTP Bank S.A.

In order to exercise the rights regarding the processing of personal data, the subject of personal data may address a written and signed request to any branch or to the Bank's head office at the address: MD-2012, Republic of Moldova, mun. Chisinau, bd. Ștefan cel Mare și Sfânt, nr. 81/A or via e-mail: datepersonale@otpbank.md or telephone numbers: +373 22 81 24 14, +373 69 986 408

Privacy Policy

Controller: OTP Bank S.A.
Contact: datepersonale@otpbank.md | 022812414
Address: MD-2012, Chișinău, 81/A Ștefan cel Mare și Sfânt Ave.
Data Protection Officer: appointed by the Bank.  

1. What this policy covers
This policy explains how OTP Bank S.A. processes personal data when providing banking and financial services, including digital onboarding, online/mobile banking, communications, complaints handling, fraud prevention, and marketing where consent or legitimate interest applies. 

2. What data we collect
The Bank may process:
identity data such as name, surname, date and place of birth, citizenship, IDNP and document numbers; contact data such as address, phone, email; professional and employment data; family-status data where legally required; financial and banking data such as salary, income, transactions, IBAN, card data; image and video data from identity documents, digital onboarding and branch surveillance; voice recordings from calls; signatures; health data only where expressly required by law; technical data such as IP address, browser, operating system, device data and cookie data; and fraud-prevention data such as sanctions and conviction-related information where permitted by law.  

3. Why we use the data
We process personal data for contract initiation, performance and termination; legal and regulatory compliance; AML/KYC checks and fraud prevention; electronic identification and digital onboarding; customer support and complaints; transaction monitoring and security; debt recovery; insurance-related processing where relevant; recording communications for service improvement and contract execution; marketing and promotional communications where permitted; customer satisfaction and analytics; and other activities related to the Bank’s operations.  

4. Legal basis
Processing is based on contract performance, pre-contractual steps, legal obligations, legitimate interests, data exchange and interoperability obligations, consent where applicable, statistical and analytical purposes, and other legal grounds provided by applicable law.  

5. Sharing and disclosure
The Bank may disclose data to the data subject or representative, authorized third parties, contractual and business partners, the OTP Group and subsidiaries, public authorities, international authorities, and other persons where required by law. Data is treated as confidential and is disclosed only where legally permitted, with confidentiality safeguards required for suppliers and partners.  

6. International transfers
Cross-border transfers may occur only with adequate safeguards and enforceable rights, based on law or international agreements. Transfers may be made within the OTP Group, to EEA states, to states with adequate protection, and exceptionally to other states only where expressly allowed by law.  

7. Retention
Data is stored only for as long as needed for the relevant purpose. For AML-related records, the Bank retains transaction data and supporting documents for 5 years after the end of the business relationship or occasional transaction, with a possible extension of up to 5 additional years where legally required. Longer retention for statistical or analytical purposes is done in line with the law.  

8. Your rights
Data subjects have the right to information, access, rectification, updating, blocking or deletion of inaccurate or unlawful data, objection in permitted cases, withdrawal of consent where processing is based on consent, protection against automated individual decisions, complaint to the data protection authority, and court remedies.  

9. Security
OTP Bank S.A. states that it applies appropriate technical and organizational measures to ensure an adequate level of personal data protection.  

10. Account and service consequences
Refusing to provide data necessary for the service may make it impossible to provide banking services and may lead to termination of the contractual relationship, where required by law and the nature of the service.  

11. Contact
For privacy requests, contact: datepersonale@otpbank.md or 022812414.  

Privacy Policy
This app’s privacy policy is available at a publicly accessible web page. It describes what data OTP Bank S.A. collects, how it is used, with whom it is shared, how long it is retained, the security measures used, and how users can exercise their rights. The policy applies to the app and to related banking services provided by OTP Bank S.A. 

Individuals

Legal entities

About us

Information

Call us

+373 22 256 456
Copyright 2026 OTP Bank S.A.
OTP Bank S.A. is a member of the Deposit Guarantee Scheme of the Republic of Moldova
Website support by amigo.studio
Contacts
News
Disclosure of information
ATM and branch network
Cards security
Exchange rates
Services Status

Ask question

Field is not valid
Field is not valid
Field is not valid
Field is not valid
Subject
Field is not valid
Time for call
Field is not valid
Field is not valid
    I agree and I got acquainted cu prevederile prelucrării datelor cu caracter personal

      Thank you

      Thank you

      Something went wrong

      We are working on this problem

      Acest site folosește cookie-uri.

      Prin continuarea navigării, vă exprimați acordul asupra folosirii cookie-urilor.