Within UniCredit Bank Austria AG, your data is received by those offices or employees that require your data to fulfil contractual, statutory and regulatory obligations and to safeguard legitimate interests. Furthermore, data processing companies acting on our behalf (especially IT and back-office service providers, and service line providers) receive your data if they require it to provide their respective services. Accordingly, all the data processing companies are contractually obligated to keep your data confidential and to process it only in the context of service provision.
Public authorities and institutions, (such as the European Banking Supervisory Authority, European Central Bank, Austrian Financial Market Authority, fiscal authorities, etc.) and UniCredit S.p.A. as our parent company, may be granted access to your personal data if there is a statutory or regulatory obligation to do so.
Notice of bank secrecy: With regard to forwarding data to other third parties, we would like to point out that as an Austrian credit institution, UniCredit Bank Austria AG is obligated to comply with banking secrecy regulations in accordance with Section 38 of the Austrian Banking Act, and must therefore maintain confidentiality regarding all customer-related information and facts which have been entrusted or made accessible to the bank in the course of the business relationship. Therefore, we can share your personal data only if you have explicitly released us from banking secrecy in advance, in writing or if we have a legal or regulatory obligation or authorisation for it.
In this context, recipients of personal data can be other credit and financial institutions or similar institutions (depending on the agreement, this can be, for example, correspondent banks, stock exchanges, depositary banks, credit agencies, etc.).