Alpha Bank
Terms and Conditions
Alpha Bank Romania S.A. (hereinafter referred to as "Alpha Bank Romania" or "the Bank"), via the website thereof, provides the visitor/Internet user with the opportunity to be informed about Alpha Gold Personal Banking. We are asking you to carefully read the following Terms of Use.

The use of this website implies the full and unreserved acceptance of the Terms of Use that apply to the entire content of the website.

If the visitor/user of the website does not accept any part of these Terms, such visitor/user must leave the website and cease any use thereof. By visiting or using the website, visitors/users confirm that they have read, understood and unconditionally accepted the Terms of Use and that they agree to be thereby bound. Alpha Bank Romania is entitled to unilaterally amend these terms at any time, without any prior notice, by communicating any changes via the website. The use of the website after the announcement of the amendment will be considered an acceptance of such amendment.
A. Copyright/Intellectual and Industrial Property Rights
The entire content of the website, including but not limited to trademarks, distinctive titles, texts, news, photographs, images, provided services, is owned by Alpha Bank Romania and is governed by the applicable provisions of Romanian and international law, primarily targeting the Intellectual and Industrial Property Rights, except for the protected rights of third parties.

Consequently, no amendment, publication, transmission, transfer, reproduction, distribution, presentation or any use of the content (full or partial of the website) is permitted in any way and by any means for commercial or other purposes, without the prior written consent of Alpha Bank Romania. Exceptionally, limited or isolated copying, printing or storage of parts of the content above is allowed for the sole purpose of personal use by the visitor, provided that this use is accompanied by a clear and distinctive indication of the origin and without being used for commercial or other purposes.
B. User’s Conduct
The website will be used for lawful purposes only and in such a way that it does not restrict or impede the use thereof by third parties. Website visitors/users will comply with the regulations and provisions of the Romanian, European and international law governing telecommunications and will refrain from any illegal and abusive/inappropriate behaviour that could have negative consequences for other visitors/users and cause damage or lead to the malfunction of the website or extension to Alpha Bank Romania. If the Bank is involved in any dispute or has to pay any kind of compensation as a result of the visitor/user's breach of the stipulated obligations, such visitor/user will indemnify the Bank accordingly.
C. Links to the Websites of Third Parties
The website allows visitors/users to be transferred via special connections (links, hyperlinks, banners) to websites of third parties. The liability for the content of these linking websites is exclusively incumbent upon the third parties providing them. Alpha Bank Romania does not guarantee the availability of these websites and is not responsible for the quality and ownership of the products or services provided to the public via these websites. The Alpha Bank Romania website provides links to other websites exclusively for the benefit of visitors/users and the inclusion of any link to these websites will not represent and will not be considered a commitment or warranty or inducement or endorsement by the Bank of the content or the quality of the services provided on such websites.
D. Limitation of Liability
Alpha Bank Romania does everything possible to ensure that all pieces of information provided on are complete, correct, updated and clear, but does not guarantee that these criteria are invariably met. Therefore, Alpha Bank Romania will not be liable in any circumstances, including in case of negligence, for errors, omissions or deficiencies as a result of providing this information, any delay, discontinuity in the transmission of information or any damage to the visitor/user following the use of this information.

The content of the website does not contain any financial, legal or other advice, inducement or incentives to make an investment or another transaction and Alpha Bank Romania is not responsible for the use of the website by visitors/users acting upon their own initiative.
E. Website Security
The access to the website is upon the initiative of the visitor/user and not upon the initiative of Alpha Bank Romania.

The visitor/user of the website is solely responsible for obtaining and maintaining the necessary equipment (e.g. personal computer) software, telecommunication equipment and other services required to access the website. Users are also responsible for protecting their system against viruses and other malware.

Alpha Bank Romania has taken all possible measures to ensure that the website is protected against viruses and other malware and uses security systems to control the access to the web pages thereof, in order to prevent attacks and other unauthorized actions, but does not guarantee the absence of any viruses, faults and other harmful components within the website, and is, therefore, not liable for any damages caused by the aforementioned equipment, software and files, or for the user's damages for the reasons above.
F. Personal Data
Considering the new regulations on the protection of personal data, introduced by Regulation (EU) 2016/679, which are the basis of the legislation on personal data processing and the protection of such data for EU Member States and which shall apply as of May 25th, 2018, we would like to reconfirm our commitment of processing your personal data in a transparent manner and with the observance of all the rights that you benefit from under the law. For this purpose, please find hereinafter the main elements that we deem useful for you to know on this topic, in your capacity of "data subject".

1. What does data processing mean
According to Regulation (EU) 2016/679, "data processing" is understood as any operation or set of operations performed on personal data or on personal data sets with or without the use of automated means, such as the collection, recording, organization, structuring, storage, adjustment or amendment, extraction, consultation, use, disclosure by transmission, dissemination or other supply, alignment or combination, restriction, deletion or destruction.

In its capacity of personal data controller, Alpha Bank Romania shall always see that the processing of data is characterized by legality, fairness and transparency, with the data requested being adequate, relevant and limited to what is required in relation to the purposes for which they are being processed.

2. What personal data do we process?
On a case by case basis, the Bank processes personal data such as, but without limitation to:
• Identification data (such as surname, first name, personal identification number, date of birth);
• Contact data (home / residence address, e-mail address, phone number)
• Geolocation data/traffic data (IP, cookie);
• Financial and transactional data;
• Data on the education and professional training, workplace;
The list of these data may vary depending on the characteristics of the services and products contracted by you or in connection with which you manifest your interest, the actions taken on the website, the legal provisions applicable to the activities performed by Alpha Bank Romania and the Bank's prudential policy.

3. For what purposes do we process personal data?
The data are processed for the following purposes:
• supply of financial-banking services;
• marketing (such as, but not limited to, participation in campaigns and awarding of prizes, loyalty programs and special offers for clients, including the promotion of any products and services of the Bank and its partners, advertising/promotion, marketing specific activities, such as market surveys, profiling, segmentation);
• management of the relationships initiated by you via the website;
• fulfilment of the legal obligations (e.g. reporting obligations to state institutions/bodies);
• for statistic purposes.
In some situations, your personal data may be processed automatically without, however, excluding human intervention. For example, to make sure that we are offering you the most appropriate solutions for your profile, we can use segmentation and marketing profiling which helps us to elaborate targeted offers (offers for students, employees, pensioners etc.).

4. What happens if you do not want your personal data to be processed by the Bank?
The beginning and performance of the business relationship and the fulfilment of the obligations set out by the regulations in force may only be carried out based on the processing of personal data. Should you not want to provide us with the necessary information or object to further processing, we will be unable to initiate or continue the business relationship.

Data processing for marketing purposes makes it possible for us to inform you about Alpha Bank Romania's news and offers. The processing for this purpose may be requested to stop, any time, without the relationship with the Client being affected.

5. To whom may personal data be transmitted?
The categories of potential recipients of data transfers may be:
• agents/attorneys-in-fact, in order to fulfil the legitimate interests of the Bank (law firms, debt collection companies etc);
• entities within the Alpha Bank Group (within the fulfilment of the reporting obligations);
• third contractors (for example, for the performance of marketing and advertising actions);
• relevant state institutions/authorities (for the fulfilment of the legal obligations);

6. Can the data be transmitted outside the country?
The processing of personal data may involve their transfer abroad, for the purposes mentioned above. The data may be transferred to countries in/outside the European Union, including the United States of America. In all cases, any transfer shall be made with the establishment of required safeguards to ensure the protection of personal data against accidental or illegal damage, loss, alteration, disclosure or unauthorized access, as well as against any other type of illegal processing.

7. What are your rights related to personal data protection?
As of May 25th, 2018, Regulation (EU) 2016/679 has reviewed and extended the scope of the rights of natural persons with regard to their personal data.

Please find below a detailed description of these rights, for a better understanding of their legal content:
a. Right to information: the right to be informed about the data and the characteristics of their processing in your relationship with Alpha Bank Romania;
b. Right to rectification: the right to obtain from the Bank, without undue delay, the rectification/completion of inaccurate personal data concerning you;
c. Right to erasure: you may express the right for your date to be erased from the records of Alpha Bank Romania, in compliance with the applicable legal provisions in the area of personal data protection;
d. Right to restriction of processing: may be exercised when one of the following applies: the data subject challenges the accuracy of the data or the lawfulness of the processing, the data subject objects to the deletion of the data when the Bank no longer requires the personal data for processing but the data subject requires them to establish, exercise or defend a right in court or where the data subject objects to the processing for the period of time during which it is checked that the legitimate interests of the Bank override those of the data subject;
e. Right to data portability: consists in the ability to request the Bank to transmit the personal data you provide in a structured format that is currently used and readable automatically; the transmission of data may be done directly to another controller only where this operation is feasible in terms of the technical capabilities used by Alpha Bank Romania.
f. Right to object: the right to object, at any time, based on legitimate and valid grounds relating to your particular situation, to the processing of personal data, except when there are legal provisions stating otherwise. This right may be exercised under the following conditions: a written request is submitted to Alpha Bank Romania, which will include the data that the objection is requested for and the grounded and legitimate reason relating to your particular situation.
g. Right not to be subject to an individual decision: represents your possibility of requesting the Bank not to be subject to a decision based solely on automated processing, including profiling, which produces legal effects concerning the person concerned or similarly significantly affects the person concerned. With regard to the adoption of a decision based solely on automatic processing, you have the possibility to express your point of view, to request the intervention of a human operator and the possibility of challenging such a decision, in the ways described in this information.
h. The right to lodge a complaint with the National Supervisory Authority For Personal Data Processing (ANSPDCP); i. Right to file lawsuits;

8. For how long are the personal data processed by Alpha Bank Romania?
Your personal data will be processed in compliance with the legal provisions on the basis of which the terms of processing of such data are regulated (for example, the legal provisions regulating the archiving of documents).
G. Cookies Policy
What is a cookie file?
The proper operation of a website is based on the collection of certain key information about the users thereof. In order to do this, a website will create cookie files - which are small text files - stored on their users' computers. These cookies are designed to allow the website to recognize users in the previous visits. Some cookies are required (for example, in order to allow access to the Internet Banking service), while others make it more personal and relevant to you.
The cookie is installed by the request issued by a webserver to a browser (e.g.: Internet Explorer, Chrome) and is completely "passive" (it does not contain software programs, viruses or spyware and cannot access the information on the user’s hard disk). A cookie consists of 2 parts: the name and the content or the value of the cookie. The period of existence of a cookie is technically determined, only the web server which sent the cookie can access it again when a user returns to the website associated with the respective web server.
In compliance with the provisions of Regulation (EU) 2016/679, the information collected by cookies is now classified as personal data.
Do cookies contain personal data?
Although the information collected by cookies, in reference to other record systems, may lead to the identification of a particular person, which qualifies that cookie as personal data, the cookies themselves do not require personal information in order to be used and, in most cases, they do not directly identify Internet users. The personal data collected by the use of cookies can be collected only in order to facilitate certain user functions. These data are encrypted in a way that makes it impossible for unauthorized people to access them.
Why do we use cookie-type files?
The website collects cookie-type files in order to monitor own performances, in order to be able to provide you with content tailored to your needs, but also in order to improve your experience on our website.
Considering how the services that we provide online are going to develop, these cookies may change their technological features in the future. But even in this situation, they will continue to serve one of the purposes below.
We consider that your experience on the website would be impaired if you opted out of the cookies that we use.
There are two types of cookies:
• Persistent (permanent) cookies
They remain on a user's device for a period of time indicated in the cookie. These are enabled every time the user visits the website that created such cookie.
• Temporary (session) cookies
They enable website operators to link a user's actions during a browser session. A browser session starts when a user opens the browser window and ends when they close the browser window. Once you close the browser, all session cookies are deleted.
Cookies generally have 3 different functions and are classified as follows:
1) Functional Cookies (strictly necessary) used by Alpha Bank Romania S.A.
Functional cookies are necessary in order to provide the Bank's website services. They are strictly essential for browsing the website and using the features thereof. These cookies do NOT collect information about you that could be used for marketing purposes (advertising).
Name Description
CookiesNotice Verifies whether the client accepts cookies or not
PHPSESSID Saves the login id to the website (the session)
Cookie Acceptance Banner Records whether you accepted the use of cookies on the website. It does not contain user-related information. Collects the information in an anonymous form, using a sole identifier.
Banner viewing It records whether the banner of the cookie policy has been displayed to you upon your arrival to the website, so as not to be displayed again. Collects information in an anonymous form, using a sole identifier.
2) Analysis cookies
Performance and analysis cookies collect data for statistic purposes, regarding how visitors use a website, do not contain personal information such as names and e-mail addresses and are used to improve the users' experience. These cookies do not collect personal data that could be used for other purposes.
Name Description
_ga Google Analytics. Cookies used to distinguish between users.
_utma, _utmx, _utmxx, _utmz These cookies enable the collection of information about how visitors use this website and in order to detect possible browsing issues. Google Analytics stores information about the visited pages, the duration of the website browsing, the way the website was accessed and the sections accessed within the pages. No personal information is stored, so this information cannot be used to identify the user. The website uses Google Analytics in order to be able to track whether the website meets user requirements and to prioritize the improvement of the run processes. Google provides additional information about cookies on the Privacy Policy and Cookie Policy page. Google also provides an "add-on" enabling you to waive of Google Analytics regardless of the pages that you visit.
3) Advertising cookies used by Alpha Bank Romania S.A.
Advertising cookies are used to display ads that are more relevant to you, can be used to monitor the effectiveness of an advertising campaign by tracking user clicks.
Name Description
Google Adwords
Cookie name: _ga, _gid
It collects information about how visitors reach the website (e.g., from ads displayed on Google Search) or how they use the website.
Directing - YouTube
Cookie name: YSC, LOGIN_INFO, PREF, VISITOR, _ga
These cookies are set by YouTube. YouTube collects user data that is aggregated with profile data from other Google services, in order to display targeted advertising for web visitors from a wide range of own websites and other websites. These cookies can store user preferences and can be used to customize the ad content.
Directing - Facebook
Cookie name: act, c_user, datr, fr, pl, presence, sb, wd, xs
These cookies are set by Facebook. Facebook uses cookies to collect data about the users' interests. Facebook uses these data to provide behaviour-oriented advertising.
Directing – LinkedIn These cookies are set by LinkedIn. LinkedIn collects user data, and these data are used for tracking and behaviour-oriented advertising.
Directing – Twitter These cookies are set by Twitter. Twitter collects data from users, and these data are used for tracking and behaviour-oriented advertising.
_gat_gtag Cookies are used to speed up the connection request rate.
At any time, you may change your use of cookies . Subsequent changes do not affect the legality of the processing done in virtue of the consent given before the withdrawal thereof.
Confidentiality of your data
When processing your data, we use technical and organizational measures, in order to provide the confidentiality, availability and accuracy of your data. We permanently work to ensure that our security measures are kept at the highest level and we undertake to inform you in due time of any security incidents that could pose a significant risk to your rights.
H. Applicable Law – Miscellaneous
This use agreement is governed by the laws of Romania. The law courts in Bucharest have the jurisdiction to interpret these terms and solve any disputes occurred related to this use agreement. If any of these terms is contrary to the law and, for this reason, becomes null or inapplicable, the invalidity or inapplicability of this term will not affect the validity or applicability of the other terms.