Vericard-ConecT

Vericard-conect it’s a smartphone application allowing biometric authentication of payments made in the online environment with Crédit Agricole Bank Romania cards, issued under Mastercard logo. The app can be downloaded from or  starting 30.12.2020 and, for proper functionality, the minimum operating system requirements are Android 6 or iOS 11.

The online payments authentication through SMS code received on mobile will be also available, having the possibility to select between the two options, any of them being a required step for payment security.

Today, the online payments through cards are a habit in our lives which ensures transactions in a comfortable and secure way. When we talk about online security, we know that additional measures are required and vericard-conect was built with this objective.

vericard-conect it’s a free application, both download and usage.

Steps to install the app on your smartphone and register the Crédit Agricole Bank Romania card:

1.  The phone number you’ll use must be the same as the one registered in the documents signed at account opening in Credit-Agricole Bank.

2. The mobile should allow and have active the biometric authentication.

3. Activate the mobile/wi-fi data on your smartphone and activate the GPS system (Location).

4. Download and install vericard-conect, depending on your smartphone operating system.

                                                       

5. Allow the notifications sent by the app on your mobile, both from general settings and any other installed app which could block them.

6. Select your preferred language, RO or EN, register the Credit-Agricole Bank card carefully following the on-screen instructions.

7. If all the steps were successfully insert the 6 digits code received on mobile by SMS and follow on-screen instructions.

8. If you encounter card registration errors, please follow the on-screen instructions.

9. Once the card is correctly registered, you’ll see the image of your card on the screen.

Steps to use the app for online payments:

1. Whenever you use the card for online payments you’ll have to follow the steps described on the website of the acquisition and payment.

2. If the message “Biometric authentication” is displayed on the smartphone screen that validates the card enrollment in vericard-conect.

3. Accept the payment by biometric authentication.

4. “Success” message confirms the end of payment authentication.

If you need our support please call us at 021.30.40.300, Mon-Fri, 09.00 -17.00 or send us your message at conect@credit-agricole.ro .

The Privacy Policy for the vericard-conect App (”the Policy”)

Who we are

In this Privacy Policy, ‘we’ or ‘the Bank’ shall mean Crédit Agricole Bank Romania S.A., acting as a personal data controller.

Crédit Agricole Bank Romania S.A. is based in Bucharest, Sector 1, 19 Berzei St., and is registered with the Trade Register under no. J40/3797/1996 and with the Banking Register under no. RB-PJR-40-033/1999, and has the tax identification number 8490099, and the tax attribute RO, and the following contact details for the Data Protection Officer: dpo@credit-agricole.ro.

For further information, please contact us as stated in the ‘Contact us’ section of this Policy or visit our website: www.credit-agricole.ro.

The conditions laid down by the law for our processing of your data

Your privacy and the protection of your personal data are important to us. We will process your personal data in compliance with all legal conditions.

We have the right to process your personal data only if we comply with one of the following conditions:

  • You have given your consent to our processing of your personal data
  • There is a contract between us and you or we are going to enter into a contract with you
  • There is a legal obligation which we must observe
  • We have a reasonable and legitimate interest in processing your personal data.

A legitimate interest refers to certain business reasons or business interests on the basis of which we process your data. We will process your personal data for such legitimate interests only in certain situations and only if the law allows us to do so. In any case, we will inform you of such interests and we will not violate your rights and interests.

Where we collect your personal data

In general, the personal data which we process are provided to us directly by you.

By way of exception, we may receive personal data concerning you from other entities such as third parties that help us provide our services and products.

The purposes for which we can process your personal data

  1. Card enrolment

In order to enjoy certain features of the app, you must create a user account.

Personal data [Surname, first name, telephone number, password]
Legitimate basis for the processing We process your personal data in order to provide you with our services, i.e. in accordance with the Terms and Conditions stated in the General Business Terms and Conditions accepted on opening the account
To whom we disclose the data ·         Other companies within the Bank group;

·         Consultants (third parties) who help us manage the accounts and services and explore new business development methods;

·         Departments such as the Bank Fraud Prevention Department, according to the law;

·         IT service providers for our companies or providers to whom we subcontract certain technical support services;

·         Regulatory authorities and other state authorities if required by legal or statutory requirements

How long we will store the data We retain your data until you delete your card enrolled in the vericard-conect application.
Where the data are stored The data are stored on a server located in Hungary.
  1. Statistical purposes

We can process your personal data in order to obtain certain aggregated and anonymized statistical information. Such statistical reports may be sold to third parties.

Personal data Surname, first name, card no., card expiry date, CVV2, the payment transaction history
Legitimate basis for the processing The legitimate interest of the Bank and the other companies within the group, i.e. to constantly improve the services offered through this app. Your data will only be processed for the extraction of certain metrics, and the resulting statistical reports will only contain anonymous data.
To whom we disclose the data ·         Other companies within the Bank group;

·         Consultants (third parties) who help us manage the accounts and services and explore new business development methods;

·         Departments such as the Bank Fraud Prevention Department, according to the law;

·         IT service providers for our companies or providers to whom we subcontract certain technical support services;

·         Regulatory authorities and other state authorities if required by legal or statutory requirements.

How long we will store the data We process your data for statistical purposes only if you have created an account within the app. Once you disable/delete your user account, we can no longer process your data for statistical purposes.
Where the data are stored The personal data are anonymized so that you should no longer be identifiable.
Your right to object to the processing You have the right to object to the processing of your data for statistical purposes at any time.

What happens if you do not provide us with certain personal data

In certain cases, in order for us to be able to render you the services and for you to enjoy the features of the app, it is necessary for you to provide us with your personal data. If you do not agree to disclose certain information to us, we may be unable to provide you with certain services or products.

We will inform you whenever the processing of certain data is absolutely necessary for the provision of the services.

How we protect your personal data

We use various technical and organizational measures to protect your data against unauthorized access, use, disclosure or modification, in accordance with the personal data protection law.

The transfer of data outside the European Economic Area (EEA)

The servers for our app are located in the EEA, and your data will be stored on these servers and will not be transferred outside the EEA.

In order to protect your personal data at all times, we transfer your data outside the EEA on the basis of standard contracts approved by the European Commission, which contain specific clauses for such transfers. You can learn more about these contracts by submitting an application to that effect to our DPO.

How long we retain your personal data

We retain your personal data in accordance with our Data Retention Policy as long as your relationship with the Bank continues.

Once you are no longer our customer or you terminate your business relationship with the Bank, we can still retain your personal data for one of the following reasons:

  • Answering any questions or responding to any complaints;
  • Showing you that we have treated you fairly;
  • Keeping the records in accordance with the rules applicable to our business

We can retain your personal data for legal, regulatory or technical reasons.

What your rights are and how can you exercise them

According to the provisions of Regulation (EU) 2016/679 you have the following rights:

  • To withdraw your consent: if we process your personal data on the basis of your consent, you have the right to withdraw such consent at any time;
  • To access your data: you may get information about the processing of your personal data, as well as a copy of such data;
  • To rectify the data: if you think that your personal data are inaccurate or incomplete, you may modify and update such data within the app;
  • To have the data deleted: you may request the deletion of your personal data, to the extent provided for by the law;
  • To restrict the processing: you may request the restriction of your personal data processing, which means that your data will only be processed in certain situations;
  • To object to the processing: you may challenge the processing of your personal data, for reasons related to your particular situation, if we process the data according to our legitimate interest or for direct marketing purposes;
  • Of data portability: you have the right to request that the personal data which you have provided to us be returned to you or, if possible, transferred to a third party.

Some of your rights are not absolute and there may be obligations laid down by the law or legitimate interests on our part that justify and allow us to continue processing your personal data. However, we kindly ask that you tell us the reason why you believe that we can no longer process them.

You may exercise your rights as listed above by submitting an application to this email address: dpo@credit-agricole.ro or by post to 19 Berzei St., Sector 1, Bucharest, Romania.

In addition to the foregoing, you may file a complaint with the National Supervisory Authority for Personal Data Processing (ANSPDCP), 28-30 G-ral. Gheorghe Magheru Blvd., Sector 1, postal code 010336, Bucharest, tel. 0318.059.211 (www.dataprotection.ro), regarding the processing of your personal data.

Law amendments

If you have created a user account, we will send you notices of certain amendments to the law or whenever we make functional changes to the app.

In some cases, we can contact you to inform you about this, but we recommend that you check these policies on a regular basis for further updates.

Contact us

If you have any questions, comments or requests regarding this Policy please send them to:

Address

19 Berzei St.

Sector 1, Bucharest,

Romania

The email address of the Data Protection Officer (DPO):

dpo@credit-agricole.ro