We go to great lengths to ensure the highest possible level of protection for your personal data:

  • We invest in our systems, procedures and people
  • We make sure that our working methods take into account with the sensitive nature of your personal data
  • We train our people how to keep your personal data safe and secure

For security reasons, we are unable to provide details of the precise measures we take. But you may have come across some of such security measures, which include:

  • Security of our online services
  • We follow a two-step process to establish your identity (authentication) 
  • Security questions when you call us
  • Requirements for sending confidential documents 
  • Extra secure messages for confidential information in Internet Banking and the ABN AMRO app

Security is our shared priority. If, for example, you encounter breaches in our security, you can report this to us confidentially on our website.

Warning system used by financial institutions

Financial institutions in the Netherlands have developed a warning system to protect the safety and security of ABN AMRO and the financial sector. This system allows the banks to check whether a person:

  • has ever committed fraud, 
  • has tried to commit fraud,
  • or somehow forms a threat to the safety and security of the banking sector. For more information about this warning system and its workings, please visit the website of the Dutch Banking Association (in Dutch).

Your personal data outside Europe

Your personal data is processed outside Europe too. Additional rules apply in that case. This is because not all countries have the same strict data protection rules as we do in Europe.

Sharing personal data within our group

We may share your personal data outside Europe within our group. Our group is: ABN AMRO Group N.V. and its direct and indirect subsidiaries and branches and other entities in which ABN AMRO Bank N.V. has a majority stake. For the purpose of this privacy statement, a majority stake means that ABN AMRO Bank N.V. holds more than 50% of the shares in the relevant entity. Our sharing of personal data is governed by our global internal policy, the Binding Corporate Rules (BCRs). These have been approved by the Dutch Data Protection Authority (Dutch DPA). 

Sharing personal data with other service providers

We may occasionally share your personal data with other companies or organisations outside Europe, for instance in the context of an outsourcing agreement. In that case, we ensure that either the country has an adequate level of protection, or that we have concluded separate agreements with those parties, and that these agreements comply with the European standard, such as the EU's model clauses.

International payment transactions and cross-border investing

There are situations in which you make use of our international financial services, for instance if you transfer money abroad or if you hold investments abroad through us. In such situations, foreign parties, such as local supervisory authorities, banks, government bodies and investigative authorities, may ask for your personal data, for instance so that they can carry out an investigation. Additional rules governing the use of personal data apply if you purchase investment products from us. For details, see the provisions of Article 11.3 of the Investment Conditions .