Cyber Security and Data Privacy

The Board of Directors has approved relevant strategies and policies to maintain and promote data security, namely Information Technology and Security Policy and IT Risk Management Policy, accounting for data security of customers, employees and all other stakeholders, the Bank’s system security and the ever-evolving behavior of financial service users.

KBank has developed a roadmap for a cybersecurity risk control system to achieve our objectives. The plan focuses on risk control in terms of prevention, detection, and response, covering all business processes and critical systems of the Bank. It also includes measures to cope with complaints or loss incidents related to cyber threats. This will help to ensure the stability of the Bank’s financial IT system and the Thai financial landscape, for now and in the future.

KBank has strictly complied with the Personal Data Protection Act, B.E. 2562 (2019). In addition, we conducted a test of a plan to cope with personal data breaches while reporting incidents to relevant public agencies so that they could apply the cases and the results for improvement of relevant processes for enhanced efficiency. We have communicated these operational guidelines to employees at all levels on a continual basis to ensure their understanding and awareness of personal data protection. Moreover, we also published communications on the Personal Data Protection Act for our customers via KBank’s social media channels.

Document
Personal Data Protection Policy Notice
Personal Data Protection for Shareholders’ Meeting
Personal Data Protection Policy Notice of Applicants and Personnel