The terms defined in this section will have the following meaning when they are used in this Policy:
a) "Personal data" means any information relating to an identified or identifiable natural person (‘data subject’); an identifiable natural person is one who can be identified, directly or indirectly, in particular by reference to an identifier such as a name, an identification number, location data, an online identifier or to one1 or more factors specific to the physical, physiological, genetic, mental, economic, cultural or social identity of that natural person;
b) "Processing of personal data" or "data processing", means any operation or set of operations which is performed on personal data or on sets of personal data, whether or not by automated means, such as collection, recording, organisation, structuring, storage, adaptation or alteration, retrieval, consultation, use, disclosure by transmission, dissemination or otherwise making available, alignment or combination, restriction, erasure or destruction;
c) "GDPR" means the Regulation (EU) 2016/679 of the European Parliament and of the Council of 27 April 2016 on natural persons with regard to the processing of personal data and on the free movement of such data, and repealing Directive 95/46/EC (General Data Protection Regulation);
d) "BT Financial Group"- means the Bank together with the entities controlled by it, such as as, BT Microfinanțare IFN SA ("BT Mic") ,BT Asset Management S.A.I. S.A., ( "BTAM"), BT Leasing Transilvania IFN S.A. ("BTL"), BT Direct IFN S.A. ("BTD"), BT Capital Partners S.S.I.F. S.A. ("BTCP"), The Romanian Entrepreneur's Club Foundation, Clujul are Suflet Foundation and other entities that may join this group in the future;
e) "Controller"means the legal person, who, alone or jointly with others, determines the purposes and means of the processing of personal data;
f) "Data subjects" means any natural person whose personal data is processed;
g) "Recipient" means a natural or legal person, public authority, agency or another body, to which the personal data are disclosed, whether a third party or not;
h) "Third Party" means a natural or legal person, public authority, agency or body other than the Data Subject, Controller, Processor and persons who, under the direct authority of the controller or processor, are authorised to process personal data;
i) "Supervisory authority" means a public independent supervisory authority which is established by a Member State, responsible with the monitoring of GDPR application. In Romania the national supervisory authority for the personal data processing is “ANSPDCP”;
j) "Biometric data" means personal data resulting from specific technical processing relating to the physical, physiological or behavioural characteristics of a natural person, which allow or confirm the unique identification of that natural person, such as facial images or dactyloscopic data;
k)"Data concerning health" means personal data related to the physical or mental health of a natural person, including the provision of health care services, which reveal information about his or her health status;
l) "Signature Sample" represents the handwritten signature of the Customer written on documents used in his relationship with the bank and/or the signature of the Customer captured
by Electronic Device (SignaturePad), made available to the Bank as a signature specimen;
m) “Beneficial owner” according to the provisions of art. 4 paragraph 1 of Law no. 129/2019 on the Prevention of Money Laundering and Terrorism Financing, and the subsequent amends brought to certain normative acts, is considered any natural person who ultimately owns or controls the client and/or the natural person on whose behalf is performed a transaction, an operation or an activity and includes at least the categories of natural persons mentioned in art. 4 paragraph 2 of this normative act;
n)"Politically Exposed Person" according to the provisions of art. 3 paragraph 1 of Law no. 129/2019 on the Prevention of Money Laundering and Terrorism Financing, and the subsequent amends brought to certain normative acts, is considered any natural person who exercises or exercised important public position and includes at least the categories of natural persons mentioned in art. 3, paragraph 2 of the herein document.