This website (the “website”) is operated by BANCA COMERCIALĂ ROMÂNĂ S.A. (“BCR” or the “Controller”). In this Policy, BCR may be referred to as “we”, “us” or “our”.

1.     The Object of this Privacy Policy:

This Privacy Policy is intended to inform you of:

(i) the processing activities of your personal data carried out by BCR, as Controller and it applies in the performance of its activities and the fulfillment of its scope of business;

(ii) data security and confidentiality of the processing of personal data

BCR processes the personal data in accordance with the provisions of the General Data Protection Regulation no. 679/2016 (“GDPR”) as well as with the applicable legislation in the personal data protection field.

Our Privacy Policy may be modified and BCR will publish on this page an updated version of the Policy. By regularly consulting this website, you may ensure that you are permanently aware of the processing activities undertaken by BCR.

The BCR website may include links to other websites which are managed by other legal entities / legal persons who are not related to BCR’s activity and with respect to which BCR has no responsibility. Moreover, we may offer links to other websites operated by companies affiliated to BCR, which apply separate privacy policies. If you access these websites through our website, you should consult the privacy policies of these websites in order to understand how they collect, use and disclose your information.

Below, you will find details about the purposes and grounds for the processing of your personal data depending on your capacity (in this respect, please see section 2 below). Moreover, you may also find information about the categories of data processed, the processing for which we need your consent, the decision making processes and profiling we carry out, the categories of recipients and the states to which your data is transferred, the duration of the processing, the use of cookies, the applicable data security norms, as well as the rights you benefit from. These latter sections are common for all data processing, irrespective of your capacity.

Depending on the products offered, the modalities in which these are contracted, as well as on the types of contractual or extracontractual relations you may have with us, BCR may provide the data subjects with notices presenting the particularities of the processing activities carried out.

2.     How we process the data depending on your capacity and for which purposes

Depending on your capacity, BCR will process your personal data for different purposes and grounds as follows:


If you have any suggestions concerning this Privacy Policy, we encourage you to send these suggestions to: