location 10 -16 NNOBI ROAD NNEWI, ANAMBRA STATE email pentemicrobank@gmail.com, info@pentecostmfb.com.ng

Privacy Policy

Your Trust & Data Security

Privacy Policy Statement

At Pentecost Microfinance Bank Limited (“PMFB”, “we”, “us”, or “our”), protecting your personal information is our top priority. This Privacy Policy explains how we collect, use, disclose, and safeguard your information when you visit our website (the “Site”) or use our mobile banking application (the “App”). This policy applies to all customers, visitors, and users of our digital platforms. By accessing our website or mobile app, you consent to the data practices described in this policy.

1. Information We Collect

We may collect the following categories of personal and financial information from you when you interact with our website or mobile app:

  • Personal Identification Information: Full name, date of birth, government-issued ID numbers (BVN, NIN, Driver’s License), residential address, email address, phone number, and occupation.
  • Financial Information: Bank account numbers, transaction history, loan repayment records, savings patterns, credit scores, and direct debit authorizations.
  • Mobile App & Device Information: Device ID, IP address, operating system version, mobile network information, device location (with your consent), app usage analytics, crash logs, and push notification tokens.
  • Biometric Data: For secure authentication on our mobile app, we may collect fingerprints or facial recognition data with your explicit consent.
  • Cookies & Tracking Technologies: We use cookies, web beacons, and similar technologies to improve your browsing experience, analyze trends, and personalize content.

2. How We Use Your Information

Pentecost Microfinance Bank uses the information collected for the following legitimate business purposes:

  • To process account opening, loan applications, deposits, withdrawals, and other banking transactions.
  • To verify your identity and prevent fraud, money laundering, or other illegal activities.
  • To provide customer support, respond to inquiries, and resolve disputes.
  • To improve our website, mobile app, and product offerings through analytics and user feedback.
  • To send transactional alerts, account statements, security notifications, and promotional offers (where permitted by law).
  • To comply with regulatory requirements from the Central Bank of Nigeria (CBN), Nigeria Deposit Insurance Corporation (NDIC), and other government agencies.
  • To enable biometric login and multi-factor authentication for enhanced security on the mobile app.

3. Legal Basis for Processing (GDPR & NDPR Compliance)

We process your personal data based on the following legal grounds: (a) performance of a contract (e.g., providing banking services); (b) compliance with legal obligations; (c) your explicit consent (e.g., marketing communications, biometric data); and (d) our legitimate interests (e.g., fraud prevention, IT security). We adhere to the Nigeria Data Protection Regulation (NDPR) and applicable international privacy frameworks.

4. Sharing & Disclosure of Information

We do not sell, rent, or trade your personal information to third parties. However, we may share your data with:

  • Service Providers & Partners: Third-party vendors who assist with IT infrastructure, cloud storage, payment processing, SMS/email delivery, and customer support (under strict confidentiality agreements).
  • Regulatory & Law Enforcement Authorities: When required by law, court order, or regulatory directive from the CBN, NFIU, EFCC, or other government bodies.
  • Correspondent Banks & Financial Institutions: To facilitate fund transfers, cheque clearing, and interbank transactions.
  • Credit Bureaus: For credit assessment and loan underwriting purposes, as permitted by the CBN.
  • With Your Consent: Any other third party you explicitly authorize us to share information with.

5. Mobile App Permissions & Security

Our mobile banking application requires certain permissions to function optimally. These may include:

  • Camera: For cheque deposits, QR code scanning, and biometric facial recognition.
  • Location: To detect fraudulent transactions and provide location-based ATM/branch locator services (optional).
  • Storage: To save transaction receipts and statements on your device.
  • Biometric Hardware: For fingerprint or face unlock authentication.
  • SMS & Contacts: For automatic bill payment verification (only with your permission).

You may disable these permissions in your device settings, but some app features may become limited. We employ industry-standard encryption (SSL/TLS) for all data transmitted between our app/server and end-to-end encryption for sensitive messages.

6. Data Retention

We retain your personal information for as long as your account remains active or as necessary to provide you with banking services. Even after account closure, we may retain certain records for up to 7 years (or longer if required by CBN guidelines, anti-money laundering laws, or legal proceedings). After the retention period, your data will be securely anonymized or deleted.

7. Your Privacy Rights (Data Subject Rights)

Under the NDPR and other applicable laws, you have the following rights regarding your personal data:

  • Right to Access: Request a copy of the personal data we hold about you.
  • Right to Rectification: Correct any inaccurate or incomplete information.
  • Right to Erasure (“Right to be Forgotten”): Request deletion of your data, subject to legal retention obligations.
  • Right to Restrict Processing: Limit how we use your data under certain circumstances.
  • Right to Data Portability: Receive your data in a structured, machine-readable format.
  • Right to Object: Opt-out of marketing communications and certain data processing activities.
  • Right to Withdraw Consent: Withdraw previously given consent for biometric or marketing use.

To exercise any of these rights, please contact our Data Protection Officer (DPO) at dpo@pentecostmfb.com.ng or call 07061565761. We will respond within 30 days.

8. Security Measures

We implement robust technical and organizational measures to protect your data from unauthorized access, alteration, disclosure, or destruction. These include:

  • 256-bit SSL encryption for all online and mobile transactions.
  • Multi-factor authentication (MFA) for account login and sensitive actions.
  • Regular vulnerability assessments, penetration testing, and real-time fraud monitoring.
  • Staff training on data privacy and confidentiality protocols.
  • Secure data centers with 24/7 surveillance and access controls.

Despite our best efforts, no method of transmission over the internet is 100% secure. You are responsible for keeping your login credentials, PINs, and OTPs confidential. Please notify us immediately if you suspect any unauthorized access to your account.

9. Cookies & Tracking Technologies (Website)

Our website uses essential cookies to enable core functionality (e.g., session management, security). We also use analytical cookies (Google Analytics) to understand how visitors interact with our site. You can manage your cookie preferences through your browser settings. Disabling cookies may affect the performance of certain website features.

10. Children’s Privacy

Our website and mobile app are not intended for individuals under the age of 18. We do not knowingly collect personal data from minors. If we discover that we have inadvertently collected information from a minor, we will delete it immediately. A parent or guardian may open a minor’s account, but the minor will not have direct access to our digital platforms.

11. Third-Party Links

Our website and app may contain links to external sites (e.g., partners, CBN, NDIC). We are not responsible for the privacy practices or content of those third-party websites. We encourage you to review their privacy policies before providing any personal information.

12. International Data Transfers

Pentecost Microfinance Bank operates exclusively within Nigeria. All customer data is stored on servers located in Nigeria. We do not transfer personal data outside Nigeria unless required for specific payment processing (e.g., international remittances) and only with appropriate safeguards such as Standard Contractual Clauses (SCCs).

13. Updates to This Privacy Policy

We may revise this Privacy Policy from time to time to reflect changes in technology, legal requirements, or our banking operations. The “Last Updated” date at the top of this page indicates when the policy was last revised. Material changes will be notified via email, SMS, or a prominent notice on our website/mobile app. Continued use of our services after any changes constitutes acceptance of the updated policy.

14. Complaints & Grievance Redressal

If you believe your privacy rights have been violated, please first contact our customer support at customercare@pentecostmfb.com.ng. If you are unsatisfied with our response, you have the right to lodge a complaint with the Nigeria Data Protection Commission (NDPC) or the Central Bank of Nigeria’s Consumer Protection Department.

15. Contact Us

For any questions, concerns, or requests regarding this Privacy Policy or your data, please reach out to:

Data Protection Officer (DPO)
Pentecost Microfinance Bank Limited
10-16 Nnobi Road, Nnewi, Anambra State, Nigeria
Email: dpo@pentecostmfb.com.ng
Phone: 07061565761
Website: www.pentecostmfb.com.ng

By using our website or mobile app, you acknowledge that you have read and understood this Privacy Policy.

For Our Unique Products & Services, Get in touch with us.

Open an Account