BisB Open Banking Terms and Conditions

BisB Open Banking Terms and Conditions

Definitions

  • “Account Information Services” means online services allowing a User to access and view the consolidated information in relation to different payment accounts owned by the User. The Service also allows the User to view the consolidated Account information relating to the accounts such as Account number, Account balance, transaction history and nature and/ or any other data related to the Account. By registering with the electronic application of this service upon agreeing to the terms and conditions thereof.
  • “Payment Initiation Services” means services that assist the User to make a Payment out of the Account;
  • (“Bank”) means Bahrain Islamic Bank b.s.c (BisB)
  • “User” means the Bank’s customer that is successfully enrolled in the Service and who operates the account;
  • “Third Party Provider (TPP)” means an independent provider of services that is licensed and authorized to offer Account Information Services or Payment Initiation Services to the User; which the User acknowledges its entitlement to receive his information from the bank for the purposes of activating the Service.
  • “Tarabut” means Tarabut Gateway W.L.L in its capacity as a TPP
  • “ Services” refers to the Open Banking services which is a secure way of giving Third Party Providers access to customer’s own financial information which shall be transmitted in an encrypted format upon customer’s request and consent through related banks apps or portals.
  • “The Law” or “PDPL” means Law No.30 of 2018 issuing the Data Protection Law
  • “Consent”   means the User’s approval to allow BisB to directly share the User’s financial data with the TPP, at the User’s own risk.
  • “Agent”  means  any agent which may be appointed by  BisB to carry out any duties in connection with providing the Service and may delegate to such agents the authority to perform any activity/function, which BisB offers.

General Terms

  • The User: The User agrees, accepts and acknowledges:
    • That these Open Banking Terms and Conditions are deemed an integral part of BisB’s Digital and Mobile Banking Terms and Conditions.
    • The User acknowledges the TPP’s full responsibility for any misuse of information, fault, breach, disclosure of User’s privacy data, disruption of services, while applying the Services.
  • The Bank:
    • Subject to clause 2.1.2., the Bank shall be responsible to ensure that the TPP is licensed and authorized by the CBB to undertake the Services enlisted to it.
    • Notwithstanding the above , the Bank shall not be responsible for any failure, delay or non-performance of the Services beyond the control of the Bank or its agents or that of the TPP.

Third Party Providers

  • If the User or the Bank chooses to use a TPP in respect of Account Information Services or Payment Initiation Services then these terms and conditions will continue to apply.
  • The Bank will give the TPP access to the information in respect of the Account upon obtaining the approval of the User, and the User will be able to make the same payments through the TPP that Users would be able to make through other payment channels, as applicable.
  • Following the User's consent to the provision of its data to the TPP, the TPP shall have access to the User's Account information at the User’s own risk, for the period and purposes  specified by the User
  • The Account information will include details about who the User makes payments to (i.e. Beneficiaries) and who they receive payments from. Such Account information may contain some sensitive personal information (e.g. subscriptions or memberships) paid directly from the Account.
  • The User may be requested to provide certain authentication details to authorize the TPP to access his account, as instructed by the TPP and at the User’s own risk.
  • The Bank may refuse access to a TPP that is appointed by the User in respect of an Account if the Bank is concerned that the TPP is unauthorized or acting fraudulently or if the Bank becomes aware that the TPP is no longer authorized or regulated by an appropriate authority. The Bank will advise the User of such refusal
  • The Bank also reserves its right- upon obtaining CBB’s approval- to terminate connectivity with TPPs appointed by the Bank,  if there is any doubt that the TPP is no longer authorized by the Central Bank of Bahrain,  or is in violation of its’ regulations pertaining to the Service.  
  • A User must check the information given by a TPP to verify whether it is authorized to undertake the Service enlisted to it . If a User gives their Security Details to an unauthorised third party, the Bank will assume it is the User authorising the Bank to give access to information about the Account and the User will be responsible for any payments made as a result. If the Bank is aware that an unauthorised third party is using a User's Security Details, the Bank will block access to the Account. If there is any suspicion on the part of a User that a payment made through a TPP was unauthorised or incorrect then the User must inform the Bank of such in writing, as soon as possible; otherwise the Bank shall not be liable for such payment.
  • A User may revoke the access of a TPP to their Account by following the procedures of the TPP, via the Service or by a branch of the Bank. Where the User informs the Bank that the User wishes to withdraw consent to a TPP to access the Account, then the Bank will comply with such request to revoke access but will not act as a revocation of consent to a payment that has been debited from the Account or to information that has already been provided to a TPP in response to a confirmation of funds request or for Account Information Services.
  • Any disputes arising from/relating to the Services shall be resolved through the dispute resolution mechanism agreed upon between the Bank and the TPP.  Should such mechanism fail to be fruitful, the parties may refer such disputes to the CBB in its’ capacity as the supervisory authorizing with regards to the Services.
  • The security of the Smart Device remains the absolute responsibility of the User and the Bank accepts no liability for the security of the Smart Device.
  • For the avoidance of doubt, all parties are requested to adhere to the PDPL provisions when applying the Service.