Mobile Privacy Practices Statement

Kennebec Savings Bank’s digital banking application (the “App”) allows customers to manage their finances.

The App allows customers to:

  • View balances and transactions,
  • Make transfers,
  • Pay bills,
  • View statements,
  • Deposit checks using a mobile device,
  • Receive alerts, and
  • Manage their Kennebec Savings Bank debit cards.

This Mobile Privacy Practices Statement, in combination with other applicable privacy notices (including the Bank’s Regulatory Financial Privacy Policy at Privacy Notice – Kennebec Savings Bank ) provides information about the Bank’s practices regarding collection, use, and disclosure of the personal information in the App.

Information collected in the App: Personal information may be collected and stored in the App in the ways listed below.

  • Information provided by users through the App, including
    • Identification and contact information, such as name, address, social security number, phone number, and email address;
    • Financial data and transaction information, such as transaction and payment history, account numbers, and card identification, to provide services through the App; and
    • Messages or email addresses and content users send to the Bank.
  • Information collected by third parties.

The Bank’s third-party service providers may collect certain information to provide services to you. Information will only be collected and disclosed to the extent permitted by the Bank’s Regulatory Financial Privacy Policy.

  • Information collected by technology.

The Bank and its service providers may automatically log information about users, their mobile devices, and their interaction over time with the App and the Bank’s other systems, including:

  • Device data, such as operating system type and version, device manufacturer and model, browser type, screen resolution, IP address, unique identifiers, language settings, mobile carrier and network information, and general location information;
  • Online activity data, such as pages or screens viewed, time spent on a page or screen, navigation paths between pages or screens, and access times and durations;
  • Cookies, which are text files websites store on a visitor’s device to uniquely identify the visitor’s browser or to store information in the browser to help navigate between pages efficiently, retain preferences, enable functionality, and to identify activity and patterns;
  • Local storage technologies, like HTML5 and Flash, that provide cookie-equivalent functionality but can store larger amounts of data, including on a user’s device outside of a browser, in connection with specific applications;
  • Web beacons, also known as pixel tags or clear GIFs, used to demonstrate that a webpage or email was accessed or opened, or that certain content was viewed or clicked.
  • Location Information. The App may collect, transmit, and use geolocation information for features, such as fraud detection and card alerts. Users must expressly authorize collection location information through the App, and can choose to authorize continuous background collection or collection only while the App is being used. Users that do not want to provide this information may decline collection of their location information when prompted or adjust the location services settings on their device at any time.

How the information is used

  • General Use. In general, the Bank uses the personal information collected to provide services, respond to requests, and improve user experience. and to help serve you better. Personal information may be used in a variety of ways, such as to:
    • Facilitate the creation, security and maintenance of accounts;
    • Identify and validate users;
    • Provide and improve the App and the Bank’s online services; and
    • Send notifications, such as security, support, and maintenance advisories, to users.
  • Compliance and data protection. Information may be used to:
    • Comply with applicable law and legal process, such as to respond to subpoenas or requests from government authorities;
    • Protect rights, privacy, safety, or property (including by making and defending legal claims) of the Bank and its users and customers;
    • Audit the Bank’s internal processes for compliance with legal and contractual requirements, and for adherence to internal policies and standards; and
    • Prevent, identify, investigate, and deter fraudulent, harmful, unauthorized, unethical, or illegal activity, including cyberattacks and identity theft.

Disclosure of Information

This Mobile Privacy Practices Statement applies only to the specific items it describes and does not otherwise apply to the processing of information by the Bank or third parties with whom the Bank shares information. The Bank may share personal information with its third-party service providers to provide the App and for the purposes described in this Mobile Privacy Practices Statement, such as provision of services, quality assurance testing, account creation and security, and performance optimization. The App may also disclose any personal information collected for the compliance and data protection purposes described above.

Data Security

The Bank maintains reasonable physical, electronic, and policy safeguards to protect information in its custody and control against theft, loss, and unauthorized access, use, modification, and disclosure. 

Mobile Privacy Practices Updates

The Bank may update this Mobile Privacy Practices Statement from time to time.  Users of the App will be notified when there are changes.  Continued use of the App following notice of any change indicates acknowledgement of and agreement to such change.