Data Protection Policies

SWIFT has enhanced its contractual documentation to improve transparency with respect to the processing of message and traffic data.

SWIFT on data protection

SWIFT has decided to enhance its contractual documentation and to improve transparency with respect to the processing of message and traffic data. In doing so, SWIFT has been assisted by a working group of data protection and compliance experts from European and non-European SWIFT users.

The results from this work are published below.

SWIFT Personal Data Protection Policy

The Personal Data Protection Policy sets out the roles and responsibilities of SWIFT, the SWIFT community, and its customers with regard to the processing of personal data. Such roles and responsibilities were previously governed by the SWIFT General Terms and Conditions and other contractual documents, and are now consolidated in one single policy.

Legal Compliance
Last update: 
16 June 2017

SWIFT Personal Data Protection Policy

Link to SWIFT UHB
HTML iconDownload (1004 bytes)
  • Legal
  • Compliance
EN

SWIFT Data Retrieval Policy

The Data Retrieval Policy sets out SWIFT’s policy on the retrieval, use, and disclosure of traffic and message data. This policy existed already, but has been enhanced to provide additional transparency.

Legal Compliance
Last update: 
16 June 2017

SWIFT Data Retrieval Policy

Link to SWIFT UHB
HTML iconDownload (3.67 KB)
  • Legal
  • Compliance
EN

SWIFT Ad Hoc Clauses

The SWIFT Ad Hoc Clauses replace the SWIFT Safe Harbor Policy and provide an adequate level of protection to transfer messages sent by its EU-zone customers to its Trans-Atlantic zone customers. These clauses specifically cover personal data contained in message data that relate to individuals resident of European Economic Area (“EEA”) Member States or from Switzerland or that are sent by SWIFT customers established in one of the EEA Member States or Switzerland.

Legal
Last update: 
14 October 2016

SWIFT Ad-Hoc Clauses

Ad hoc Clauses authorized by Royal Decree
PDF iconDownload (69.59 KB)
  • Legal
  • Policy
EN

SWIFT KYC Registry Privacy Policy

The KYC Registry Privacy Policy sets out the roles and responsibilities of SWIFT and its customers with regard to the collection and processing of personal data in the context of the SWIFT KYC Registry service.

Legal Compliance
Last update: 
6 April 2018

SWIFT KYC Registry Privacy Policy

Link to SWIFT UHB
HTML iconDownload (1.67 KB)
  • Legal
  • Compliance
EN

SWIFT Domestic Australia Privacy Policy

Legal Compliance
Last update: 
9 May 2017

SWIFT Domestic Australia Privacy Policy

This document sets out the roles and responsibilities of SWIFT and Participants with regard to the processing of...
PDF iconDownload (41.16 KB)
  • Legal
  • Compliance
EN

SWIFT Security Control Policy

SWIFT Security Control Policy sets out SWIFT’ objectives relating to the confidentiality, integrity and availability of SWIFT’s messaging services.

Legal Compliance
Last update: 
1 January 2015

SWIFT Security Control Policy

Policy
PDF iconDownload (21.34 KB)
  • Legal
  • Compliance
EN

Frequently Asked Questions

This document answers the most frequently asked questions from SWIFT customers about SWIFT's compliance with data protection laws.