Clydesdale Bank is a trading name of Clydesdale Bank PLC which is registered in Scotland No: SC001111 and which has its registered office at 30 St Vincent Place, Glasgow, G1 2HL.

Clydesdale Bank PLC is a member of the National Australia Bank Group (the "Group") and is authorised and regulated by the Financial Services Authority. Credit facilities other than regulated mortgages are not regulated by the Financial Services Authority.

The Group includes National Australia Group Europe Limited, each subsidiary or holding company thereof from time to time and each subsidiary from time to time of any such holding company. A complete list is available on request.

In this Privacy Policy, a reference to "we", "us" or "our" is a reference to the Group or a member of the Group, as appropriate.

National Australia Bank Group Websites Privacy and Security Policy

We have developed this policy so that you may feel confident about the privacy and security of your personal information.

Use of Personal Information

Clydesdale Bank will share information about you with other members of the Group. The following sections explain in more detail how and for what purposes the Group will use your personal information.

We currently may hold personal and financial information about you and may obtain or receive such information about you in the future. The information we process about you will be obtained from various sources including:

• Directly from you;
• From your dealings with any member of the Group including from the transactions and operation of your accounts and services; and
• From other organisations including fraud prevention agencies

Such information may also include sensitive personal data, such as information relating to your health, or criminal convictions or proceedings. However we only hold such data where we need to for the purposes of the product or services we provide to you or it is in our normal course of business to do so; for example, insurance products.

We will use your information:

• To operate and administer the products and services we provide to you;
• To assess the suitability of our products and services for you;
• To analyse the operation of your accounts and services and your purchasing preferences;
• To make credit decisions about you which may involve credit scoring;
• To develop, improve and market our products and services generally;
• For the prevention of fraud and money laundering;
• For market and product analysis purposes; and
• For debt recovery purposes.

Confidentiality

• We will treat all your information as confidential and will not give your information to anyone except where:
• We are permitted to do so by law;
• We have a public duty to disclose the information;
• We need to do so to comply with the requirements, codes or recommendations of any of our regulators;
• We have your consent (which is not necessarily required to be in writing);
• It is necessary for the performance of any product or service that we provide to you; or
• We have transferred any of our rights or obligations to another party.

Fraud Prevention Agencies

If false or inaccurate information is provided and fraud is identified, details will be passed to fraud prevention agencies. Law enforcement agencies may access and use this information. We and other organisations may also access and use this information to prevent fraud and money laundering, for example, when:

• Checking details on applications for credit and credit related or other facilities;
• Managing credit and credit related accounts or facilities;
• Recovering debt;
• Checking details on proposals and claims for all types of insurance; or
• Checking details of job applicants and employees.
• We and other organisations may access and use from other countries the information recorded by fraud prevention agencies.

If you would like details of the agencies from which we obtain and record information about you, please write to: Central Refer Unit, 20 Merrion Way, Leeds, LS2 8NZ.

Marketing

We may contact you by post, phone, fax, e-mail, SMS text or other reasonable means to inform you about products and services supplied by ourselves and/or selected third parties that we consider may be of interest to you. We will not pass your information to anyone outside our Group for their own marketing purposes. You can inform us at any time if you do not want to receive marketing information by any one or all of these means.

Email addresses

We respect the privacy of personal email accounts and we store your email addresses just as securely as other personal information. Your details will not be passed to any organisation outside the Group for marketing purposes without your explicit permission.

We may use email in response to enquiries you make about our services or service issues.

Provision of services and transfer of information

From time to time we will engage service providers, agents and subcontractors to provide services. They will have access to, and will process, your information on our behalf to provide such services.

We are a Global Group. We may need to transfer your information abroad to other Group companies, service providers, agents and subcontractors in countries where they may not have data protection laws providing the same level of protection as those in the European Economic Area, such as Australia, New Zealand and the USA. In each of the above circumstances, we will ensure that your information is processed only in accordance with the applicable legislation and under strict obligations of confidentiality.

How we protect your data

When you register details and are logged into our internet banking we use a secure server. Any data you give us when you are logged into the internet banking service, is encrypted using a 'Secure Socket Layer' (SSL) session. SSL is an industry standard and is one of the best ways to ensure Internet messages are not intercepted. You should be aware, however, that some older browsers cannot use SSL. If your browser does not support 128 bit encryption (or higher) you will not be able to log into or use our internet banking service.

Apart from things we do to protect you there are things that you can also do to protect yourself while using our Internet Banking service. For more information regarding security click here.

Our general email enquiry forms are not sent via an encrypted channel and for this reason we ask that you do not include confidential information when using them (such as bank account details).

While we use SSL encryption to protect internet banking user information online, we will use all reasonable endeavours to protect user information off-line. However, any personal details or other information entered onto or submitted through the site or by email to us is entered or transmitted at the user's risk and we shall not be liable for any such information being intercepted or accessed by any third party without our knowledge.

Use of Cookies

Cookies - We may work with third parties to research certain usage and activities on our website on our behalf. No personal information about you is shared except to the extent it is required to be used by a third party or parties for providing such research, and in the course of conducting this research we, and/or these third parties may place a unique "cookie" on your browser.

A cookie is a small file which is sent to your browser and stored on your computer's hard disc and helps us understand and track your use of the site and where it can improve the information and services provided. We use cookies solely to gather information on IP addresses, to analyse trends, administer the site, track users' movements on the site and gather broad demographic information for aggregate use. IP addresses are not linked to other personally identifiable information and will not be used to deliver targeted marketing messages. For information about blocking the use of cookies, please refer to the instructions/help screen on your Internet browser. Please note that you may not be able to use or access certain parts of the site or online services if you block the use of cookies.

Changes - As a result of improvements we make to our services, amendments to laws or regulation or developments in the technology or processes we use, we may change the information we hold about you and/or the way in which or the purposes for which we process such information. Where we require your consent to such change we will notify you of the change. However, unless you inform us otherwise, we will deem your continued receipt of products and services to which the change relates to constitute your consent to the relevant change.

Any changes we may make to out privacy policy in the future will be posted on this page and, where appropriate, notified to you.

Please help us - We wish our service to meet your expectations on all occasions. To do so we need the information we hold about you to be accurate and up to date. Please help us by informing us promptly of any changes to your personal circumstances.

Queries

If you would like any further information on the Data Protection Act and your rights under it, you can also contact The Information Commissioner's Office, Wycliffe House, Water Lane, Wilmslow, Cheshire SK9 5AF or visit www.ico.gov.uk  .

This Privacy Policy supplements, but does not supersede, the terms of (i) the Rules of Use of this website and (ii) any data protection notice that has previously been provided to you by a member of the Group.