Everything you need to know about your personal data in business with the bank

The General Data Protection Regulation of the European Union (GDPR) will be implemented from 25th May 2018.


In providing our services we have applied strict rules to keep your personal data protected to the utmost extent. By implementing the new General Data Protection Regulation, we continue to protect and use your personal information with an additional level of security and strict rules of privacy along with a very transparent data processing procedure.

Basic information

  • What is the GDPR?

    What is the GDPR?

    The GDPR (General Data Protection Regulation) refers to the protection of natural persons with regard to the processing of personal data and on the free movement of such data to the effect of better level of protection of the rights and freedoms of natural persons with regard to the processing and movement of such data. The Regulation is applicable in all countries of the European Union.

  • What does the GDPR mean to you?

    What does the GDPR mean to you?

    The GDPR allows you, as an individual, a higher level of the rights and freedoms with regard to the processing and movement of your personal data. Every company that in any way collects your personal data is obligated to provide you with an intelligible and transparent explanation of the purpose for such data collection, the intended use and the storage period of such data.  

Personal data


What kind of personal data do we collect?

- basic personal data 
- socio-demographic data
- employment data
- information on the selected communication channels with RBA, including marketing
- business relationship data concerning you as an RBA client
- credit debt data and payment discipline with other credit institutions


Your Consent for Personal Data Processing and Use


Use the opportunities we offer you!

To all our clients we wish to provide equal access to opportunities and information from which they can benefit.
Most of our clients have decided on that already and have access to all the opportunities. Are you one of them? Check in mojaRBA mobile or Internet banking or at any RBA branch!

By signing the consent on data processing and use, you personally decide whether you wish to agree to your personal data being used for the purpose of specially created individualized offers, as to receiving information on the latest campaigns and more favorable offers. You can give the consent statement through mobile or Internet banking or at any RBA branch, and should you change your mind later on, you can just as easily withdraw your consent. 

Obrada osobnih podataka u OSR sustavu


OSR sustav je sustav obrade i razmjene podataka o klijentima između kreditnih institucija kao korisnika OSR sustava (u daljnjem tekstu: korisnici) posredstvom HROK za potrebe procjene kreditne sposobnosti i upravljanja kreditnim rizikom. Raiffeisen banka, kao jedna od korisnica OSR sustava, obrađuje Vaše osobne podatke u OSR sustavu ako prema RBA imate, ili ste imali, novčanu obavezu (kao što je primjerice kredit ili prekoračenje po računu).
Vaše podatke, uključujući i osobne podatke, obrađujemo u OSR sustavu na način da ćemo razmjenjivati podatke o Vašim novčanim obvezama s drugim sudionicima OSR sustava.
Sve o obradi vaših podataka u OSR sustavu pročitajte na Informacije o obradi osobnih podataka u OSR sustavu.


More information


Personal Data Protection Officer

In case you have any additional questions regarding personal data protection, feel free to contact our Personal Data Protection Officer at the following e-mail address: zastita-osobnih-podataka@rba.hr or by post at the address Raiffeisenbank Austria d.d., Magazinska cesta 69, 10000 Zagreb, Attn.: Personal Data Protection Officer.



For anonymous statistical evaluation and extended security precautions during visits to our website, we use services of the company JENTIS GmbH, Schönbrunner Straße 231, 1120 Vienna ("JENTIS"). For this purpose, data is transmitted to JENTIS, which JENTIS evaluates on our behalf in anonymized form. This means that JENTIS GmbH only processes data that cannot be traced back to an identifiable person. In addition, we use JENTIS to anonymize your personal data before transferring it to a third country, thus protecting your data. You can view the data protection provisions of JENTIS at the following link: https://www.jentis.com/privacy-policy/

By using the company JENTIS GmbH, your personal data is anonymized before a potential transfer to a third country. Google thus only receives information that does not allow any conclusions to be drawn about you.