Luxembourg legal information

Investor Protection

Staying abreast of legal developments and offer you adequate investor protection is one of our key preoccupations.

MiFID II

Providing to you a suitable and reliable service is always the focus of our concerns and, for this reason, we would like to inform you about the impact that the new EU Directive 2014/65 (“MiFID II”) has on our banking relationship.

The aim of MiFID II is to enhance your protection, when investing in financial instruments, through four major pillars, namely:

• reinforcing investor protection
• increasing transparency to investors
• reinforcing corporate governance and internal controls
• enhancing financial markets structure.

From a practical perspective, applying MiFID II modifies the way you interact with our Bank when it comes to financial investments. The increased level of information, protection and transparency introduced by this new regulation result in different new investment processes and reporting, based on the kind of services you require to receive from our Bank.

More specifically:

If you originate your own investment decisions, each time you initiate an investment you are provided with:

• a detailed information about the product and its embedded risks (KID – “Key Information Document”), if it is a structured product, a derivative or an investment fund
• a pre-trade warning about the appropriateness of the product, if it is considered as complex and not in line with your knowledge and experience of financial products
• the above mentioned information allow you to confirm or cancel your investment decision with an appropriate level of risk knowledge
• the Bank will execute your investment instructions only after your validation
• in case of investments in products with a high level of risk (leveraged financial instruments or other contingent liability transactions), you are also be informed if their value decreases by more than 10% (and any additional multiple of 10%).

If you enter into an Advisory Mandate, each time our Bank provides you with a recommendation (buy, sell or hold):

• you receive a pre-trade report about the suitability of the recommendation in respect to your risk profile and investment strategy
• this report allows you to confirm or not the execution of the recommendation with an appropriate knowledge about the effects that the recommendation will have on your entire portfolio
• the Bank proceeds with the execution of the proposed transaction if any only after your validation.

In case you enter into a Discretionary Management Mandate, you are periodically provided with:

• a suitability assessment of your portfolio in respect to your risk profile and investment strategy as well as a comparison with relevant benchmarks
• a formal notification in case the total value of your portfolio decreases by more than 10% (and any additional multiple of 10%).

The investment process under the MiFID II regime has become for the whole financial industry more complex than before. Our Bank has adopted as required its investment process in order to ensure that your investments are in line with your risk profile and your investment strategy.

In the framework of MiFID II, our Bank opted for acting as “Non Independent Advisor”, which means that we may provide advisory services on financial products issued or provided by entities which have close links with our Bank.

Our Bank is committed to observe the most stringent standards of transparency and information created by this new Directive. A first effect will be the production of an annual report detailing all costs and charges linked to the investments services acquired from the Bank, the investment products themselves and potential third party payments. Moreover, the Bank will publish annually a list of the five execution venues most used when executing client orders, as well as information on the quality of the execution.

Implementing MiFID II may lead to some amendments to our current contractual documentation and to the related charges. Should this be the case, you will be shortly contacted by your Client Relationship Officer.

Should you need further information about MiFID II and its implementation, please do not hesitate to contact your Client Relationship Officer.

EMIR

In application of Article 11(11) of the Regulation (EU) 648/2012 and Article 20 of the Commission Delegated Regulation (EU) N° 149/2013, EFG Bank (Luxembourg) S.A. is publishing the list of relationships where an Intragroup exemption from the bilateral exchange of margins has been granted by the relevant Luxembourgish regulator CSSF.

PSD

The Payment Services Directive (PSD) sets legal rules for providing effective and non-discriminatory access to payment systems for all payment services users. Key objectives of the PSD are the harmonisation of payment services in order to achieve a single market in the European Economic Area (EEA), the increase in transparency and security for clients.

For any further question relating to this information, please do not hesitate to contact your Client Relationship Officer.

KIID

In order to enable all types of investors to take informed investment decisions and to ensure comparability between UCITS of each EU Member State, the UCITS IV Directive requires banks to make the "Key Investor Information Document (KIID)" available to investors. This document, which includes appropriate information about the essential characteristics of the UCITS in a non-technical and comprehensible style, replaces the Simplified Prospectus from July 1, 2012 on.

Clients of EFG Bank (Luxembourg) S.A. may find the latest version of the KIID pertaining to their personal investment under www.finesti.com or under the below websites of the various management companies, for example by entering the ISIN number of their investment.

KIID weblinks

Nothing contained on this page should be considered as an offer, an invitation to offer or a recommendation to enter into any transaction or to invest into any UCITS fund or any other financial instrument in any jurisdiction. No representation, warranty or undertaking, express or implied, is given as to the accuracy or completeness of the information contained in the KIIDs by EFG Bank (Luxembourg) S.A. or its personnel and no liability is accepted by such persons for the accuracy of any such information.

For any further question relating to this information, please do not hesitate to contact your Client Relationship Officer.

PSD2: Open Banking

PSD2 & Third Party Providers API Portal

Open Banking is the result of a regulation introduced by the European Banking Authority . It defines a platform to facilitate more competition and innovation. It will enable private and business clients to share their data securely with banks and third party providers, allowing them to compare products, initiate payments and request account information. The data is shared via Application Programming Interfaces.

Third Party Provider Portals

EFG Bank (Luxembourg) S.A. , as part of this Payment Services Directive, has activated a testing facility available for authorised Third Party Providers to test API access since 14 March 2019.

If you are an authorised Third Party Provider by the Commission de Surveillance du Secteur Financier (CSSF), please use following link to get access to this portal or to obtain additional information.

Statistics detailing the performance and availability of the different interfaces accessible to our clients can be found in the section ‘PSD2: Open Banking – Statistics’ here below.

PSD2: Open Banking - Statistics

You will find here below the statistics describing the performance and availability of the different interfaces currently accessible to our customers.

Please consider the following abbreviations when going through the different statistics reports:

• AIS – Account information service
• AISP – Account information service provider
• CBPII – Card-based payment instrument issuer
• PIS – Payment initiation service
• PISP – Payment initiation service provider

These statistics are updated on a quarterly basis as per Article 32 (4) of Commission Delegated Regulation (EU) 2018/389

The detailed reports displaying these performance and availability indicators on a daily basis can be downloaded here (PSD2 and eBanking/mobile banking)

Recording of telephone conversations

With effect from June 7, 2012, a voice recording system has been implemented on fixed telephone lines of EFG Bank (Luxembourg) S.A.

The intended purpose of the system is to provide both counterparts with additional legal security with regard to negotiations, instructions or transactions. Recordings shall help to avoid and/or clarify misunderstandings or serve as a proof in case of litigation. As required by the Luxembourg personal data protection rules, the system and its implementation have been duly authorized by the relevant local authority, the CNPD (Commission Nationale pour la Protection des Données).

Following EFG Bank (Luxembourg) S.A.'s retention policy, the recorded data will be destroyed after an archival storage of 3 years.

Disclaimer

No Offer or Advice

The information contained in the web site is provided for information purposes only and should in no event be construed as a solicitation or offer, as advice or as a recommendation to buy, sell or engage in any transaction whatsoever.

The information included on the web site does not constitute a prospectus within the meaning of Art. 652a and/or Art. 1156 of the Swiss Code of Obligations or Art. 32 ff. of the Swiss Listing Rules.

The information on the web site constitutes in no event a solicitation or offer, an advice or a recommendation to buy, sell or engage in any jurisdiction where such offer or sale would be prohibited. None of the services, investments or mutual funds referred to in the site is available, and prospectuses in respect of them will not be distributed, to persons resident in any state or territory where such distribution would be contradictory to local law or regulation.

Suitability

Prior to making any investment decision, the investor should fully understand the economic risks and merits, as well as the legal, tax and accounting characteristics and consequences of the transaction, and make his own determination that the investment is consistent with his objectives and that he is able to assume the risk.

Prior to entering into any transaction, investors are advised to engage their own legal, tax and accounting professionals where they deem necessary. Any decisions taken with regard to investments are based exclusively on the assessment of the investor.

Returns/Performance/Liquidity

Potential investors should note that investments can involve significant risks and the value of an investment may go down as well as up.

No assurance can be given that the investment objective of any product will be achieved or that substantial losses will not be suffered.

There is no guarantee of trading performance and past or projected performance is not necessarily a guide to future results.

Liability

The information and data contained in this web site have been obtained from sources believed to be reliable, but they are not guaranteed. All expressions of opinion are subject to change without notice and are not intended to be a guarantee of future events. Neither accuracy nor completeness is warranted and any liability, including incidental or consequential damages, arising from errors or omissions in this web site are expressly disclaimed.

Data privacy

EFG notification to clients and prospective clients

1. Introduction

EFG Entities are committed to protect your Personal Data by complying with bank-client confidentiality as well as data protection laws and regulations.

This Privacy Notice shall provide current and potential clients of EFG with an overview of how we process your Personal Data.

In this Privacy Notice “we” refers (as applicable) to any EFG entity belonging to the EFG Group, which must comply with the data protection legislation (“EFG Entities”).

This Privacy Notice applies to all clients and prospective clients of EFG Entities (“you”), who are subject to the provisions of any applicable data protection legislation. This Privacy Notice covers Personal Data that is held electronically and also applies to paper-based filling systems.

(a) Explanation of terms used in this Privacy Notice

Personal Data means information about an individual from which that person can be identified. It does not include data where the identity has been removed (anonymous data).

Special Category Personal Data means information revealing racial or ethnic origin, political opinions, religious or similar beliefs, trade union membership, physical or mental health conditions, sexual life, sexual orientation, biometric or genetic data.

EFG Group means the group of companies composed of EFG International AG and its affiliates (where an “affiliate” of, or a person “affiliated” with, a person is a person that directly, or indirectly through one or more intermediaries, controls, or is controlled by, or is under common control with, the person specified and “control,” including the terms “controlling,” “controlled by” and “under common control with,” means the possession, direct or indirect, of the power to direct or cause the direction of the management and policies of a person, whether through the ownership of voting shares, by contract, or otherwise).

2. Information and Data Security

It is our policy to protect your right to privacy. We will take all reasonable steps to ensure that adequate technical and operational security measures, confidentiality obligations and compliance procedures are in place to prevent inappropriate access to, disclosure, alteration or deletion of, Personal Data.

In addition, we limit access to your Personal Data to those employees; agents and contractors who have a business need to know. Our agents and contractors will only process your Personal Data on our instructions and they are subject to a duty of confidentiality.

We have put in place procedures to deal with any suspected data security breach and will notify you and any applicable regulator of a suspected breach where we are legally required to do so.

3. Types of Personal Data collected

In the course of providing services to you, we may process Personal Data and Special Category Personal Data. This typically includes the following information relating to you:

(a) Information received from you, including:

• Personal contract details such as name, title, addressed, telephone numbers and personal email addresses.
• Date of birth and place of birth.
• Gender.
• Marital status, dependents (name and age) and relations.
• Copies of identification documents, such as passports and driving licenses.
• National Insurance number, social security number or other national/ tax identifier.
• Nationality, tax residence and country of residence.
• Employment details, income and source of wealth.
• Details of investments and assets owned and liabilities.
• Knowledge of and experience in investment matters.
• Personal details of any agent or attorney.

(b) Information received from third parties, including:

• Credit references.
• Publicly available information on business and personal associates and assets owned.
• Other information from third-party sources, such as wealth screening services, fraud prevention agencies, intermediaries.

(c) Information specific to our services, including:

• Account numbers.
• Balances.
• Investment holdings.
• Transaction data.
• Records of phone calls.
• Reports and statements.
• Codewords.

(d) Special Category Personal Data

In some cases (where permitted by law), special categories of personal data, such as your political opinions or affiliations, health information, racial or ethnic origin, religious or philosophical beliefs, and, to the extent legally possible, information relating to criminal convictions or offences.

(e) Other

If relevant to the services we provide to you, information about your additional card holders or account holders, business partners (including other shareholders or beneficial owners), dependents or family members, representatives, and agents. Before providing us with this information, you should provide a copy of this notice to those individuals.

4. How we collect your Personal Data

We collect your Personal Data:

• when you seek, or are provided with, information on our services;
• when you apply for our services; and/ or
• throughout your relationship with us.

5. Sources of Personal Data

We collect your Personal Data:

• directly from you, e.g. in application forms and through information provided during the onboarding process, including background and reference checks;
• when it is provided to us by a third party, e.g. credit reference agencies, providers of enhanced due diligence reports and financial intermediaries; and
• when information is created as a result of generally providing services to you.

6. How we use Personal Data

We are a data controller which means that we are responsible for deciding how we hold and use Personal Data about you. We may use your Personal Data before, during and after our relationship ends with you.

(a) Legal basis for using your Personal Data

We will only use your Personal Data when the law allows us to. Most commonly and depending on the situation in which we will use your Personal Data (see paragraph b below), we will use your Personal Data in the following circumstances:

• Where we need to perform the contract we have entered into with you or in order to take steps at your request prior to entering into any such contract;
• Where we need to comply with a legal obligation; and
• Where it is necessary for our legitimate interests (or those or a third party) and your interests and fundamental rights do not override those interests.

We may also use your Personal Data in the following situations, which are likely to be rare:

• Where we need to protect your interests (or someone else’s interests);
• Where it is needed in the public interest; and
• Where you have given your consent.

(b) Situations in which we will use your Personal Data

The situations in which we will process your Personal Data are listed below.

• To confirm and verify your identity and credit status in relation to your application or account and, where applicable, conduct an appropriateness assessment.
• To open, administer and operate your account and manage our relationship with you and to provide products or services to you (including carrying out or facilitating any transactions).
• To monitor and analyze the contract for your accounts and relationship with us, to ensure compliance with our internal policies and/ or procedures and to be able to monitor risks and report them.
• To carry out business, operational and administrative activities, including record keeping and audits.
• To assess any credit limit or other credit decision (as well as the interest rate, fees and other changers to be applied to your account).
• To carry out statistical and other analysis (including behavioral analysis).
• To comply with any applicable laws and regulations and /or any voluntary code or industry best practice we reasonably decide to adopt.
• To comply with the request or requirement of any court of any relevant jurisdiction or any relevant tribunal, mediator, arbitrator, ombudsman, taxation authority or regulatory or governmental authority.
• To carry out the detection, investigation and prevention of fraud, tax evasion, money laundering, bribery, corruption, terrorist financing and other crime or malpractice and oversee and report on such detection, investigation and prevention activities.
• For use in connection with any legal proceedings or regulatory action (including prospective legal proceedings/ regulatory action) and for obtaining legal advice or for establishing, exercising or defending legal rights.
• To give you information and marketing (by post, telephone, email or other medium using the contract details you have given us) about events, products and services offered by us which we believe may be of interest to you.

(c) If you fail to provide Personal Data

If you fail to provide certain information when requested, we may not be able to enter into a contract with you/ perform the contract we have entered into with you, or we may be prevented from complying with our legal obligations (such as to complete our “know your client” checks). Please note that EFG may still process any available Personal Data.

7. Recipients of your Personal Data

We (and those parties to whom Personal Data is disclosed) may disclose Personal Data when permitted by law or with your prior consent, in the situations described above:

• To any other companies which are at the time of disclosure in the EFG Group;
• To third parties who provide services to us or that act as our agents (or prospective third party service providers or prospective agents). Such service providers and/ or agents may also disclose such information to their service providers or agents. We, or the relevant member of the EFG Group, will take all reasonable steps to ensure that the service provider or agent is subject to appropriate data processing requirements and that they impose such requirements on any of their service providers or agents;
• To third parties in connection with a reorganization (including investment), amalgamation, merger or transfer or sale of all or part of our business, including to any insurers and professional advisors, and any third parties to whom we assign, transfer or charge our interest in any financial product or service provided to you;
• To any court of any relevant jurisdiction or any relevant tribunal, mediator, arbitrator, ombudsman, taxation authority or regulatory or governmental authority;
• To public authorities, regulators or governmental bodies, when required by law or regulation.
• To other financial institutions or organizations, payment recipients, clearing houses, clearing and settlement systems, stock exchanges, credit card associations etc, as the case might be;
• To any guarantor, where your account is backed by a guarantee;
• To our agents, auditors, service providers, and professional advisors (and those agents, auditors, service providers and professional advisors of other companies in the EFG Group) to enable them to process the information in the situations described above as a data processor on behalf of us and/ or as a data controller and to enable them to perform their obligations;
• To insurers and information providers; or
• Otherwise if you consent to such disclosure.

8. Overseas transfers

The Recipients referred to in section 7 above can be located outside of Luxembourg and the European Economic Area.  In those cases, except where the relevant country has been determined to provide an adequate level of protection, we require such recipients to comply with appropriate measures designed to protect personal data. 

9. Retention of Personal Data

We will retain Personal Data for as long as necessary to fulfill the purpose for which it was collected or to comply with legal, regulatory, accounting, reporting or internal policy requirements. To determine the appropriate retention period for Personal Data, we consider the applicable legal requirements, as well as the amount, nature, and sensitivity of the Personal Data, the potential risk of harm from unauthorized use or disclosure of your Personal Data, the purposes for which we process your Personal Data and whether we can achieve those purposes through other means.

Further information on the retention periods of Personal Data can be requested from your Private Banker and/ or the Data Protection Officer/ the Privacy Officer of the EFG Entity that supports you.

10. Your rights and duties

(a) You duty to inform us of changes

It is important that the Personal Data we hold about you is accurate and current. Please keep us informed if you Personal Data changes during your relationship with us.

(b) Your rights in connection with Personal Data

Under certain circumstances, and subject to applicable law, you have the right to:

• Request access to your Persona Data (commonly known as a “data subject access request”). This enables you to receive a copy of the Personal Data we hold about you and to check that we are lawfully processing it.
• Request correction of the Personal Data that we hold about you. This enables you to have any incomplete or inaccurate information we hold about you corrected.
• Request erasure of your Personal Data. This enables you to ask us to delete or remove Personal Data where there is no good reason for us continuing to process it. You also have the right to ask us to delete or remove your Personal Data where you have exercised your right to object to processing (see below).
• Object to processing of your Personal Data where we are relying on a legitimate interest (or those of a third party) and there is something about your particular situation which makes you want to object to processing on this ground. You also have the right to object where we are processing your Personal Data for direct marketing purposes by writing to your Private Banker or using any opt-out facility specified by us in the relevant marketing communication.
• Request the restriction of processing of your Personal Data. This enables you to ask us to suspend the processing of Personal Data about you, for example if you want us to establish its accuracy or the reason for processing it.
• Request the transfer of your Personal Data to another party (also known as “data portability”).
• Where we process your personal data on the basis of your consent, withdraw that consent at any time.  Please also note that the withdrawal of consent shall not affect the lawfulness of processing based on consent before its withdrawal.
• In certain circumstances, request not to be subject to automated decision-making, including profiling.

If you want to exercise your rights, as per above, please contact your Private Banker and/ or contact the Data Protection Officer/ the Privacy Officer of the EFG Entity that supports you by sending a letter.
The exercise of some of these rights may result in an EFG Entity no longer being able to provide a product or service to you.

Finally, you have the right to lodge a complaint with a supervisory authority.

(c) No fee usually required

You will not have to pay a fee to access your Personal Data (or to exercise any of the other rights). However, we may charge a reasonable fee if your request for access is clearly unfounded or excessive. Alternatively, we may refuse to comply with the request in such circumstances.

(d) What we may need from you

We may need to request specific information from you to help us confirm your identity and ensure your right to access the information (or to exercise any of your other rights). This is another appropriate security measure to ensure that Personal Data is not disclosed to any person who has no right to receive it.

(e) Queries relating to the processing of your Personal Data

If you have a query regarding the processing of your Personal Data please contact your Private Banker and/ or the Data Protection Officer/ the Privacy Officer of the EFG Entity that supports you.

11. Changes to this Privacy Notice

We reserve the right to update this Privacy Notice at any time, and we will notify you either in writing or by updating this Privacy Notice on our website at: https://lu.efgbank.com  . We may also notify you in other ways from time to time about the processing of your Personal Data.

Last update about data privacy

30/06/2021

Dear Customer,

Aimed at always offering the best services to its clients, EFG Bank (Luxembourg) S.A. (hereafter “the Bank”) has decided to centralize part of its infrastructure at its headquarter based in Switzerland. In accordance with article 45 of regulation (EU) 2016/679, known as GDPR, and further to the decision whereby the European Commission has recognised Switzerland as providing an adequate level of data protection as well as subsequent validation by the Luxembourgish supervisory authority of the financial sector (the ‘CSSF’), the Bank’s clients data will be stored at the headquarter with a high level of security and data segregation, including in full compliance with banking secrecy rules.

Further details on the outsourcing of this activity to our headquarter in Switzerland are available in the General Terms and Conditions governing the business relationship between the Bank and its customers.