Purposes of Data use

Managing the accounts, products and services (including any financial instruments) taken out by you or by our business and institutional customers (of whom you are a staff member, shareholder, beneficial owner or customer – for instance, in relation to cash management): 

For Natixis, this means recording and updating information about account holders and the operating features of their accounts, managing data on the monitoring of activities in relation to financial instruments, and keeping accounts more generally (regular statements, extracts and summaries, transaction stops, issuing cheque books, bank details slips and certifications). 
Natixis also processes Data needed to provide you with the products and services you request. This includes the making, administration and performance of contracts, as well as providing assistance and handling your requests in this regard. 


Managing transactions and cash flows 

For Natixis, this means managing Data about account transactions: deposits and withdrawals (cash, cheques, transfers, direct debits, card transactions and other movements of funds), while managing the quality of sales transactions with our customers in relation to our ISO certification. 

This includes trade finance transactions, transaction data exchanged via our portals, transfers and direct debits in euros, electronic money tools and international currency payments more generally, as well as providing assistance and handling your requests in this regard.


Providing virtual content, information and recommendations (for instance in relation to capital markets) 

For Natixis, this means enabling you to have secure online access to information whenever you sign up for a product.

Fulfilling our legal and regulatory obligations

  • In relation to banking and financial matters:
    • Putting security measures in place to prevent fraud, for instance to detect abnormal transactions, meet our obligations in relation to embargoes, and to combat financial crime more generally:

      For Natixis, this means detecting actions that are carried out in relation to anomalous or inconsistent activities or activities that have been indicated as potentially relating to fraud. Such actions may include, for instance, submitting a false payslip or false proof of identity, providing contradictory information, or inconsistencies in relation to the place of a transaction etc. 

      The security measures in place also include managing alerts (which involves making verification checks or requesting explanations or documentary evidence) and drawing up lists of persons duly identified as the perpetrators of acts considered to be external fraud or attempted fraud. 

    • Recording telephone conversations and written messages (electronic and instant messaging) in connection with transactions on the markets:

      Financial markets regulations require Natixis to record all discussions by its traders and bankers, particularly those with customers.

    • Monitoring and reporting on the risks that institutions may run
    • Meeting our obligations to report to, and answer any official request issued by, the competent public or judicial authorities,


  • In relation to the prevention of money laundering and terrorist financing:

    For Natixis, this means detecting atypical behaviour that may constitute money-laundering transactions and to report such behaviour to the regulators where a strong suspicion exists. This includes collecting personal data about managers, shareholders and beneficial owners.

  • In relation to the prevention of tax evasion, including reporting obligations vis-à-vis the authorities:

    The automatic exchange of banking and financial information requires financial institutions to have procedures and a systematic data transmission system for non-resident customers.

  • In relation to market abuse:

    Monitoring transactions by managers in order to detect potential market price manipulation or insider trading.

  • In relation to transparency and the prevention of corruption:

    Natixis may be required to report its lobbying activities and deal with whistleblowing, including as a whistleblower itself.

Ensuring IT security, defending our rights and developing products or services, including

  • Ensuring the security of our IT systems

    Natixis employs authentication mechanisms and cybersecurity measures that involve processing Data in relation to access to its websites or web applications.

  • Protecting our rights

    Natixis may use Data in the context of complaints, disputes, lawsuits, corporate restructuring measures or other merger-related transactions.

  • Managing relations with customers and prospective customers

    Natixis keeps a log of its interactions with customers and potential customers, and records and manages sales transactions and marketing campaigns. Natixis also manages its communication activities (surveys, Invitation to events, electronic greetings cards).

  • Personalising our product and service offering by segmenting our customers and prospective customers, including by aggregating Data for analytical or anonymisation purposes:

    Natixis needs to know its market in order to communicate better with its customers and identify their needs. We aggregate customer Data for reporting and statistical analysis purposes in order to develop our market.

  • Audits and inspections

    Audits are carried out by the General Inspection department of Natixis or BPCE with the aim of managing risk and ensuring the compliance of Natixis operations. This may involve processing customer Data.