National Bank of Greece S.A. (NBG), one of the leading Banks in Greece, registered in Athens, at Aiolou 86, (hereinafter “the Bank”, “we”, “us”, “our”), provides to customers of Payment Service Providers (hereinafter “you”, “your”) the WAIZ application (“the Application” or “WAIZ”), which offers Account Information Services, as described in Law 4537/2018 (incorporation into Greek legislation of Directive (EU) 2015/2366 - PSD II). WAIZ allows you to aggregate all your online bank accounts through one secure app and analyses your account information to help you manage your money simply and more efficiently (“the Services”). The present Terms and Conditions govern the use of the App and the Services.

The Bank is supervised by the Bank of Greece, headquartered in Athens, at Eleftheriou Venizelou 21, GR 10250, licensed by and registered with the Company Registry (GEMI) of the Ministry of Economy and Development under No 237901000.

1.Conditions for using the Service

By installing the App and using our Services, you agree to be bound by these Terms and Conditions of use and our Privacy Statement. You can always find the Terms and Conditions for using the App and our Privacy Statement on our website at https://www.waiz.gr/ or in the App.

Please review the present Terms and Conditions of use carefully before accepting them. You may only use the App if you are over the age of 18. By using the App, you confirm that you are over the age of 18.

The present Terms shall govern the relationship between you and us as of the date you first download WAIZ and register to our Services until you delete your account or termination according to section 9 below.

Should you have any questions, please contact us by email at info@waiz.gr.

2.Welcome on board

To login to the Service, you should install the WAIZ app on a telecommunication or electronic device, i.e. smartphone or tablet (hereinafter the “Device”). To install the App on the Device, you should follow the instructions provided through the App. The App can be installed on one or more Devices.

When you log in for the first time to the Services via the App, you should register to the Services and create an account by entering your email address and your name and set up a password (hereinafter “the Password”). Your email address is verified during the registration process. The email address together with the Password grants you access to the App (alternatively, you may use a four-digit Pin or your Device’s stored biometric data, such as fingerprint or facial recognition data, depending on which functions your Device supports) .

You must keep your Password secret. If you lose your password, you will be able to reset it following the process for PIN recovery through the email address you've entered in the App. You agree and understand that you are responsible for maintaining the confidentiality of this information.

After you first login with the Service, you can login in one of the following ways:

  1. by entering your email address and Password that you set during the registration process;
  2. by entering your four-digit Pin;
  3. by a security code/model generated by using your fingerprint (Touch id) or facial recognition (Face id), whichever you prefer.

 

To login to the Service using Touch ID or Face ID, you must install the App on a Device with the appropriate capabilities (e.g. Touch ID sensor, and capability for verifying the unique 3D facial characteristics via TrueDepth camera) and support the specific function.

Any Touch ID or Face ID stored in your Device will enable access to the Services. If the Touch ID or Face ID of more users of the Device are stored on it, you should not activate the same access option to the Service.

For the avoidance of any doubt, it is expressly agreed that to access the App and activate and use the Service through a security code/model generated by using you Touch ID or Face ID, you must use only your own Touch ID or Face ID.

WAIZ does not record, reproduce or save in any way your Pin, Touch ID or Face ID. The various features of your fingerprint (Touch ID) or facial recognition (Face ID) characteristics are encrypted, cannot leave your Device, are not included in iCloud backups or elsewhere, and are stored only on your Device on which the App is installed.

You shall ensure the secure and effective storage of your Device and your passwords for accessing the Service.

3.At a glance (services)

The App allows you to have a clear view of all the payment accounts specified by you (current and savings) and your cards (credit and prepaid) (the “Payment Accounts” or the “Accounts”) held online in any of the four systemic banks or other Payment Service Providers in Greece (namely: National Bank of Greece, Alpha Bank, Eurobank, Piraeus Bank and N26), with which you have a customer relationship (your “Provider(s)”), along with the details of all transactions which are applied to those accounts (hereinafter “Account Information”), all aggregated in one friendly and easy-to-use environment. The App automatically categorizes all your transactions and grants you access to personalized reports. At the same time, the Services enable you to set goals, challenges and budgeting to monitor your expenses. You can also get notified for different events (e.g. low balance, monthly report available, unexpected transactions…).

The App aims to serve as a tool for you to monitor and manage your finances in the most effective possible way. By all means, the Services are limited to the provision of Account Information Service as described in Law 4537/2018 and do not constitute financial or professional advice.

4.Identification and account information

For the smooth operation of the App and in order for us to provide you with the Services, we will need to retrieve Account Information from the Payment Accounts specified by you. By adding an Account into the App you grant us (and any third parties associated with us) your explicit consent and order to contact the Provider of your choice, on your behalf, to verify your identity, in order to obtain information about you and use the necessary Account Information in accordance with the terms hereof. .

Having obtained your explicit consent and further to the implementation of Strong Customer Authentication (SCA) from the Provider of your choice, Account Information will be retrieved by the latter, in accordance with the applicable legislative and regulatory provisions, in one of the following ways:

  1. a) through a special interface (API) made available by the Provider, by submitting requests to your Provider in order to provide us with the necessary Account Information,
  2. b) through an interface made available by your Provider for authentication and communication with its payment services users (such as internet banking).

Your identification particulars (personalized security credentials) are transmitted fully encrypted, and all the Account Information obtained with your explicit consent is only such as is necessary and essential for the normal and effective use of WAIZ.  All servers for the communication with Providers are configured to use TLS 1.2., 1.1. or 1.0. to encrypt the data in transfer.

WAIZ does not collect or keep sensitive payment details, including your personalized security credentials (passwords to access internet banking), excluding the case where the Bank is the issuer of such credentials. Whenever you need to enter your personalized security credentials to WAIZ, in order for them to be relayed to your Provider for your identification, your bank details are encrypted using asymmetric key mechanism, which uses the RSA algorithm with a x.509v3 certificate. 

Your explicit consent provided to us for the purpose of retrieving your Account Information may be subject to certain restrictions, such as time limits (e.g. of 90 days), in accordance with the currently applicable requirements of your Providers. If your consent provided to us is no longer valid, for instance if any time limit set by your Provider has lapsed, you will need to renew your consent through the App, in order for us to be able to retrieve the necessary Account Information for the provision of the Services.

You acknowledge that, for the purposes of your identification, WAIZ relies on your Provider’s Strong Customer Authentication procedures and bears no responsibility for your identification by the Provider.

You must ensure the information you enter in the App is always accurate and up to date, otherwise the App will not be able to function properly. If at any time we believe that your information is not up-to-date or is inaccurate, we may require you to update this information by submitting the relevant supporting documentation from a reliable or independent source and go through the verification process again.

For the purposes of account aggregation as part of the Services, you grant us (and any third parties cooperating with us) a limited power of attorney to access on your behalf your Account Information in order to retrieve and use your Account Information - in respect of the Payment Accounts that you registered with the App and in accordance with the Privacy Statement - with the full power and authority to do and perform each action required in connection with such activities, as described in the present Terms and Conditions, as you could do in person.

You acknowledge and agree that when we access and retrieve account information from your Providers, we act as your ‘agent’, not as the agent of or on behalf of any of your Providers.

In order to keep the App up to date with your Account Information, WAIZ can access and update your Account Information in the following cases:

  1. a) each time you request the said information, by manually refreshing the App,
  2. b) each time you log in to the App,
  3. c) on a regular basis (up to 4 times within 24 hours as specified by the applicable legislation), by using automated tools.

5.Updates and maintenance

For the proper and safe operation of the App, your Device must be compatible with it and the appropriate software. For the safe and proper provision of the Services or so as to add new functions/features, we may ask you to upgrade your Device or occasionally to modify the list of compatible devices or software.

The App cannot be used on jailbroken/rooted devices. Such devices are vulnerable to malware attacks and viruses, thus posing a risk for, among other things, the safety and security of the Device and the App. Installing and/or using WAIZ on such devices is -- inter alia -- a violation of the terms of this agreement. The Bank shall be in no way liable for any action or task performed on and/or through jailbroken/rooted devices and any related liability shall be exclusively borne by you. The Bank reserves the right to suspend or discontinue the Service or the access to the App, in whole or in part, for reasons relating to security and/or suspicions of non-authorized or fraudulent use of a jailbroken/rooted device. We will not be responsible for any loss caused by use of the App on such a device or by the failure of the App to work properly or at all in that case.

You declare that you know how to operate the Device and the programs required for accessing and using the App, have a valid licence to use the said programs (by complying with the relevant terms), and that the Bank shall not be liable for the suitability and security of the Device and any third-party programs that is required to access and use the App.

You should take every measure necessary to protect your Device, and if stolen or lost or used by a non-authorized person, you should notify us immediately by emailing us at info@waiz.gr. In this case, we are entitled to delete your WAIZ account (including access to your Payment Accounts through the App). We strongly recommend that you also inform your Provider(s) in order to safeguard your Accounts.

The App is available 24/7. If a planned or unscheduled technical maintenance and upgrade is necessary, access to the Services may be interrupted or delayed for a variety of reasons. In such cases we will do our best to restore access to the Services as soon as possible.

The Bank undertakes to make every possible effort to safeguard the security of the App. However, the Bank cannot guarantee that the App is free of any viruses or other malicious code, as with most services that are being provided online.

If you experience any trouble or technical errors while using WAIZ, do not hesitate to contact us through the Support tab in the App's Settings or via e-mail at easy@nbg.gr.

6.Amendment of Terms

The Bank reserves the right, in its judgment and sole discretion, to amend unilaterally at any time these Terms and Conditions of use, following 2-month prior notification of the amendment’s content to the user via e-mail, and the announcement of such amendment through the App or WAIZ website. If following said notification and within the said 2 months you do not notify the Bank in writing via e-mail at info@waiz.gr  of any objection you may have to the revised Terms (and, as a consequence, termination of these Terms) and you continue to use the App and the Services, you shall be deemed to have accepted and to agree to be bound by any changes to the Terms. Any changes that take place as part of upgrading or updating the App or that are required by the applicable legal and regulatory framework do not comprise amendment to the terms hereof and apply immediately upon their announcement through the App or WAIZ website.

7.Your responsibility

You confirm that all information you provide to register with and use the Services, regarding yourself and/or your Accounts entered in WAIZ, are true, accurate, and complete as well as up to date (e.g. when you close a bank account or you change your contact details) and governed by our Privacy Statement.

As long as you use the Services you confirm and guarantee that you are the legal beneficiary of the specified Accounts you enter in WAIZ.

You also confirm that you have the right to use the Services in respect of access to Account Information. You are sole responsible to check that use of the Services does not contradict with your contractual relationship with your Provider(s) and your rights and obligations towards the latter. Therefore, you are requested to take all actions necessary for you to have legal access to the Services.

You acknowledge that we are not responsible for the Account Information accuracy and legality or otherwise. You also acknowledge that the Services are purely informative and reflect the Account Information as retrieved from your Providers and that you and your Provider(s) are exclusively responsible for the way that your Accounts operate.

You must keep your App sign-in credentials secret and notify us immediately in case you know or suspect unauthorised use (e.g. if your Device is stolen).

As long as you use the Services you must not:

 

We reserve the right to assign our rights and obligations under these Terms to another entity of the NBG Group, but this will not affect your rights and obligations. You are not entitled to assign your rights or obligations under these Terms to another person, either in total or partially.

8.Our liability and reservations

You fully understand and unreservedly acknowledge that we are not responsible for any damage incurred to you when using the App and the Services, which is due to any breach, action or omission on your part, or to events beyond our control, or to the need to fulfil our obligations to comply with the legislative and regulatory framework and internal Bank policies and procedures governing the Services.

The information included in or through the Services is made available solely for information purposes and it is not financial or professional advice. You should not rely exclusively on information, content or materials presented on or through the Services in order to take financial management decisions. You use the Services at your own discretion. The Bank, its subsidiaries and/or its consolidated companies, representatives, managers, agents, staff and/or other persons associated with it do not undertake any obligation and do not bear any liability or responsibility in connection with or as the result of any of your investment or other financial management decisions based on the Services. In any event, we recommend you to seek expert advice.

We do not warrant the accuracy, completeness or reliability of the information we retrieve for your Accounts, which is provided to you on an “as available” basis by your Providers.

The quality of the Services provided by WAIZ depends to a large extent on the smooth operation of the interfaces implemented and dedicated by your Providers. We do not warrant the smooth operation of your Providers’ interfaces and do not bear any liability or responsibility in connection with their operation.

9.Duration – Termination

The present agreement is of indefinite term.

The Bank reserves its right to suspend, cancel, refuse access or terminate the use of the Service for objective reasons related to the security of the Service, or if it suspects that the Service is being used without authorization or fraudulently or for reasons related to the certification and verification of your identity, pursuant to the regulatory and legislative framework each time applicable.

In such a case, the Bank shall notify you of such suspension and the reasons thereof by any means deemed appropriate, either prior to suspension, if practical, or immediately after suspension at the latest, unless such notification is precluded for objective security reasons or is prohibited by applicable national or European laws.

If the reasons for suspending use of the Service no longer apply, the Bank will lift the suspension.

We reserve the right to discontinue access to the Service and terminate these Terms with immediate effect, indicatively in the following cases: a) in the event of breach of any of the present Terms, all of which are agreed to be substantial, b) in the event of termination of provision of the Service by the Bank, c) in the event of any breach related to the legislation regarding the prevention and combating of money laundering and the financing of terrorism, d) in the event of breach of the applicable regulatory framework in the context of European and international financial and trade sanctions, e) in the event of any other breach related to the applicable legal and regulatory framework or if so requested by any competent authority, f) if we suspect unauthorized or fraudulent use of the App or breach of security, g) if we believe there is a valid reason to do so etc.

In any case, we reserve the right to discontinue access to the Service and terminate these Terms according to law, upon prior written notice to you via e-mail at least two months prior to the termination.

These Terms continue to apply until terminated by you or us. If for any reason you wish to terminate this Agreement at any time, you may click the option ‘’Delete my Account” on your WAIZ profile and remove the App from your Device or you may send us an e-mail at info@waiz.gr in order to delete your account and your ability to access to the App and the Services.

10.                  Intellectual property

By accepting these Terms of use, you agree that we are granting you a non-exclusive, non-transferable and freely revocable license to download and use the App and the Services for your personal (non-commercial) use in accordance with these Terms. This license will end as soon as you deactivate your WAIZ account or you delete the App or in the event of termination of these Terms under section 9 above.

These Terms of use do not give you any right of ownership over the Services and all their components (all trademarks, copyright, database rights and other intellectual property rights of any nature of the App and the Services, together with the software, databases etc.) which are and remain the exclusive property of the Bank or its licensors. No distribution, reprint or electronic reproduction of any content of the Services in whole or in part for any purpose is permitted without our prior written consent.

11.Personal Data Processing

For the purposes of executing this Agreement and providing the Services, the Bank as Controller collects, maintains and processes your personal data in accordance with the applicable European and national legislative and regulatory framework. You have been informed by the Bank in a clear and intelligible manner about the processing of your data, the purpose of such processing, the recipients of the data and your rights under the current institutional framework, while you undertake to promptly inform the Bank of any change in your personal data. Regarding the collection, holding and processing of your personal data, the terms set out in the Privacy Statement, which has been provided to you when you registered for the Services, shall apply. The Privacy Statement is available on the WAIZ website at https://www.waiz.gr/ and the App.

Please note that your information shared with third-party providers is limited to the essential for the optimal provision or improvement of the Services. We will not sell your information to any third party.

Through the use of strict access controls, monitoring and encryption, we ensure that the information that you provide us cannot be accessed by unauthorised third parties.

12.Complaints – Settlement of Disputes

The Bank shall implement appropriate procedures to promptly and effectively deal with the complaints filed.

If you have any complaint or dispute about the App and the Services, you may send us an email at info@waiz.gr.

The filing of complaints is not subject to a charge.

The Bank shall make every possible effort to respond within a reasonable period of time and, in any case, within the deadline set by the applicable legislative and regulatory framework. If further investigation is required, the Bank will notify you accordingly by sending an interim answer.

Furthermore, for any dispute or contention you can use the special out-of-court redress procedures by contacting alternative dispute resolution bodies such as the Greek Financial Ombudsman, Massalias 1, 106 80 Athens, tel.: 10440 (local call rates)/ +30 210 3376700 (international calls), webpage: www.hobis.gr, Hellenic Consumers’ Ombudsman, Leoforos Alexandras 144, 114 71 Athens, tel: +30 210 6460862, webpage: www.synigoroskatanaloti.gr, or on the Online Dispute Resolution platform (https://webgate.ec.europa.eu/odr) for cases of online agreements. More details on referring a complaint to alternative dispute resolution bodies are available on the Bank’s website, at www.nbg.gr; please also note that you can opt for legal resolution of your dispute.

You and other interested parties, including consumer associations, are entitled to submit complaints to the General Secretariat of Commerce and Consumer Protection of the Ministry of Economy and Development, Plateia Kanigos, 101 81 Athens, call center: +30 210 3893000, webpage: www.gge.gov.gr, regarding alleged infringements by the Bank of the provisions of Articles 38-102 of Law 4537/2018 concerning the transparency of terms and the notification obligations governing the payment transactions and the rights and obligations concerning the provision and use of payment services (except for the provisions included in Article 68(6) and the Articles 94-96 of Law 4537/2018) and the relevant terms of the present agreement.

13.Applicable law – Jurisdiction

These Terms are governed by Greek law. The competent judicial venue for the settlement of any dispute or claim directly or indirectly arising from the present Terms or related hereto, if not resolved amicably, are either the competent courts as defined in the Greek Code of Civil Procedure (such as the ones in your place of residence or in the place of conclusion of the agreement) or the courts of Athens.

14.Miscellaneous

These Terms of use along with our Privacy Statement  constitute the entire agreement between you and us for the provision of Services and supersede all prior understandings, written or oral, with respect to the Services.

If any court or competent authority decides that any of the present Terms is unenforceable or invalid, the remaining Terms will remain in full force and effect.