Compliance

1. Anti-Money Laundering/Counter Financing of Terrorism (AML/CFT)
It is the policy of Maybank Group to take all reasonable and appropriate steps to prevent persons engaged in money laundering and terrorism financing from utilising Maybank Group products and services. Maybank Group is at the forefront of the Government and Bank Negara Malaysia's continuous initiatives and efforts in the prevention of the use of the banking system for illicit, laundering and terrorism financing activities. The Group demonstrates its full commitment and support to high standards of compliance with the Anti-Money Laundering/Counter Financing of Terrorism (AML/CFT) requirements by establishing robust and comprehensive policy, procedures, processes and systems for the prevention and detection of money laundering and terrorist financing activities.

2. Financial Crime Compliance Questionnaire
The Financial Crime Compliance questionnaire provides an overview of Maybank Group's Financial Crime Compliance programme, which includes its policies and practices on:

• Anti-Money Laundering,
• Countering Financing of Terrorism,
• Sanctions,
• Anti-Bribery and Corruption,

as well as its due diligence requirements associated with the provision of banking and other financial services.

For Maybank Group's Wolfsberg Financial Crime Compliance questionnaire, please click here.

3. Maybank Group Global USA PATRIOT Act Certification
The USA PATRIOT Act and final rules issued by the U.S. Department of Treasury require a U.S. Financial Institution to obtain the necessary due diligence information from any foreign bank that maintains a correspondent banking relationship with it. In response to this, Maybank Group has completed Global Certification for use by any U.S. Financial Institution that requires a USA PATRIOT Act Certification, to establish or continue relationship with Maybank Group.

The Global Certification covers all entities in Maybank Group. Please click here to obtain the Maybank Group USA PATRIOT Act Certification.

Please send us an email at aml_my@maybank.com should you have any query on the Global Certification.

All customers who wish to apply for any product/service in Maybank Group will be required to undergo the "Know Your Customer" (KYC) process which is regulated by Bank Negara Malaysia and any other relevant regulators where we have operations. With today's regulatory focus on good governance and risk culture, Maybank Group is accountable for knowing and understanding their customers and associated financial crime risk.

Through our KYC processes we have built a framework which will help to get to know you, build a sustainable relationship and help to protect you against the potential risks of financial crime.

Foreign Account Tax Compliance Act (FATCA) 2010 is a legislation to help counter tax evasion in the United States (U.S.).

FATCA creates a new information reporting and withholding regime for payments made to certain foreign financial institutions and other foreign entities.

FATCA requirements came into effect on 1 July 2014. FATCA will affect both Individual and Business customers who are treated as "U.S. Person" for tax purposes.

Maybank Group is committed to be FATCA compliant in all countries that we operate.

For more information about FATCA, please refer to the U.S. IRS website.

The Common Reporting Standard (CRS) is a global standard introduced by the Organisation for Economic Co-operation and Development (OECD) for the automatic exchange of financial information to combat tax evasion between jurisdictions that have agreed to participate.

Under the CRS rules, Maybank Group will report information on financial accounts of individuals and/or entities who are tax residents of the Participating Jurisdictions.

For more information about CRS, please refer to the OECD website.

1. Maybank Group Data Privacy Statement

For Privacy Statement in English, please click here.
For Privacy Statement in Bahasa Malaysia, please click here.

2. Personal Data Protection Act Certificates of Registration

For the respective companies within Maybank Group that are registered with the Personal Data Protection Commissioner pursuant to the Personal Data Protection Act 2010 (PDPA) Malaysia, please click on the respective links below.

• Malayan Banking Berhad
• Maybank Islamic Berhad
• Maybank Investment Bank Berhad
• Etiqa Family Takaful Berhad
• Etiqa General Insurance Berhad
• Etiqa Life Insurance Berhad
• Etiqa General Takaful Berhad

Maybank Group Whistleblowing Policy Statement
Malayan Banking Berhad and its subsidiaries and overseas branches (“Maybank”) is committed to the highest standard of ethics and integrity in its conduct of business and operations. As part of this commitment, Maybank Group has in place an avenue for disclosure of any improper conduct.

Objectives of This Policy
The objective of this policy is to ensure that all employees and members of the public have access to secured channels to make disclosures on any improper conduct by any member or representative of Maybank Group, with the assurance that there will be no repercussion against them.

Scope
Improper conduct includes, but is not limited to:

• Bribery and corruption;
• Fraud, theft or embezzlement;
• Abuse of power by an employee;
• Conflict of interest;
• Breach of Maybank Group's Code of Conduct;
• Failure to comply with legal and regulatory obligations;
• Unauthorised disclosure of customer information; and
• Concealment of any of the above.

Any person who is aware of, or has reasonable grounds to suspect that, any improper conduct has been committed by an employee or representative of Maybank Group can make a disclosure.

Disclosure Channels
Disclosures can be made via any of the following channels:

For further information on the list of automated hotline in other countries where Maybank has presence, please click here.

Whistleblowers are encouraged to include the following information in the disclosure to facilitate investigations:

• Name of person(s) involved;
• Date and time of the event;
• Nature of the event;
• Witness to the event, if any; and
• Evidence of the event, if any.

Other Disclosure Channels
The whistleblower may also make disclosures through the following channels:

Confidentiality and Protection of Whistleblower
The identity of a whistleblower who has made a disclosure in good faith will be kept confidential and will only be disclosed on a strictly need-to-know basis. Employees who whistleblow in good faith will also be protected by Maybank Group from any repercussion.

Whistleblowing Governance Committee
Maybank Group's Whistleblowing Governance Committee is chaired by an independent non-executive director. The governance committee provides oversight to ensure that disclosures made via the whistleblowing channels are accorded with adequate attention, independence, investigation and remedial action, where necessary.

Maybank Group Anti-Bribery And Corruption Policy Statement
Malayan Banking Berhad and its subsidiaries and overseas branches (“Maybank”) is committed to conduct its business dealings with integrity. To achieve this commitment, Maybank Group adopts a zero tolerance approach against all forms of bribery and corruption in carrying out its daily operations. Maybank Group complies with the Malaysian Anti-Corruption Commission Act 2009, as well as other laws and regulations in the countries where we operate.

Maybank Group has put in place an Anti-Bribery and Corruption (“AB&C”) framework which includes policies, procedures, pre-approval processes, risk assessments, due diligence on third parties and associated persons*, and employee training programme.

The Maybank Group Anti-Bribery & Corruption Policy (“AB&C Policy”) sets out the guiding principles for Maybank Group to address and manage bribery and corruption risks in all its dealings within and outside Maybank Group. Compliance to the AB&C Policy is mandatory and Maybank Group, its directors and employees are to strictly comply with the following principles:

• Giving or receiving bribes or participate in any form of bribery and corruption in its business dealings is strictly prohibited;
• The engagements of third parties and associated persons, and dealings with customers and third parties and associated persons must not be for the purpose of inducing or obtaining or retaining business, gaining an unfair advantage or influencing a government or regulatory decision for Maybank or for personal gain;
• The giving and receiving of gifts and entertainment, including donations and sponsorships, whether directly or indirectly with the intention to bribe, to retain or gain a business advantage, or for personal gain is strictly prohibited;
• Actual or potential conflict of interest which could result in actual or potential bribery and corruption risk to Maybank is prohibited; and
• Directors and employees are strictly prohibited from making facilitation payments. Associated persons performing services for or on behalf of Maybank are also required to comply with the above principles where relevant.

* A person is associated with Maybank Group if the person is a partner or agent of Maybank or if the person performs services for or on behalf of Maybank.