The Bank of Kigali Plc has taken another major stride in ensuring compliance by implementing the requirements of ISO/IEC 27001:2013 standard for an Information Security Management System (ISMS) and continue improvement.

Management of Bank of Kigali Plc is committed to the confidentiality, integrity and availability of information assets and implementation of security measures through the establishment, implementation, maintenance and continual improvement of an ISMS to protect the bank's information assets against all threats whether internal or external, deliberate or accidental. To achieve these, the bank will continue to:

• Provide assurance of information systems resilience
• Improve information security awareness culture across the bank
• Protect client’s confidential information
• Protect all critical information assets and business processes relative to the bank’s core business

Users of Bank of Kigali Plc information and information assets shall comply with all ISMS policies and exercise a duty of care in relation to the operation and use of Bank of Kigali Plc information and information systems.

Bank of Kigali Plc shall comply with all applicable regulations and contractual requirements related to information security in its operations and services.

The ISMS shall support the bank in its aspiration to be the leading provider of the most innovative financial solutions in the region by ensuring customer data protection, enhanced bank reputation, uninterrupted customer service, and many more.

This policy is summary and part of the Bank of Kigali Plc ISMS Policies which are published on bank’s communication platform after approval.

Approved by:
Chief Executive Officer, Bank of Kigali Plc
Diane KARUSISI