Information Security Policy

The Bank of Kigali Plc has taken another major stride in ensuring compliance by implementing the requirements of ISO/IEC 27001:2013 standard for an Information Security Management System (ISMS).

Management of Bank of Kigali Plc is committed to the confidentiality, integrity and availability of information assets and shall implement security measures through the establishment, implementation, maintenance and continual improvement of an information security management system to protect the bank's information assets against all threats whether internal or external, deliberate or accidental. To achieve these, the bank will:

  • Provide assurance of information systems resilience
  • Improve information security awareness culture across the bank
  • Protect client’s confidential information
  • Protect all critical information assets and business processes relative to the bank’s core business

Users of Bank of Kigali Plc information assets shall comply with all ISMS policies and exercise a duty of care in relation to the operation and use of Bank of Kigali Plc information and information systems.

Bank of Kigali Plc shall comply with all applicable regulations and contractual requirements related to information security in its operations and services.

The effective implementation of ISMS shall help the bank in its aspiration to be the leading provider of the most innovative financial solutions in the region by ensuring customer data protection, enhanced bank reputation, uninterrupted customer service, and many more.

This document is part of the Bank of Kigali Plc ISMS Policy Set which will be published on website, on intranet and elucidated on the training platform. Any changes to the ISMS Policies shall be communicated to internal and external users of Bank of Kigali Plc information assets.

Reviewed on 23rd March 2021
Chief Executive Officer, Bank of Kigali Plc