HNB group-wide agreement reinforces data privacy, security

HNB PLC has formalised a data-sharing agreement with its group companies—HNB Assurance PLC, HNB General Insurance Ltd, HNB investment Bank and HNB Finance PLC. 

The agreement, signed at HNB Tower, marks a significant step in enhancing data governance, safeguarding customer privacy and ensuring full compliance with Sri Lanka’s Personal Data Protection Act.

“This agreement is a significant milestone for HNB, as we take proactive measures to strengthen data privacy and governance across the group,” said HNB Managing Director/CEO Damith Pallewatte. 

“In today’s digital landscape, safeguarding customer information is more than a regulatory requirement—it is a core responsibility that underpins the trust our customers place in us. By adopting a robust, transparent framework for data sharing and security, we are not only complying with the Personal Data Protection Act but also setting a benchmark for ethical data management in Sri Lanka’s financial sector. This initiative underscores our long-standing commitment to innovation and accountability as we continue to evolve in a rapidly digitising world.”

The initiative establishes a robust framework for managing, accessing and utilising data across the HNB group. This framework reinforces the organisation’s commitment to upholding the highest standards of data privacy and ethics. By implementing advanced data governance protocols, HNB aims to foster greater transparency, build trust with customers and stakeholders and enable seamless yet responsible data utilisation within the group.

“Formalising this agreement is a pivotal step toward ensuring responsible data management within the HNB group,” said HNB Assurance CEO Lasitha Wimalarathne. 

“This framework strengthens our ability to deliver on those expectations while reinforcing our compliance with the regulatory standards. It is also a vital enabler of the seamless digital experience we aim to provide, ensuring that data is utilised ethically, securely and to the benefit of our valued customers.”

The agreement includes the implementation of advanced data security measures, strict access controls and regular audits to ensure compliance with the Personal Data Protection Act.