Access Bank has been awarded the ISO/IEC 27701:2019 certification, the global gold standard for Privacy Information Management Systems (PIMS). This milestone reinforces the Bank’s unwavering commitment to data privacy, security, and compliance at the highest international level.
The certification validates that Access Bank operates a Privacy Information Management System fully aligned with the rigorous requirements of ISO/IEC 27701:2019. Its scope covers the management, processing, and protection of Personally Identifiable Information (PII) for customers, employees, and third parties across the entire organization.
This achievement encompasses all physical and digital assets, processes, and information systems used in collecting, storing, processing, sharing, and disposing of PII. Access Bank has been certified as both a PII Controller and a PII Processor, ensuring robust safeguards throughout the entire lifecycle of sensitive data. The certification, referenced under ISMS Certificate No. IS 583140, is backed by the Bank’s Statement of Applicability (Version 15.0, dated March 27, 2025).
Speaking on the certification, Dr. Favour Femi-Oyewole, Group Chief Information Security Officer / Data Protection Officer, Access Bank, said: “Achieving the ISO/IEC 27701:2019 certification is a testament to Access Bank’s proactive approach to information security, data protection, and privacy. It reflects our commitment to safeguarding the trust our customers place in us and our culture of continuous improvement. This certification demonstrates our adoption of global best practices and reinforces our leadership in privacy information management across the financial services sector.”
Also commenting, Lanre Bamisebi, Executive Director, IT and Digitisation, Access Holdings, noted: “Securing the ISO/IEC 27701:2019 certification marks a pivotal milestone in Access Bank’s digital journey. It underscores the strategic investments we continue to make in innovation, governance, and resilient systems. This achievement reflects our forward-thinking approach to building customer trust and ensuring compliance with evolving regulatory expectations.”
With this certification, Access Bank affirms its proactive privacy management, its investment in state-of-the-art security infrastructure, and its commitment to protecting the privacy rights of individuals. The Bank remains dedicated to advancing global best practices in data protection while fostering trust among its stakeholders, customers, and the broader community.