1 |
GENERAL |
1.1 |
These Rules of electronic documents exchange (“Rules”) integrate the Bank Account Conditions previously called as General Terms and Conditions (“Conditions”) and are used between JSC "Citibank Kazakhstan" (“Bank”) and the Bank client (“Customer”) during rendering of financial and banking services to the Customer through CitiDirect® Online Banking (“System”) for electronic documents exchange (instructions, orders to revoke or suspend instructions, as well as other messages related to payment instructions and fund transfers) in electronic form as amended, modified, or otherwise changed from time to time by the Bank. |
1.2 |
The Customer undertakes to use the System
only for the purpose of banking and
financial services rendered by the Bank
to the Customer. Access to the System
and its usage not regulated by present
Rules and the Conditions, is regulated
by the laws of Republic of Kazakhstan. |
1.3 |
The Bank shall use its best efforts
to notify the Customer in advance
of the expected schedule of maintenance
of the System that may interrupt access
to the System or disrupt use of electronic
services provided through the System.
The Bank shall not be liable for such
disruption or interruption of the
access to the System. The Bank reserves
the right to suspend access to the System
without prior notification if in the sole
discretion of the Bank such shall be
necessary for security of the System. |
2 |
AUTHORIZATION
AND SECURITY |
2.1 |
The customer appoints its own staff (Security Managers) with respective authorities according to the CD2/ CD3 Forms. The Bank provides the Customer the following security means for each Security Manager: (a) Hardware encryption device (SafeWordTM Card) for dynamic password generation for access to the System and (b) personal identification code for the SafeWordTM Card (“Security Means”). |
2.2 |
The Customer undertakes to observe of confidentiality of information related to the Security Means. The Bank shall not be liable for any damages or losses resulting from breach of such confidentiality. Authorized users and their respective authorities, as well as access to account information shall be set forth in CD1/ CD2/ CD3/ CD4 Forms. |
2.3 |
The Bank is authorized to execute Customer's
instructions, orders and other notices,
duly authenticated by the Bank, in respect
of Customer's account, that are sent
by the use of the System in accordance
with the Rules. |
2.4 |
All Customer settlement accounts are reflected in the System immediately after the Client opens the accounts in the Bank. User access to the accounts in the System is set by the System Administrators. |
3 |
ELECTRONIC BANKING FORMS |
3.1 |
All Customer’s requests related to the access to the System are executed by the Bank based on CD1/ CD2/ CD3/ CD4 Forms. Before fill the Forms please familiarize with the Forms preparation procedure below.
- The Forms are filled out by the computer; Forms filling out or corrections by hand are not accepted;
- Filled out Forms are printed out in 1 copy;
- Forms are signed by 1st and 2nd signatures and Customer’s seal stamp;
- Forms are delivered to the Bank via courier.
Effective 1st of July 2007 the Bank may accept Forms’ version 2007-03 only. Forms’ version is present in left bottom corner of the Forms. |
3.2 |
CD1 Form. Customer requests Security Means by completion of CD1 Form.
Click here to get CD1 Form. |
3.3 |
CD2 Form. Customer requests access for users by completion of CD2 Form.
Click here to get CD2 Form. |
3.4 |
CD3 Form. Customer requests access to additional services by completion of CD3 Form.
Click here to get CD3 Form. |
3.5 |
CD4 Form. Customer requests the Bank to propose access to accounts for another companies by completion of CD4 Form.
Click here to get CD4 Form.
Electronic banking services Forms signed by the Customer (“Forms”) are replaced accordingly with later signed Forms. Rules replace Agreement on General Terms and Conditions of Electronic Services. |
4 |
PAYMENT INSTRUCTION INITIATION, AUTHORIZATION AND RECEIPT ACKNOWLEDGMENT |
|
Customer may initiate the following payment types in the System: payment instructions in local currency, payment instructions in foreign currency, payroll fund transfers; pension, social and salary transfers; book transfers and administrative messages. Creation and authorization of electronic payment instructions are possible from any place of the World if the Customer has an access to Internet and the Security Means. Generally transactions follow through “Creation”, “Waiting for Authorization” and “Release Required” stages. Finally transactions receive “Citibank Accepted” status confirming the payments receipt by the Bank. |
5 |
COMPUTER
HARDWARE AND SOFTWARE |
5.1 |
The System sets the requirements to computer hardware and software. The Customer may check the requirements and examine conformity of software with the Bank requirements by visiting Internet site www.citidirect.com. |
5.2 |
Click here to download Sun Java RE software.
Citi is providing Sun Java RE software only for user convenience, and it does not imply sponsorship or approval of this non-Citi software.
By downloading or installing Sun Java RE software users are assumed as responsible for complying with all applicable laws, including, but not limited to, any import/export or use laws to which they may be subject and obtaining the required license or authorization.cable laws, including, but not limited to, any import/export or use laws to which they may be subject and obtaining the required license or authorization. |
5.3 |
|
5.4 |
|
6 |
SECURITY
PROCEDURES IN THE SYSTEM |
|
The one of main aspects of the System is
providing the stable security of the
Customer's financial information.
Security is up and run automatically
as soon as the System is run.
All security procedures are run
at users computers, between Web
customer and a Web server and
at server end of the System.
The System is based on four security levels. |
6.1 |
The use of SafeWordTM authentication method for Security Managers and for all users whose respective user profiles allow them to initiate or approve transactions prevents the risk of fraudulent accessing to the System in case of users observe of confidentiality of information related to the Security Means. |
6.2 |
Users
authority are maintained and controlled
by Security Managers, acting together. |
6.3 |
The System uses Secure Socket Layer (SSL) as an encryption methodology to
provide privacy between the Customer and the Bank. Data encryption protects data
against interlopers so that only authorized users can view the content of encrypted
files. SSL uses financial institution level 128-bit encryption enabled by digital
certificates (“Certificates”) to allow users to establish a secure Internet session.
Both the Bank and the Customer agree with the Certificates acceptance at the
moment of the System installation at the Customer computers. |
6.4 |
Event
logs and alert system as the part
of the system security infrastructure,
do keep vigilant watching on any
attempts of hacker attacks. All
alerts are reported to twenty-four-hour
monitoring service for immediate
response. |
7 |
INSTRUCTIONS AND GUIDES |
7.1 |
Click here to download user manual. |
7.2 |
Click here to download administrator manual. |
7.3 |
Click here to download SafeWord™ manual. |
8 |
FINAL
PROVISIONS |
8.1 |
The
Customer undertakes to protect
the commercial secrets of the
Bank relating to any information
about the System or its usage.
The Customer under the laws of
Republic of Kazakhstan undertakes
to obtain any and all permissions,
licenses and other governmental
authorizations required for usage
by such Customer of the System
and the Security Means supplied
by the Bank. |
8.2 |
The
Customer has the right to terminate
use of the System with a 30 days
advance notice in writing to the
Bank prior to date of actual termination
use of the System. The Bank shall
not be liable for any damage or
loss caused by changes or modification
to the telecommunication and/
or computer equipment performed
by the Customer. The Bank reserves
the right to terminate rendering
of services through the System
with a following notification
within a one business day, if
in the sole discretion of the
Bank such measure shall be necessary
for the security of the System. |
