A special purpose vehicle named “PIRAEUS SNF DAC” with its registered office in Ireland (Fenian, 2nd floor, Palmerston House, Dublin 2) (hereinafter referred to as “PIREUS SYAS DAC“), to which the claims of “PIRAEUS BANK SA” in connection with the securitization were transferred and which entrusted the management of these claims to the claims management company “Intrum Hellas SA Loan and Credit Claims Management Company” (formerly “Alternative Financial Solutions Sole Loan Claims Management Company”). and loans”), with the distinctive name “Intrum Hellas AEDADP”, registered office in Athens (Mesogeion Street 109-111), GEMI number. 1519465010000 and A.F.M. 801215902 (hereinafter referred to as “Administrator”), transferred on 12.01.2022 and 12.08.2022 to BANK OF PIRAEUS SA, located in Athens (Amerikis 4), with no. G.E.MI. 157660660000 and A.F.M. 996763330(“Bank“), part of the portfolio of receivables for loans and credits described below, in accordance with articles 10 and 14, paragraph 13 of Law 3156/2003, with the registration of the relevant transfer agreements (assignment) in the public book of article 3 of Law 2844/2000 of the Athens Authority for (Volume 15/Number 167 and Volume 15/Number 198, respectively) In particular, the Bank was given receivables for certain loans and credits from debtors whose debts or part of debts became overdue and overdue and/or whose contracts were terminated and/ At the same time, the Bank entrusted the management of the receivables, which were re-assigned, respectively, to the Administrator under the relevant agreement between them, in accordance with Law 4354/2015.

Based on the foregoing, the Bank and the Administrator, in addition to individual information letters to involved debtors, co-debtors, guarantors and persons providing real or other collateral, inform individuals who participate in the above transferred claims or are associated by it as a debtor and / or co-debtor, and/or a guarantor and/or custodian or custodian or paralegal or parental caretaker, solicitor, representative, executor, custodian of a school estate, or any legal representative, partner or shareholder, or attorney, or counter suspect , or the actual beneficiary of legal entities and legal entities, including persons fulfilling relevant obligations under foreign law, which, as a result of the transfer of the above claims and the simultaneous assignment of their control by the Bank to the Administrator, the Bank and the Administrator acted as independent processors (for the purposes of pursuant to the General Data Protection Regulation 2016/679/EU) for the processing of personal data for the purpose of filing and managing relevant claims.

Detailed information on the processing of personal data of the above persons by the Bank and the Administrator, respectively, with all the necessary information (categories of personal data, sources, purposes and legal grounds for processing, the rights of subjects to protect their personal data). data, categories of recipients, storage period, etc.) provided, on the one hand, to the Bank along with the Information Form for the processing of personal data, which is permanently posted on the website www.piraeusbank.gr/el/idiwtes/gdpr, on the one hand on the other hand, the Administrator in posted on the website of the Administrator http://www.intrum.gr/data-privacy/

“Privacy Update”.

Then 12/19/2022 (“Transfer date“), the Bank acted in accordance with Articles 10 and 14 paragraph 13 of Law 3156/2003 “Bond issues, securitization of receivables and real estate receivables and other provisions”, in the securitization of its portfolio of loans and receivables, described below, and its transfer to a special purpose vehicle called Magnus NPL Finance DAC, registered in Ireland at Georges Dock Street no. 3, on the 4th floor, Dublin (Fourth Floor, 3 George’s Dock, IFSC, Dublin, Ireland), with company registration number 704301 (“Special Purpose Company). A summary of the relevant transfer agreement was registered on 12/19/2022 in the public book of Article 3 of Law 2844/2000 of the Athens Conservation Authority (volume 15, number 228).

In particular, non-performing (regardless of termination) receivables from business loans and consumer loans, as well as other receivables from loans obtained from loans regulated by Greek and English law, were securitized and transferred together with their additional rights, requirements and collateral, all of which the above receivables are denominated in Euros (EUR), British Pounds Sterling (GBP), Japanese Yen (JPY) and United States Dollars (USD), provided by the Bank or subsequently acquired by it from any of the banks of the Agricultural Bank of Greece AE . “, “General Bank of Greece SA”, “Millennium BCP”, “Bank of Cyprus”, “People’s Bank of Cyprus”, “Panhellenic Bank” and “Hellenic Bank” (of which the Bank is the universal or special successor) ( “Requirements“).

Pursuant to articles 10, paragraphs 14 and 16 of Law 3156/2003, the Special Purpose Company transferred the management of the Claims to the Administrator as of the Transfer Date, and on December 19 a summary of the relevant management contract was concluded. /2022 in its public book Article 3 of Law 2844/2000 of the Athens Conservation Authority (Volume 15, Number 229).

Subject to the foregoing, the Bank, the Special Company and the Administrator, in addition to individual information letters to involved debtors, co-debtors, guarantors and providers of real estate or other security, inform individuals involved in or associated with the Claims as a debtor, and (or) a co-debtor, and/or a guarantor, and/or a custodian or custodian, or a paralegal or parent, trustee, representative, executor, custodian of a school estate, or any nature of a legal representative, partner, or a shareholder or attorney or representative or beneficial owner of legal entities and organizations, including entities performing relevant duties under foreign law, which as a result of the above securitization of the Claims, as of the Personal Data Transfer Date the above persons that were legally collected , have been transferred in accordance with article 10 par. 21 of Law 3156/2003, from the Bank to the Administrator on behalf of and on behalf of the Special Purpose Company, in order for the Administrator to process them exclusively and only for the purpose of managing securitized claims.

In particular and in addition to the information provided by the Bank as a processor of personal data (within the meaning of the General Data Protection Regulation 2016/679/EU), with the Information Form for the processing of personal data, which is permanently posted on its website at www.piraeusbank .gr/el/idiwtes/gdpr, the above persons are informed that only personal data necessary for the purposes of securitization and Claims management have been transferred (indicative: identification data – full name, identification data, VAT number, address and contact details, number and details of the loan agreement and loan / credit account, any collateral, debit balance, payments, contractual documents, etc.).

After the Transfer Date, the Special Purpose Entity, the Administrator and the Bank act as independent data controllers (within the meaning of the General Data Protection Regulation 2016/679/EU) for the purposes of managing Claims. Detailed information on the processing of Personal Data (categories of personal data, sources, purposes and legal grounds for processing, the rights of subjects to protect their personal data, categories of recipients, storage period, etc.) after the Transfer Date:

• The Special Purpose Company, to the extent and to the extent that it processes personal data, is included in the Special Purpose Company’s Privacy Statement, which is posted on the Bank’s website at www.piraeusbank.gr/el/idiwtes/gdpr.
• The Administrator included in the Administrator’s Data Protection Policy posted on its website at http://www.intrum.gr/data-privacy/
• from the Bank, is included in the Information Form for the processing of personal data, which is permanently posted on its website at www.piraeusbank.gr/el/idiwtes/gdpr.