Norton and Lenora, Kansas - Member FDIC

We recognize and respect the privacy expectations of our customers. Our principles of financial privacy are for the benefit of our customers, and as such, this statement of privacy principles is available to our customers.

We will collect, retain and use information about individual customers only where we reasonably believe it would be useful (and allowed by law) in administering our business and to provide products, services and other opportunities to our customers.

We have established procedures so that a customer's financial information is accurate, current and complete in accordance with reasonable commercial standards. We will also respond to requests to correct inaccurate information in a timely manner.

We limit employee access to personally identifiable information to those with a business reason for knowing such information. We educate our employees so that they will understand the importance of confidentiality and customer privacy. We also take appropriate disciplinary measures to enforce employee privacy responsibilities.

We maintain appropriate security standards and procedures regarding unauthorized access to customer information.

We will not reveal specific information about customer accounts or other personally identifiable data to unaffiliated third parties for their independent use, except for the exchange of information with reputable information reporting agencies to maximize the accuracy and security of such information or in the performance of bona fide corporate due diligence, unless 1) the information is provided to help complete a customer initiated transaction; 2) the customer requests it; 3) the disclosure is required by/or allowed by law (e.g., subpoena, investigation of fraudulent activity, etc.); or 4) the customer has been informed about the possibility of disclosure for marketing or similar purposes through a prior communication and is given the opportunity to decline (i.e., "opt out").

If personally identifiable customer information is provided to a third party, we will insist that the third party adhere to similar privacy principles that provide for keeping such information confidential.