We understand that the security of your personal and account information is important to you. We also understand that our continued success as a financial institution relies on both our ability to offer banking services to you in a secure manner as well as your responsibility in keeping any access codes, passwords or PINs secure. To assist us in offering these web-based banking services in a secure manner, we employ a number of measures, which are described below. These measures allow us, among other benefits, to properly authenticate your identity when you access these services and protect your information as it travels the Internet between your PC and our bank.
Log-In Protection for the End User
Every end-user must privately maintain a combination of a password and Log-In ID. Because the end-user is assigned the original password by the Online Banking administrator, you will be forced to change your password upon initially logging onto the system, and before any transactions can be requested. This procedure forces you to establish a uniquely private password. In case you forget your password, or if it is ever lost or stolen, the administrator can reset a default password for you once your identity has been confirmed. You will be required to change your password every 180 days as an added security feature.
Account Locks Out after Three Failed Attempts
If an unauthorized person attempts entry into an end-user's account by trying to guess a Log-In ID, our Online Banking system will disable the password on the third incorrect attempt, thus invalidating the Log-In combination. If you accidentally activate this security feature by unintentionally mis-keying a password three times, you will need to call the bank at (602) 346-1800 to reestablish the password for your account. For example, a common mistake made by the end user is having the CAPS-LOCK on while keying in a password.
Automatic Log Off
To further protect you, a timeout feature is used. This feature automatically logs you out of your current financial service session after a 10-minute period of inactivity on our site.
Online Banking requires the use of secure browsers to protect you while you access our online financial services. More specifically, the personal and account information that flows back and forth between your PC and the bank must be encrypted while in transit and secure browsers are how we achieve this level of protection. Encryption is the process of scrambling information (typically for data transmission) so that it can only be reassembled in its original clear text format by someone who has the correct encryption key to do so. When used between you and the bank, this technology encrypts your personal information as you send it to us. Data remains encrypted until we receive it, then it is decrypted. Likewise, when we send personal or account information to you, this technology encrypts it and it remains encrypted until received by your PC. This is possible through a certified 128-bit secure server provided by VeriSign, ensuring that unauthorized individuals that intercept data are unable to read or decipher it.
Please remember that e-mail is not secure against interception, and you should be cautious when sending e-mail with personal information. If your information is very sensitive, or includes personal or confidential information (such as your bank account, charge card or Social Security Number) you may want to contact us through the secure email option located within Online Banking, or by postal mail or telephone.
Our Server Does Not Connect Directly to the Internet
A "firewall" separates our network from the Internet. All requests to the server are filtered through a router and firewall before they are permitted access to the server. A router is a piece of hardware that works in conjunction with the firewall to define and limit access that "outside" computers have to our server. The configuration begins by disallowing ALL traffic and then opens only when necessary to process acceptable data requests, such as a customer account balance inquiry.
How You Can Protect Your Internet Security
While we work to protect your banking privacy, you will also play an important role in protecting your accounts. There are a number of steps you can take to ensure that your account information is protected, including:
- Keep your PIN to yourself.
- Change your PIN frequently.
- Remain at your computer until your Online Banking transactions are completed and log out.
- Log out of Online Banking prior to visiting other Internet sites.
- Review your account information often.
- Report any unusual activity immediately.
- Never give account information to anyone over the telephone unless you initiated the call.
- If you notice suspicious or unusual activity on your Online Banking accounts, call the bank immediately at (602) 346-1800.