We understand that the security of your personal and account information is important to you. We also understand that our continued success as a financial institution relies on both our ability to offer banking services to you in a secure manner, as well as your responsibility in keeping any access codes, passwords or PINs secure. To assist us in offering these Web-based banking services in a secure manner, we employ a number of measures, which are described below. These measures allow us, among other benefits, to properly authenticate your identity when you access these services and protect your information as it traverses the Internet between your PC and the bank.
Login protection for the end user. Every end user must privately maintain a combination of a password and login ID. Because the end user is assigned the original password by the bank administrator, OBS (Online Banking System) forces the end user to change the password once logged onto the system and before any transactions can be requested. This forces the end user to establish an absolutely private password. If, in case the password is lost or forgotten, the administrator will be able to reset a default password for the end user once the bank has confirmed your identity.
Three (3) strikes and you’re out. If an unauthorized person attempts entry into an end user’s account by trying to guess a login ID, OBS will disable the password on the third incorrect attempt, thus invalidating the login combination. If you accidentally activate this security feature by unintentionally mis-keying a password three times, you would need to call us to reestablish the password for that account. For example, a common mistake made by the end user is having the CAPS-LOCK on while keying in a password.
To further protect you, a timeout feature is used. This feature will automatically log you out of your current financial service session after a 10-minute period of inactivity in the Online Banking System.
We also require the use of secure browsers to protect you while you access our online financial services. More specifically, the personal and account information that flows back and forth between your PC and the bank must be encrypted while in transit – secure browsers are how we achieve this level of protection. Encryption is the process of scrambling information (typically for data transmission) so that it can only be reassembled in its original clear text format by someone who has the correct encryption key to do so. When used between you and the bank, this technology encrypts your personal information as you send it to us, which only we can decrypt. Likewise, when we send personal or account information to you, this technology encrypts it, which only you can decrypt. This is possible through a certified 128 bit secure server by VeriSign so that no unauthorized individuals can read or decipher the data.