Online Banking Customer Awareness Program
Unico Bank is committed to protecting your personal information. Fraud through identity theft is growing day by day and our management and staff wants to do all it can to help you protect yourself in the current online banking environment. Below are areas that you need to be aware of:
Electronic Funds Transfer Act (Regulation E)
Regulation E establishes the basic rights, and responsibilities of consumers who use electronic fund transfer services and of financial institutions that offer these services. The primary objective of the act and this part is the protection of individual consumers engaging in electronic fund transfers.
For a complete detail explanation of protections provided and not provided under regulation E, please visit the following link / links:
- FDIC – Electronic Funds Transfers (Regulation E)
- Federal Reserve
Regulation E Points:
- Banks follow specific rules for electronic transactions issued by the Federal Reserve Board known as Regulation E. These rules cover all kinds of situations revolving around transfers made electronically. Under the consumer protections provided under Regulation E, you may be able to recover internet banking losses according to how soon you detect and report them.
- In general, these protections are extended to consumers and consumer accounts.
- If you report the losses within two days of receiving your statement, you can be liable for the first $50. After two days, the amount increases to $500. After 60 days, you could be legally liable for the full amount. These protections can be modified by state law or by policies at your bank, so be sure to ask your banker how these protections apply to your particular situation.
- Regulation E protects individual consumers engaging in electronic fund transfers (EFT). Nonconsumer (or business) accounts are not protected by Regulation E.
- Regulation E is a consumer protection law for accounts established primarily for personal, family, or household purposes. Non-consumer accounts, such as Corporations, Partnerships,
Trusts, etc., are excluded from coverage. Regulation E gives consumers a way to notify their Bank that an EFT has been made on their account(s) without their permission.
Phishing and Other Fraudulent Communication
Unico Bank will NEVER request personal information by phone, email, or text message including account numbers, personal identification information, passwords, or any other confidential customer information. Below are some points to remember:
- Do not give your login credentials to anyone. If you are contacted by someone who states they are calling from the Bank or you receive an email, you should not give them any information. You should contact the Bank in the event you notice suspicious account activity or experience customer information security-related events.
- Never provide Personal Financial Information including your Social Security number, account number or passwords, over the phone or the Internet if you did not initiate the contact.
- Never click in the link provided in an email you believe is fraudulent. It may contain some type of malicious software that can contaminate your computer.
- Do not be intimidated by an email or caller who suggests dire consequences if you do not immediately provide or verify financial information.
- If you believe the contact is legitimate, go to the company’s website by typing in the site address directly or using a page you have previously bookmarked, instead of a link provided in the email.
- If you fall victim to an attack, act immediately to protect yourself. Alert your financial institution as soon as possible. Place fraud alerts on your credit files. Monitor your credit files and monthly statements very closely.
- Report suspicious emails or calls to the Federal Trade Commission through the Internet at http://www.consumer.gov/idtheft, or by calling 1-877-ID-THEFT.
Protecting Your Business
It is suggested that commercial online banking customers perform risk assessments and controls evaluations periodically to help identify potential threats and to determine the strength of their controls. This can be done as follows:
- Identify possible risks in the online banking environment.
- Educate your employees on the risks.
- Create and maintain proper user account controls.
- Review all transactions.
- Install and maintain proper antivirus/security software on all systems/networks that access online banking.
Alternative Risk Control Mechanisms
Customers may also implement additional control mechanisms to help alleviate their risk. Some examples are as follows:
- Avoid using personal information.
- Create a unique password for online banking that you don’t use elsewhere.
- Try not to use dictionary words, children’s names, or other personally identifiable information in your password.
- Do not use the password auto-save feature on your browser.
- Do not share your passwords or write them down.
- Change your password periodically.
**The Bank will NEVER ask for your password.
- Always sign out or log off.
- Update software frequently and keep systems current.
- Virus software, “definitions” should be updated daily.
- Install and activate a personal firewall.
- Install and run most recent version of Antivirus software.
- Keep your operating system (OS) current.
- Activate the automatic update feature.
- Set your browser’s security level to the default setting or higher.
General Best Practices
- Keep your personal information private and secure.
- Check your account balance regularly.
- Do not access your account from a public location.
- If you suspect suspicious activity, take swift action.
- Be skeptical of email messages, for example, from someone unlikely to send an email such as the IRS.
- Do not open the suspicious emails and do not click on the links. Should this happen, stop work and have a diagnostics performed immediately.
Identity Theft Tips
- Shred receipts, billing statements, expired cards, and similar documents.
- Review statements promptly and carefully.
- Be positive of the identity of the requestor before divulging personal information. Only give personal information if you initiate the contact.
- Periodically check your credit report. You are entitled to receive one credit report from each credit bureau annually at no cost. Checking one bureau every 4 months will allow you to check your credit multiple times each year. *Keep in mind not all creditors report to every bureau.
- Watch out for copycat websites that deliberately use a name or web address very similar to, but not the same as, that of the real financial institution or business.
- Pay using credit cards.
- Shred credit card, medical and other statements with personal information.
- Never click on suspicious links.
- Only give sensitive information to websites using encryption, verified though the web address “https://” (the “s” is for secure).
- Use social media wisely and don’t reveal too much.
- Use passcodes.
- Avoid storing sensitive information.
- Keep software up-to-date.
- Install remote wipe if the device is lost or stolen it can be cleared off.
Using ATM’s safely:
- Protect your ATM card and PIN. If lost report as soon as possible.
- Choose a PIN different from your address, telephone #, and birthdate.
- Be aware of people and your surroundings.
- Put away your card and cash.
- Skimming – observe the card reader; if it appears damaged don’t use it.