We recognize the importance our customers place on the privacy and security of their personal information. Our goal is to protect your personal information in every way that we interact with you, whether it's on the telephone, in our lobby, at one of our ATMs, or on the Internet.
Below are several definitions of terms used within this policy:
Customer Information - Customer Information refers to personally identifiable information about a consumer, customer or former customer of this Institution.
Internet Protocol (IP) Address - an IP address is a unique address that devices use in order to identify and communicate with each other on a computer network. An IP address can be thought of as a street address or a phone number for a computer or other network device on the Internet. Just as each street address and phone number uniquely identifies a building or telephone, an IP address can uniquely identify a specific computer or other network device on a network. We may use IP addresses to monitor login activity and for identification purposes when necessary for security investigations.
Cookie - a Cookie is a very small text file sent by a web server and stored on your hard drive, your computer’s memory, or in your browser so that it can be read back later. Cookies are a basic way for a server to identify the computer you happen to be using at the time. Cookies are used for many things from personalizing start up pages to facilitating online purchases. Cookies help sites recognize return visitors and they perform a very important function in secure Internet banking.
"Session" Cookies are used to monitor session activity within our Internet banking product. These Cookies are encrypted and only our Service Provider can read the information in these Cookies. The session Cookie facilitates the processing of multiple transactions during a session without requiring you to reenter your passcode for each individual transaction. Session Cookies used within our Internet banking product do not pass to your computer’s hard drive. Instead, the Cookie is stored in your computer’s memory, identifying only your computer while you are logged on. When you log off, or close your browser, the Cookie is destroyed. A new Cookie is used for each session; that way, no one can use the prior Cookie to access your account. For additional security, the Cookie expires after 10 minutes of inactivity. It must then be renewed by reentering your passcode. We do not use this Cookie to collect or obtain personal information about you.
An encrypted non-expiring Cookie is also used within our Internet banking product for the identification of this Institution.
Service Provider - In order to provide a full range of online financial services, we may use various third party providers. These third parties provide services such as: website hosting, Internet banking, bill payment, and account aggregation. Third party providers are referred to within this policy as “Service Providers”.
Information Collected on the Internet
If you are just browsing through our website, we do not request any personally identifiable Customer Information, nor do we collect unique identifying information about you unless you voluntarily and knowingly provide us that information, such as when you send us an email or complete an application online. If you provide us this information, it is only used internally and in furtherance of the purpose for which it was provided.
As part of providing online financial products or services, we may obtain information about our customers and website visitors from the following sources:
- Information we receive from you on applications, emails, or other forms;
- Information about your transactions with this Institution and our affiliates;
- Information we receive from a consumer-reporting agency; and
- Information that is generated electronically when you visit our website or use our online financial services.
Service Providers hosting our website and Internet banking service may collect general information on our website visitors for security and statistical purposes. Such information may include:
- The Internet address (referral site) which brought you to our web site;
- The date and time you access our site;
- The name and version of your web browser;
- Your Internet Protocol (IP) address;
- The pages visited in our website; and
- The duration of your online session.
When you click on advertisements in our website or advertisements on linked 3rd party web sites, you may receive another Cookie; however, you do not have to accept any Cookies from third party advertisements.
Use of Information Collected
- We may disclose the information that we collect, as described above, with Service Providers acting on our behalf to provide online financial services such as: Internet banking and bill payment.
- We may also disclose Customer Information when required or permitted by law. For example, Customer Information may be disclosed in connection with a subpoena or similar legal process, fraud prevention, or security investigation.
- We may also share Customer Information outside this Institution when we have your consent, such as when you request a specific product like insurance or an investment product from a third party financial services provider.
- We may also disclose aggregate (not personally identifiable) Customer Information with Service Providers or financial institutions that perform marketing and research services on our behalf and with whom we have joint marketing agreements. Our contracts require all such Service Providers/or financial institutions to protect the confidentiality of your Customer Information to the same extent that we must do.
- We do not disclose any Customer Information about our customers, former customers, website visitors to anyone, except as permitted or required by law.
- We do not sell any of your personal information.
When you enroll for our online services, we will send you a welcome email. We may also send emails marketing various products and services offered by this Institution. We will always provide you an opportunity to opt-in or opt-out of marketing related emails.
We will also send security related email notices when you sign-up for email (“notify me”) alerts on your account(s) or whenever you change your passcode, security question, or email address.
Protecting Yourself On-line -- Beware of Phishing Attempts and Internet Scams
While email is convenient and has a good business use, it can also be misused by criminals for scams and various other fraudulent purposes. “Phishing emails” are frequently used by criminals to entice the recipient to visit a fraudulent website where they try to convince the recipient to provide personal information, such as ATM card numbers, account numbers, Social Security numbers, access Ids and passcodes. Some of these fraudulent websites may also be virus laden and can be used to download mal-ware to your computer. Fraudulent websites often look identical to a legitimate site, so it’s important to look very closely at the website address. If you send us an email, please do not include any confidential, personal or sensitive information in the email message, as email messages are generally not secure. We do offer secure messaging through our Internet Banking product and you may use this secure messaging feature if you need to send us sensitive or confidential information.
Below we have listed a few tips to help protect your personal information on the Internet:
- Keep your computers and mobile devices up to date. Having the latest security software, web browser, and operating system are the best defenses against viruses, malware, and other online threats. Most browsers now offer free anti-phishing tool bars that can help alert you of fraudulent websites. Also, adjust your browser settings to prompt the user whenever a website tries to install a new program or Active X control.
- Turn on automatic updates so you receive the newest fixes as they become available.
- Set strong passwords. A strong password is at least eight characters in length and includes a mix of upper and lowercase letters, numbers and special characters.
- Do not open e-mails from untrustworthy sources. If you receive an e-mail that you think could be a scam, delete it immediately or forward the email to the Federal Trade Commission (FTC) at email@example.com and to the company, bank or organization impersonated in the email.
- Always be wary of links in emails, especially any links in emails purporting to be from this institution. Please remember if we send you an email, we will never ask for personal information such as your account number, ATM card number, PIN number, or social security number.
- If you have any questions about the legitimacy of an email, especially an email from this Institution, you can also call us at this number (740) 992-2136 or forward the email to firstname.lastname@example.org.
- Bookmark financial websites and use these bookmarks every time you visit the website.
- Whenever you enter personal information like your access ID or passcode, always look for the lock symbol, or https: in the address bar. Always click on the lock symbol and review the certificate details.
- Keep personal information personal. Hackers can use social media profiles to figure out your passwords and answer those security questions in the password reset tools. Lock down your privacy settings and avoid posting things like birthday’s addresses, mother’s maiden name, etc. Be wary of requests to connect from people you do not know.
- Carefully read all End User Licensing Agreements and avoid downloading software when licensing agreements are difficult to understand;
External 3rd Party Links
Our website may include links to other 3rd party web sites. These links to external 3rd parties are offered as a courtesy and a convenience to our customers. When you visit these sites, you will leave our website and will be redirected to another site.
This Institution does not control linked 3rd party web sites. We are not an agent for these third parties nor do we endorse or guarantee their products. We make no representation or warranty regarding the accuracy of the information contained in linked sites. We suggest that you always verify the information obtained from linked websites before acting upon this information. Also, please be aware that the security and privacy policies on these sites may be different from our policies, so please read third party privacy and security policies closely.
While using our website, you may still see our logo when linking to a 3rd party site. A technique called “Framing” allows us to display our logo and look and feel while allowing you to browse another site at the same time. It’s important to note that while you may still see our logo and frame, any information you provide to a 3rd party is not covered by our privacy or security policies.
This Institution and our Service Providers have developed strict policies and procedures to safeguard your Customer Information. Our policies require confidential treatment of your personal information. We restrict employee access to your personal information on a "need to know" basis and we take appropriate disciplinary measures to enforce employee privacy and confidentiality responsibilities. We have established training programs to educate our employees about the importance of customer privacy and to help ensure compliance with our policy requirements. The employees are also trained on the topics of the use of the Bank’s email systems, fraud and identity theft.
Furthermore, this Institution and our Service Providers maintain strong physical, electronic and procedural controls to protect against unauthorized access to customer information. Our computer systems are protected in the following ways:
- The Bank maintains a current website certificate for its secured Internet and mobile banking system.
- Computer anti-virus protection detects and prevents viruses from entering our website, email, and computer network systems.
- Firewalls and intrusion prevention systems block unauthorized access by individuals or networks.
- We use encryption technology, such as Secure Socket Layer (SSL), to protect the transmission of your confidential information. Whenever you login to our Internet banking product or schedule an online transaction through our system, the communication is encrypted. Encryption scrambles transferred data so it cannot be read by unauthorized parties.
- We use strong multi-level authentication and behavior analysis to help prevent unauthorized access to your accounts. Multi-level authentication can help prevent access by someone who may have stolen your login credentials.
- We provide secure email through our Internet Banking product to help ensure that your communications with us are confidential.
We continually monitor technological advances and upgrade our systems to ensure your information remains secure.
No matter how careful we are, Identity Theft may still happen to you.
I D Theft occurs when someone uses your personal information without your permission. Your personal information is then used to open a fraudulent credit card, apply for credit, file a fictitious tax return, or even rent an apartment. You will not even know there is a problem until you are notified of one of the past due “accounts” or pull a credit report.
Learn more from the following resources which will provide information concerning how Identity Theft happens, how it can be avoided and steps to restore your credit should you be a victim.
- Don’t share your secrets
- Shred sensitive papers
- Keep an eye out for missing mail
- Use online banking to protect yourself
- Monitor your credit report
- Protect your computer
- Protect your mobile device
- Report any suspected fraud to your bank immediately.
If you have become a victim of Identity Theft, when you report the theft you can start your credit recovery by following a plan at IdentityTheft.gov through the Federal Trade Commission (www.ftc.gov).
As you work with your credit card companies to have fraudulent loans removed, they will ask for a police report or an Affidavit of Theft. Reporting your theft will provide you the documentation of how to obtain the Affidavit of Theft.
You have the right to access and review your free annual credit report (https://www.annualcreditreport.com/) to look for inconsistencies. You can choose from each of the three credit reporting agencies, Equifax, Experian, Transunion.
Privacy of Children
COPPA, the Children's Online Privacy Protection Act, protects children under the age of 13 from the collection of personal information on the Internet. This financial institution respects the privacy of children. We do not knowingly collect names, emails addresses, or any other personally identifiable information from children. We do not knowingly market to children, nor do we allow children under 13 to open online accounts.
Our website may include linked 3rd party sites that would be of interest to children. We are not responsible for the privacy and security practices of these sites. Parents should review the privacy policies of these sites closely before allowing children to provide any personally identifiable information. Parents can also be proactive by installing filtering software that provides more control over the family's Internet experience
Effective Date: 8/15/2018