|
Please read the following precautions before using Cyberbanking: |
| |
| A. PIN Management |
|
1.
|
Do not disclose your PIN to anyone including any joint account holder(s). In addition, do not send your PIN via email and never use the same PIN to access other services. |
|
2.
|
Call the Bank immediately of any actual or suspected unauthorised use of your PIN and confirm your notification to the Bank in writing. |
|
3.
|
Do not, under any circumstances, disclose your PIN to anyone who claims to represent the Bank or who claims to be an employee of the Bank or other authorised person or the police. It is not necessary for anyone to know your PIN. The Bank will never ask you for your PIN by email, phone, or any other method. |
|
4.
|
Disable options on your browser to avoid storing or retaining your PIN on your personal computer. |
|
5.
|
Change your PIN immediately when using Cyberbanking for the first time and destroy any documents containing PIN information. |
|
6.
|
Do not use your HKID Card number, passport number, telephone number, date of birth, driving licence number, or any popular number sequences (such as 987654 or 123456) in your PIN. Avoid using the same digit more than twice (such as 111111 or 222222). |
|
7.
|
Do not write down your PIN - memorise it. |
|
8.
|
Be alert to your surroundings before conducting any banking transactions. Make sure no one sees your PIN and cover the keypad when you enter your PIN on any device, such as a personal computer, an ATM, or other self-service terminal. |
|
9.
|
For security reasons, change your PIN regularly. |
|
10.
|
Change your PIN immediately if you suspect that you have been deceived by a fraudulent website or email. For example, if you fail to log in to a service website after inputting your correct PIN, with or without any alert messages. |
| |
| B. Personal Computer and Email Protection |
|
1.
|
Take precautions against hackers, viruses, spyware, and any other malicious software when sending and receiving email, opening email attachments, visiting and disclosing personal / financial information to unknown websites, and downloading files or programmes from websites. |
|
2.
|
Increase your protection with proper firewalls, anti-virus software, and anti-spyware software, and update them with security patches or newer versions on a regular basis. Use such protection measures to scan your PC from time to time to strengthen the security of your personal computer. |
|
3.
|
Upgrade browsers and application software to support 128-bit SSL encryption or a higher encryption standard. |
|
4.
|
Remove file and printer sharing options on your personal computer, especially when you have Internet access via cable modem, broadband connection, wireless connection, or other similar set-up. |
|
5.
|
Do not use software or programme(s) from untrustworthy sources. |
|
6.
|
Do not click URLs or hyperlinks embedded in any email to access our Bank’s website. |
|
7.
|
Limit the number of people who can use your personal computer and set your own password for your personal computer if it has this facility. |
|
8.
|
Disable your browser’s “AutoComplete” function. On some browsers, this function remembers the data you input previously. Refer to your browser’s “Help” function if necessary. |
| |
| C. Accessing Cyberbanking |
|
1.
|
Keep your Cyberbanking account number confidential at all times and do not send account information via email. |
|
2.
|
Make sure that all other browsers are closed before logging in to Cyberbanking. |
|
3.
|
Input Cyberbanking or the Bank’s website into the address bar of a web browser directly. |
|
4.
|
Only access Cyberbanking through www.hkbea.com or www.hkbea-cyberbanking.com. |
|
5.
|
Every time you log in to Cyberbanking, please verify your last login date and time, displayed underneath “Welcome! [Your Name]” on the first page. |
|
6.
|
Do not click a hyperlink in an email, search engine, or any untrusted source to log in to Cyberbanking. |
|
7.
|
Confirm the authenticity of the Bank’s website by comparing the URL and the Bank’s name in its digital certificate. A security icon resembling a lock or key appears when authentication and encryption are activated. |
|
8.
|
Always log out and then clear the browser
cache after each banking session. |
|
9.
|
Do not leave your personal computer unattended while using Cyberbanking. |
| 10. |
Do not use / install any software or programme to access Cyberbanking. |
| 11. |
Access Cyberbanking with browsers recommended by the Bank. |
|
12.
|
Do not use public computers to access Cyberbanking. |
|
13.
|
Check your bank balance and transaction history regularly. Notify the Bank immediately if you discover any errors or unauthorised transactions. |
|
14.
|
Regular review and follow security tips issued by the Bank. |
|
15.
|
Contact the Bank for confirmation immediately whenever a website claiming to originate from the Bank looks suspicious to you. |
| |
| D. Use of Digital Certificate |
|
1.
|
Keep your digital certificate private key and password confidential at all times. Do not disclose the password to any person including any joint account
holder(s). In addition, do not send your password via email and never use the same password to access other services. |
|
2.
|
Call the Bank immediately of any actual or suspected unauthorised use of your digital certificate and confirm your notification to the Bank in writing.. |
|
3.
|
Do not, under any circumstances, disclose your digital certificate password to anyone who claims to represent the Bank or who claims to be an employee of the Bank, or other authorised person or the police. It is not necessary for anyone to know your password. The Bank will never ask for your password by email, phone, or any other method. |
|
4.
|
Disable options on browser to avoid storing or retaining your digital certificate password on your personal computer. |
|
5.
|
Do not use your HKID Card number, passport number, telephone number, date of birth, driving licence number, or any popular number sequences (such as 987654 or 123456) in your digital certificate password. Avoid using the same digit more than twice (such as 111111 or 222222). |
|
6.
|
Set a password to protect your digital certificate immediately after you have received your digital certificate. |
|
7.
|
Do not write down your digital certificate password - memorise it. |
|
8.
|
Be alert to your surroundings before conducting any banking transactions. Make sure no one sees your digital certificate password and cover the keypad when you enter your password on any device, such as a personal computer or other self-service terminal. |
|
9.
|
For security reasons, change your digital certificate password regularly. |
|
10.
|
Notify the Bank of any change to the information provided to a Certificate
Authority (“CA”) as soon as such change occurs. The Bank
will not in any event be held liable for any loss or damage resulting
from or in connection to your failure to do so. |
|
11.
|
Do not use your digital certificate after it has been cancelled or revoked, or has otherwise become invalid. |
| |
| E. Other Notes |
|
1.
|
Check your bank statement(s) regularly and inform the Bank immediately if you find any suspicious or unusual transactions. |
|
2.
|
Keep your digital certificate, ATM Card, bank statements, cheque books, and other important documents in a safe place. If you want to discard any documents that contain your personal information, destroy them first. |
|
3.
|
Under no circumstances shall the Bank, by way of email, ask for your personal information, such as your password, HKID Card number, date of birth, credit card number, credit card expiry date, etc. In addition, we will not ask you to access the Bank’s website by clicking hyperlinks attached to any email. |
|
4.
|
Check the website’s privacy policy statement and statement on security safeguards before providing personal data to the website. |
|
|
|
|
