How we protect you
We take the protection and security of your information, transaction data and privacy seriously.
Our commitment to your security and privacy
We have employed a wide range of security measures to help protect your personal information and transactions. These measures extend from data encryption to firewalls to automatic time-outs. Therefore, when you do your banking online or via mobile devices with us, you can be assured that your banking is safeguarded and protected.
Our guarantee to you
In the unlikely event that an unauthorised transaction does occur on your account, we guarantee that you will not be liable for any unauthorised transaction carried out (provided you meet your obligations under our Conditions of Use, the ASIC ePayments Code and you haven't contributed to the loss).
It's all part of our commitment to you, our Members.
|Our Online Security Practices|
Our website provides users with a range of security practices
Our website and Online Banking are protected by sophisticated firewalls with adaptive security algorithms (ASA) which maintain the secure perimeters between the websites and the Internet. This provides full firewall protection that conceals the architecture of the internal networks from the outside world including protection against attacks.
Whenever you use our Online Banking service or submit information to us using one of the main online forms available on our website, your information is protected by banking industry standard 128-bit SSL (Secure Socket Layer) encryption. Encryption is a process of scrambling information using random mathematical algorithms ensuring that only we can receive this information in an understandable format. SSL is a protocol developed by Netscape that enables a web browser and a web server to communicate securely. Security is provided in two different ways:
You can identify whether the Online Banking session is secure or encrypted when you see a padlock in the corner of your browser window. Clicking on the padlock will also provide you with details on the Security Certificate pertaining to the encrypted session.
The combination of our SSL-enabled web server and a valid security certificate provides you with three things:
Data transmission of our main online forms is protected through the application of SSL certificates.
For your further protection, our Online Banking system has been set to automatically "log out" after 10 minutes if your banking session remains unattended. This means that should you leave your computer for any reason for longer than 10 minutes whilst conducting an Internet Banking session, the system will end your session to ensure that no-one else can access your personal information in your absence. We recommend for your security you logout of our mobile and tablet app once you’ve completed your banking activities. If your session remains inactive you’ll be automatically timed out.
Incorrect access codeblock
With our Internet Banking Service, after 3 incorrect attempts to enter your access code, access will be locked. This is to ensure that there is no unauthorised access to your account details.
If your account becomes locked, it will then be necessary to contact us to request that your Internet Banking access be reinstated.
To avoid incorrect access code attempts, we strongly recommend that you have a password of your own choosing which will be easy for you to remember, and that you should also be aware that the access code are case sensitive so you need to check your Caps Lock key.
If you are still experiencing difficulties with your Online Banking or our web page, please contact us and we will address any issues during normal business hours.
Last login time check
Our Online Banking also provides you with information on the date and time of your last session. This allows you to check the most recent session each time you use Online Banking to ensure that nothing is out of the ordinary.
|Our Online Communication Practices|
We will occasionally send you emails advising you of important information relating to your Membership. We will never ask for your password or account details to be disclosed via a link within an email message. If you receive an email of this nature, please disregard the email, delete it from your computer and contact us to notify us of the existence of the scam.
To safeguard your personal information, we have adopted the following communication practices.
Furthermore, we will ensure we are always compliant with all online communication legislation and relevant codes of practice. In particular, we will abide by the requirements of the Spam Act 2003 and will ensure that: