Our Security Commitment
Banterra is committed to protecting the privacy of our customers' information. We know that your financial information is personal and take our responsibility for protecting this information seriously.
We maintain physical, electronic and procedural safeguards to protect the integrity and confidentiality of your information. We restrict access to nonpublic personal information about you to those of our employees whose position with us requires them to have access to your information in order to provide products or services to you. We train our employees to understand and comply with our privacy of information principles.
Our Environment
Our network and data centers are protected by multiple layers of physical, procedural and technical controls. We continuously monitor activity to ensure systems are secure from unauthorized entry attempts.
Banterra values your confidence in us and takes our obligations to protect the privacy of your financial information seriously. Your trust in us is extremely important. Find out more about how we protect you and your privacy by reading our Privacy Policy.
Security
Security refers to preventing unauthorized access to a computer system or network. Security, quite simply, protects the confidentiality of the account-holder's financial information and prevents theft of their assets. It is important to Banterra and our account holders to know that Online Banking transactions are private and secure.
Online Security
Banterra's website provider, Intuit Financial Services, uses sophisticated security architecture to prevent unauthorized users from gaining access to sensitive information providing a secure environment that authenticates Online Banking users. Intuit Financial Services uses several layers of technology to prevent unauthorized users from gaining access to their internal network and they maintain a Security and Compliance Department to oversee the security functions within the corporation.
Intuit Financial Services utilizes access control mechanisms, strong authentication, real-time intrusion detection, VPNs and enterprise security management products, including firewalls. The firewalls in place protect Intuit Financial Services from incidents including IP spoofing, denial of service, and the use of hacker tools. The firewall provides the highest level of perimeter security and is configured to allow only network traffic that is recognizable as 'safe'. They utilize a firewall between the Internet and our website, thereby preventing your account data from being directly accessible over the Internet.
In addition, Banterra's data processor, Computer Services, Inc., utilizes firewall security that serves as a complete Internet gateway and security system. This firewall prohibits any unauthorized access to the secured network.
Individuals surfing our website with a browser that supports authentication and encryption have the option of utilizing Banterra's secure website.
Encryption
Your connection to our Online Banking products is secured with 128-bit SSL encryption, the industry standard for secure communication using the Internet. Intuit Financial Services provides a secure environment that authenticates the user, validates their requests, and protects sensitive data from interception/alteration by means of encryption. Encryption is used when storing sensitive passwords, ensuring that this information is not accessible by Banterra employees. Such protection ensures that only the account holder will have knowledge of all authentication information needed to access their private account data.
Everything that travels through the Internet during your online session-from your password to the information used to create an ACH batch-becomes a string of unrecognizable numbers before entering the Internet. Both Intuit Financial Services computers and the browser you use understand the mathematical formulas, called algorithms, which serve as door-locks on your account information.
Browsers
Browsers play a vital role in encryption. Intuit Financial Services tests browsers to make sure they provide the encryption level required for Online Banking needs. To conduct banking sessions, your browser is required to have 128-bit encryption.
The reason we require the use of a 128-bit encrypted browser is simple -- we want to protect the integrity and security of your information. Many browsers are 40-bit encrypted. Software that uses 128-bit encryption is roughly 300,000,000,000,000,000,000,000,000 times more protective than 40-bit encryption.
Use of Cookies
A "cookie" is a small text file or text identifier placed on computers. Cookies are commonly used on websites and do not harm computers or systems. All private data stored in cookies by Intuit Financial Services' system is encrypted. All cookies used during an Online Banking Session are temporary, which means that they are active only as long as the customer's browser is running and are deleted when the Online Banking session has ended. Cookies must be enabled on your browser to allow proper functionality.
Use of JavaScript at the Browser
Java is a programming language used to automate tasks on your computer. Intuit Financial Services uses JavaScript to perform validation of data entered. JavaScript processing must be enabled in your browser when accessing Online Banking.
Individualized Password
When you register for Online Banking, we ask you to create your own password to access your accounts. This information is encrypted during transmission and will remain a secret as long as you do not disclose it.
Timed Log-off
Our system will automatically log you off from Online Banking within the time out period you have selected. The default time out period is 10 minutes. You can select the time out period under User Options behind Online Banking. This reduces the risk of others accessing information from your unattended computer.
Password Security
Passwords that are used to access Online Banking are configured to automatically expire to protect the account holder's information. Although the expiration of passwords may pose a minor inconvenience, we follow this practice to ensure the security and confidentiality of sensitive account holder data. In general, the longer a password is in use, the more likely it is to be discovered. Passwords that do not expire make it easier for malicious individuals to gain unauthorized access.
How to Choose a Good Password
Coming up with a good password can be difficult, so here are some guidelines to use.
- Choose a password with a combination of lower and upper case alphabetic characters, numbers, and special characters.
- Choose a long password.
Here are some methods of making passwords:
- Choose a line or two from a song, poem or phrase, and use the first, second or last letter of each word. "You can't always get what you want" would yield "ycagwyw". Throw in a capital letter and a punctuation mark or a number or two, and you can end up with "yCag4wyw".
- Choose two short words (or one big one that you split) and concentrate them together with one or more special characters or digits between them. For example, "dog+F18" or "comP77Uter". Note that "dog", "F18" and "computer" are in dictionaries but as the passwords use special characters, digits, or mixed-case characters, they are difficult to guess.
- Alternate between one consonant and one or two vowels and use mixed-case.
- Deliberately misspelling one or more words can make your password harder to crack.
- Use several of the techniques above.
Please note that if you use mixed-case characters, do not use the following methods (they are tried by most cracking programs):
- Only the first or the last character in uppercase
- Only vowels in uppercase
- Only consonants in uppercase
In general, a good password should:
- Not be based on personal information that can be easily guessed or obtained (license plate numbers, telephone numbers, the brand of your car, the name of the street you live on, the name of your children, your pet’s name, birth date, etc.) Make your password difficult for others to guess. This is not as hard as it initially seems. See the section above on choosing a good password.
- Not be the same as any password you use for anything else.
- Not be your user name or login name in any form (as-is, reversed, capitalized, doubled, with a prefix, etc.)
- Not be a word that can be found in any dictionary of any language, spelling lists, or other words (acronyms, place names, car names, etc.)
- Not be any word in a "cracking dictionary." There are lists of words that crackers use to try to crack passwords. Some of these lists include abbreviations, asteroids, biology, cartoons, character patterns, machine names, female names, famous names, male names, bible, movies, myths-legends, number patterns, short phrases, places, science fiction, songs, sports, etc.
Enhanced Login Security
Online Banking Security – Everyday, Everywhere!
Additional steps to verify your identity are used to strengthen security at login by providing an additional end- user authentication “factor” beyond the username and password. This additional security is called Enhanced Login Security.
Features & Benefits
- You will enroll each computer on which you plan to conduct Online Banking activities. There is no limit on the number of computers you can enroll. After you have enrolled your first computer, additional computers can be enrolled by selecting Enhanced Login Security under User Options within your Online Banking session.
- Enrolling your computer will place a browser-based secure cookie with an individualized credential (ID) on your computer as a second authentication factor in addition to your username and password. The cookie-based credential is a unique identifier to you. It is encrypted and no externally identifiable end user information is stored in it.
- Prevents unauthorized access using stolen usernames and passwords on a non-enrolled computer.
- You can authenticate temporarily on a computer you have not enrolled by answering challenge questions.
- You can un-enroll a computer you no longer wish to use for Online Banking activities.
Protecting Yourself Online
As your financial institution, we take every measure possible to protect you from fraud. The password is a vital part of account security when using Banterra's Online Banking. When combined with your user ID, your password is like a key to your account and needs to be safeguarded.
1. Secure Your Password
NEVER give your password to anyone."Anyone" means your coworkers, friends and even your spouse.
Always memorize your password and do not write it down. If you forget your password, we can reset your account with a temporary password.
Banterra Bank will NOT ask you for your online ID or password by telephone or by email.
See our tips on How to Choose a Good Password.
2. Secure your computer
New viruses are being found all the time. Further, the speed at which these new viruses spread is increasing all the time. A key problem is not that antivirus programs do not detect such viruses, but the fact that most users do not use an antivirus program at all or, perhaps worse, the antivirus software and / or virus definitions are out of date.
Recent observations of worms and viruses that have appeared on the Internet carry with them a variety of problems. Some worms have the capability to install software on an end user's computer that specifically seeks out Internet Banking or financial data, with the intent of communicating that data back to the attacker who wrote the worm.
There are certain precautions you should take to keep your computer safe from viruses and hackers.
Update your virus protection software regularly or when a new virus alert is announced. Computer viruses can have a variety of damaging effects, including introducing program code that causes your computer to send out files or other stored information. Be on the alert for security repairs and patches that you can download from your operating system's website.
3. Be aware of spyware
Spyware is software loaded on your computer without your knowledge. It collects personal information about you and your Internet browsing habits in order to launch pop-up ads or change the configuration of your computer.
Check your system regularly for spyware. Several third party vendors provide anti-spyware applications you can download, some free of charge.
ATM Security
As with all financial transactions, please exercise discretion when using an ATM or night deposit facility.
- ATM User Safety Precautions
- How to avoid ATM fraud and scams
How to avoid ATM fraud and scams
We are committed to safeguarding your privacy and security at all times. You can also help protect yourself by being aware of these four common ATM scams and taking steps to avoid them.
Scam #1: Card skimming
Skimmers are devices illegally added to ATM machines to capture account numbers, account balances and PIN numbers. You may find a card skimmer mounted over the normal ATM card slot or beside it with a sign that reads "Slide card here first" or a similar message.
Scam #2: The loop
This scam involves a blocking device that is inserted into the card slot of an ATM machine. When your card appears to be stuck, a common reaction is to go into the bank to report the problem. That's when the thieves jump into action by removing the blocking device and withdrawing money from your account.
In another variation, a "Good Samaritan" suggests that you enter your PIN number a couple of times or offers to hold the cancel button while you enter your PIN. Rather than helping, they're actually memorizing your PIN number.
Scam #3: Shoulder surfing
Another way to glean your ATM PIN number is for thieves to mount a wireless video camera inside the ATM area designed to capture video of you entering your number into the keypad. Once the scammers have your number, magnetic strips are easy to make and thieves are able to reproduce ATM cards.
Scam #4: Cash trapping
In this scam, your cash is trapped by a sleeve or device slipped inside the cash dispenser that blocks your cash from coming out of the machine. The thieves hope you assume the machine is out of order and you walk or drive away, or go inside the bank to report the incident.
Five simple tips to protect yourself from ATM scams.
- Become familiar with the ATM machines you use regularly and be able to recognize changes to the machine and its surroundings. Be wary of any device that looks temporarily added or affixed to the machine.
- Never rely on the help of a stranger to retrieve a confiscated card or to help you with a card that isn't working properly.
- Never use an ATM machine when other people are lingering or seem suspicious.
- Always report confiscated cards immediately.
- Avoid ATM machines with extra signage or warnings posted on the machine.
ATM Locations
NOTICE OF ATM/NIGHT DEPOSIT FACILITY USER PRECAUTIONS
As with all financial transactions, please exercise discretion when using an ATM or night deposit facility. For your own safety, be careful. The following suggestions may be helpful.
1. Prepare for your transactions at home (for instance, by filling out a deposit slip) to minimize your time at the ATM or night deposit facility.
2. Mark each transaction in your account record, but not while you are at the ATM or night deposit facility. Always save your ATM receipts. Do not leave them at the ATM or night deposit facility because they may contain important account information.
3. Compare your records with the account statements you receive.
4. Do not lend your ATM Card to anyone.
5. Remember, do not leave your Card at the ATM. Do not leave any documents at a night deposit facility.
6. Protect the secrecy of your Personal Identification Number (PIN). Protect your ATM Card as though it were cash. Do not tell anyone your PIN or give any information regarding your ATM Card or PIN over the telephone. Do not write your PIN where it can be discovered. For example, do not keep a note of your PIN in your wallet or purse.
7. Prevent others from seeing you enter your PIN by using your body to shield their view.
8. If you lose your ATM Card or it is stolen, promptly notify us.
9. When you make a transaction, be aware of your surroundings. Look for suspicious activity near the ATM or night deposit facility, particularly if it is after sunset. At night, be sure the facility (including the parking area and walkways) is well lighted. Consider having someone accompany you when you use the facility, especially after sunset. If you observe any problem, go to another ATM or night deposit facility.
10. Do not accept assistance from anyone you do not know when using an ATM or night deposit facility.
11. If you notice anything suspicious or if any other problem arises after you have begun an ATM transaction, you may want to cancel the transaction, put your Card away, and leave. You might consider using another ATM or coming back later.
12. Do not display your cash; put it away as soon as the ATM transaction is completed and count the cash later when you are in the safety of your own car, home, or other secure surrounding.
13. At a drive-up facility, make sure all the car doors are locked and all of the windows are rolled up, except the driver's window. Keep the engine running and remain alert to your surroundings.
14. We want the ATM and night deposit facility to be safe and convenient for you; therefore, please tell us if you know of any problem with a facility. For instance, let us know if a light is not working or there is any damage to a facility. Please report any suspicious activity or crimes to both the operator of the facility and local law enforcement officials immediately.
