Online Privacy & Security Information

The privacy of communications between you (your browser) and our servers is ensured via encryption. Encryption scrambles messages exchanged between your browser and our online banking server.

How Encryption Works

• When visiting online banking's sign-on page, your browser establishes a secure session with our server.
• The secure session is established using a protocol called Secure Sockets Layer (SSL) Encryption. This protocol requires the exchange of what are called public and private keys.
• Keys are random numbers chosen for that session and are only known between your browser and our server. Once keys are exchanged, your browser will use the numbers to scramble (encrypt) the messages sent between your browser and our server.
• Both sides require the keys because they need to descramble (decrypt) messages received. The SSL protocol assures privacy, but also ensures no other website can "impersonate" your financial institution's website, nor alter information sent.
• To learn whether your browser is in secure mode, look for the secured lock symbol at the bottom of your browser window.

Encryption Level

The numbers used as encryption keys are similar to combination locks. The strength of encryption is based on the number of possible combinations a lock can have. The more possible combinations, the less likely someone could guess the combination to decrypt the message.

---

Transport Layer Security (TLS)

To ensure the highest levels of data protection, the minimum security requirements for online banking will be updated to Transport Layer Security (TLS) 1.2 protocol beginning June 2017.

Transport Layer Security (TLS) is a protocol that ensures privacy between communicating applications and their users on the Internet. When a server and user communicate, TLS ensures that no third party can eavesdrop or tamper with any message.

This change is happening throughout the industry in response to PCI Security Council mandates and other general operating standards for transmitting sensitive data. Most browsers have supported TLS for at least the last few years.

Every website that transmits or processes credit card data will require this protocol. If you are using an unsecure or non-supporting browser, you will lose access to secure websites. A comprehensive list of supported browsers is available here: https://www.ssllabs.com/ssltest/clients.html

To determine if your browser supports TLS:

• Visit the following website: https://www.ssllabs.com/ssltest/viewMyClient.html
• A message stating, "Your user agent has good protocol support" should display.

If you do not see this message, please update your browser or install a newer supported browser. Users must upgrade to maintain access to online banking.

More information on some common browsers is available via these links:

• Microsoft Internet Explorer
• Firefox
• Safari