- Strong encryption (128-bit). All data sent to
and from Citibank is scrambled and then reassembled
between Citibank and your personal computer. 128-bit
encryption is the highest level of encryption generally
available today.
- ATM PIN. Your Citicard ATM PIN, known only to
you, must be entered every time you sign-on to Citibank®
Online. Remember to keep your ATM PIN confidential
and never store it on your personal computer.
- Automatic Time Out. Your Citibank® Online
session will be automatically terminated if there
is no activity for 4 minutes. This is to prevent
any unauthorized access should you be called away
from your personal computer
Back to Top
What is encryption?
Encryption technology allows secure transmission of
information through the internet by encoding the transmitted
data using a mathematical formula that scrambles the
data. Without a corresponding decoder, the transmission
would look like garbled text and render it unusable.
Back to Top
Can unauthorized persons access my account?
No. Only you and your authorized signatories using
your CIN (Citicard/credit card number) and ATM PIN
(Citicard/credit card ATM PIN) will be allowed access
to your accounts in Citibank® Online. It's important
then that you keep your CIN and ATM PIN confidential
at all times.
And always remember to Sign-Off and close the Citibank®
Online application at the end of each session.
Back to Top
How do you ensure my privacy is protected?
Keeping customer information secure and using it only
as our customers would want us to, is a top priority
at Citibank. Read our Citibank Privacy Statement for
more details.
Back to Top
Useful tips on how to protect your PIN
and personal details
A PIN allows you to access your account, whether it’s
through internet banking, telephone banking, or even
through the ATM whenever you need cash.
Here are some safety measures you can take to ensure
your PIN is kept private and confidential.
- Your PIN should contain only numeric characters.
- You should not use the same digit more than twice.
- Your PIN should not be based on your birthday,
user-ID, personal telephone number or any other
personal information.
- Keep your PIN confidential at all times and do
not divulge it to anyone.
- Memorize your PIN and do not record it anywhere
and do not save your PIN on your computer.
- Change your PIN regularly.
- The same PIN should not be used for different
websites, applications or services especially when
they relate to different entities.
- Check the authenticity of the bank’s website
by comparing the URL and the bank’s name in
its digital certificate.
- Check that a security icon that looks like a
lock or key appear when authentication and encryption
is expected.
- Check your bank account balance and transactions
frequently and report any discrepancy at once.
- Your browsers and application software should
be upgraded to support the 128-bit encryption standard.
Back to Top
Security precautions and good practices on internet
usage?
Here are some measures you can take to ensure the
safety and security of your personal information:
- Install anti-virus software and firewalls in your
personal, home and office computers, particularly
when they are linked via broadband connections,
digital subscriber lines or cable modems.
- Update these anti-virus and firewall products
with security patches or newer versions regularly.
- Remove file and printer sharing in your computer,
especially when you have internet access via cable
modems, broadband connections or similar set-ups.
- Backup critical data regularly.
- Consider using encryption technology to protect
highly sensitive data.
- Log off the online session and turn off your
computer when not using.
- Clear the browser cache memory right after you
sign off.
- Do not install software or run programs if you
do not know their origin.
- Delete junk and chain emails.
- Do not open any attachments from strangers or
suspicious-looking attachments from friends.
- Do not store or retain your user name and password
on your browser.
- Do not disclose your personal, financial or credit
card information to unfamiliar or unknown websites.
- Do not use a computer or any device which cannot
be trusted.
- Do not use public or internet café computers
to access your bank accounts online and do not perform
any financial transaction.
Back to Top
Guarding yourself
against website spoofing
Website spoofing is a technique used to gain unauthorized
access to information in which an attacker communicates
with a legitimate user under a false pretence.
Eg the attacker may pose as your bank to gain confidential
information from you by making you believe that he
is from your bank.
Do guard yourself against these spoofing techniques
and be alert when asked for confidential and sensitive
information regarding yourself.
Here are some guidelines for you to take note of:
- Any email that asks you to provide confidential
data especially your PIN or Citicard Identification
Number. Citibank will never ask you to provide this
information via regular email.
- Any online forms that are attached to an email
which entices you to provide sensitive data such
as your PIN and Citicard Identification Number on
the form and to “Submit” or “Send”
the form.
- Any email which asks you to visit a Citibank
website to provide information such as your PIN
and Citicard Identification Number. You should verify
that it is a Citibank website before you log in.
To verify that the website is a Citibank website,
click on “Lock icon” in your browser.
Upon clicking, a digital certificate will appear
which states “Issused to citibank.com.sg”.
- Fraudulent merchant sites which obtain credit
card particulars. You should know who you are doing
business with on the internet, and be wary about
giving your credit / debit card particulars to dubious
or suspicious sites.
- If you suspect that an email or website that
asks you for confidential information is fraudulent,
please notify us by calling CitiPhone Banking at
(65) 6224-5757 immediately.
Back to Top
|
Security
