Bank’s Commitment to Privacy
Collection and Use of Information
Bank will only use the information which is provided through the Payment Portal to help the Bank:
- facilitate payments
- improve our Services to you
- provide you with the products and services you have requested
- process transactions and send notices about your transactions
- provide customer support
- compare information for accuracy and verify it with third parties
- inform you about additional products or services that may be of interest to you
- refine our marketing efforts and for other internal purposes
Bank occasionally hires other companies to provide limited services on our behalf, including packaging, mailing and printing, answering customer questions about products or services, sending mail and processing event registration. Bank will only provide these companies with the information they need to deliver the specific service they were engaged to assist Bank in providing, and they are prohibited from using that information for any other purpose. Other than what is described, Bank does not sell, trade or rent your personal information to others outside of Bank companies and their advertising and promotional agencies and consultants.
Information that Bank collects
When Customer registered for IP Services, Bank collected the following types of information:
- Contact information – Customer’s and Users’ names, addresses, phones, emails, and other similar information.
- Financial information – Customer’s bank account numbers and routing information so that Customer may make payments through the Payment Portal.
Before permitting Customer or a User to use IP Services, Bank may require Customer or a User to provide additional information Bank can use to verify your identity or banking information. Bank may also obtain information about Customer or a User from third parties such as credit bureaus and identity verification services. Finally, Bank may collect additional information from or about Customer or a User in other ways not specifically described here. For example, Bank may collect information related to a User’s contact with Bank’s customer support team or store results when a User responds to a survey.
Bank sends a "session cookie" to a User’s computer when a User logs in to the Payment Portal account. This type of cookie helps Bank to recognize the User if the User visits multiple pages on the Payment Portal during the same session, so that Bank will not need to ask the User for their password on each page. Once a User logs out or closes their browser, this cookie expires and no longer has any effect.
Bank encodes its cookies so that only Bank can interpret the information stored in them. Users are free to decline Bank’s cookies if their browser permits, but doing so may interfere with a User’s use of the Payment Portal. Bank may also collect information about a User’s computer or other access device to mitigate risk and for fraud prevention purposes.
The cookies Bank uses are for Payment Portal management purposes and do not contain any sensitive information such as a User’s password or account number. Bank does not share information collected by using cookies, except as permitted by law.
In addition, in the course of using the Payment Portal Bank automatically tracks certain information about the User. This information includes the URL that the User just came from (whether this URL is on the Payment Portal or not), which URL the User goes to next (whether this URL is on the Payment Portal or not), what browser the User is using, the User’s Internet Protocol address, operating system, browser version and the name of the page that was viewed. This information is not linked to any specific User, and is used in the aggregate to maintain and improve the Payment Portal. Many sites automatically collect this information.
Updating Your Information
All of a User’s account-related information can be corrected or updated at any time by visiting the "MY Profile" section of the Payment Portal. After a User logs into the Payment Portal, the "My Profile" section is always available.
Bank has implemented a number of security features throughout the Payment Portal to prevent the unauthorized release of or access to information. The Payment Portal uses secure socket layer (SSL) to encrypt the transfer of sensitive information, such as account passwords and payment information, between a User’s web browser and Bank’s servers. The same SSL protocol also acts to authenticate the Payment Portal site and prevent unauthorized "hackers" from masquerading as the Payment Portal. This is accomplished through a "digital certificate", which is an electronic "identity card" that cannot be forged. If another website attempts to falsely identify itself the Payment Portal the User’s web browser will display a warning indicating that there is a problem with the digital certificate for the Payment Portal. Do not log in to the Payment Portal if you see any such warning.
Bank Data Center Security
Bank data centers are located in facilities protected via physical, electronic and procedural safeguards. These facilities are secured 24 hours a day and log the physical movement of all authorized visitors via electronic badge locks and motion sensors. The Payment Portal servers are located in a separately locked area within these secure facilities. The servers communicate with each other using a private network behind a firewall designed to prevent any unauthorized access to Bank’s machines. Bank authorizes access to data only for those individuals who require it to fulfill their job responsibilities.
How You Can Help Keep Your Information Secure
The most important step you can take to keep your and your employer’s information secure is to keep your password secure. Do not give your password to other people, and avoid choosing "easily guessed" passwords (e.g., any single word in the dictionary, proper names of people and places easily associated with you, etc.). Change your password immediately if you suspect someone has been accessing your account without your permission (click on the "Preferences" section of the Payment Portal after logging in).
If for any reason you suspect a security violation has occurred, please immediately send an email to firstname.lastname@example.org with a description of the situation.
External Web Sites
To the extent hyperlinks or banner advertisements incorporating hyperlinks are utilized to access third party sites, Users should be aware that these third-party web sites are not controlled by Bank and, therefore, are not subject to this Policy. Users should check the privacy policies of these individual sites to see how your personal information will be utilized by the operators of those third-party web sites.
By using the Payment Portal, each User and Customer consent to the collection and use of this information by Bank, and their respective employees, agents and affiliates. Bank may modify this Policy from time to time. If Bank decides to modify this Policy, Bank will post those changes on this page. Continued use of the Payment Portal following the posting of changes to these terms will mean Customer and each User accepts these changes. Please contact Bank for more details.
How to Contact Us
Should you have other questions or concerns about this Policy, please contact your Relationship Manager and/or Treasury Management Officer.