Privacy Policy

This Privacy Policy (this “Policy”) relates to use of the Customer Portal maintained by People’s United Bank, N.A. (“Bank”) for the benefit of its customers as part of its Invoice to Pay Service (hereinafter “Services” or “ITP Services”). Receipt of Invoice to Pay Service is subject to the terms of an Invoice to Pay Service Agreement entered into between Bank and the customer named therein (hereinafter, “Customer”). Capitalized terms used herein and not otherwise defined shall have the meanings ascribed to such terms in the Invoice to Pay Service Agreement. Pursuant to the terms of the Service Agreement, Customer authorizes various individuals to be Users, with each User having the ability to access the Customer Portal in the name of, and on behalf of the Customer. Upon accessing and using the Customer Portal, Users may submit information of a sensitive nature concerning the User and/or the Customer. This Policy describes Bank’s commitment to protecting all User and Customer non-pubic information. By subscribing to ITP Services, Customer agrees to this Policy as does each User when they access the Customer Portal.

Bank’s Commitment to Privacy

Bank is committed to maintaining your confidence and trust (in this Policy, “you” and “your” can refer to a User, the Customer, or both, depending on the context), and accordingly maintains the following Privacy Policy to protect the sensitive and personal information you provide online. This Policy describes the ways Bank collects, stores, uses and protects your personal information. Bank may amend this Policy at any time by posting a revised version on the Customer Portal. The revised Policy will be effective at the time the Bank posts it. Questions regarding this Policy should be directed to your Relationship Manager and/or Treasury Management Officer.

Collection and Use of Information

Bank will only use the information which is provided through the Customer Portal to help the Bank:

  • facilitate payments
  • improve our Services to you
  • provide you with the products and services you have requested
  • process transactions and send notices about your transactions
  • provide customer support
  • compare information for accuracy and verify it with third parties
  • inform you about additional products or services that may be of interest to you
  • refine our marketing efforts and for other internal purposes

Bank occasionally hires other companies to provide limited services on our behalf, including packaging, mailing and printing, answering customer questions about products or services, sending mail and processing event registration. Bank will only provide these companies with the information they need to deliver the specific service they were engaged to assist Bank in providing, and they are prohibited from using that information for any other purpose. Other than what is described, Bank does not sell, trade or rent your personal information to others outside of Bank companies and their advertising and promotional agencies and consultants.

Information that Bank collects

When Customer registered for ITP Services, Bank collected the following types of information:

  • Contact information – Customer’s and Users’ names, addresses, phones, emails, and other similar information.
  • Financial information – Customer’s bank account numbers and routing information so that Customer may make payments through the Customer Portal.

Before permitting Customer or a User to use ITP Services, Bank may require Customer or a User to provide additional information Bank can use to verify your identity or banking information. Bank may also obtain information about Customer or a User from third parties such as credit bureaus and identity verification services. Finally, Bank may collect additional information from or about Customer or a User in other ways not specifically described here. For example, Bank may collect information related to a User’s contact with Bank’s customer support team or store results when a User responds to a survey.


Bank sends a "session cookie" to a User’s computer when a User logs in to the Customer Portal account. This type of cookie helps Bank to recognize the User if the User visits multiple pages on the Customer Portal during the same session, so that Bank will not need to ask the User for their password on each page. Once a User logs out or closes their browser, this cookie expires and no longer has any effect.

Bank encodes its cookies so that only Bank can interpret the information stored in them. Users are free to decline Bank’s cookies if their browser permits, but doing so may interfere with a User’s use of the Customer Portal. Bank may also collect information about a User’s computer or other access device to mitigate risk and for fraud prevention purposes.

The cookies Bank uses are for Customer Portal management purposes and do not contain any sensitive information such as a User’s password or account number. Bank does not share information collected by using cookies, except as permitted by law.

In addition, in the course of using the Customer Portal Bank automatically tracks certain information about the User. This information includes the URL that the User just came from (whether this URL is on the Customer Portal or not), which URL the User goes to next (whether this URL is on the Customer Portal or not), what browser the User is using, the User’s Internet Protocol address, operating system, browser version and the name of the page that was viewed. This information is not linked to any specific User, and is used in the aggregate to maintain and improve the Customer Portal. Many sites automatically collect this information.


Bank has implemented a number of security features throughout the Customer Portal to prevent the unauthorized release of or access to information. The Customer Portal uses secure socket layer (SSL) to encrypt the transfer of sensitive information, such as account passwords and payment information, between a User’s web browser and Bank’s servers. The same SSL protocol also acts to authenticate the Customer Portal site and prevent unauthorized "hackers" from masquerading as the Customer Portal. This is accomplished through a "digital certificate", which is an electronic "identity card" that cannot be forged. If another website attempts to falsely identify itself the Customer Portal the User’s web browser will display a warning indicating that there is a problem with the digital certificate for the Customer Portal. Do not log in to the Customer Portal if you see any such warning.

Bank Data Center Security

Bank data centers are located in facilities protected via physical, electronic and procedural safeguards. These facilities are secured 24 hours a day and log the physical movement of all authorized visitors via electronic badge locks and motion sensors. The Customer Portal servers are located in a separately locked area within these secure facilities. The servers communicate with each other using a private network behind a firewall designed to prevent any unauthorized access to Bank’s machines. Bank authorizes access to data only for those individuals who require it to fulfill their job responsibilities.

How You Can Help Keep Your Information Secure

The most important step you can take to keep your and your employer’s information secure is to keep your password secure. Do not give your password to other people, and avoid choosing "easily guessed" passwords (e.g., any single word in the dictionary, proper names of people and places easily associated with you, etc.). Change your password immediately if you suspect someone has been accessing your account without your permission (click on the "Preferences" section of the Customer Portal after logging in).

If for any reason you suspect a security violation has occurred, please immediately send an email to with a description of the situation.

External Web Sites

To the extent hyperlinks or banner advertisements incorporating hyperlinks are utilized to access third party sites, Users should be aware that these third-party web sites are not controlled by Bank and, therefore, are not subject to this Policy. Users should check the privacy policies of these individual sites to see how your personal information will be utilized by the operators of those third-party web sites.

Your Consent

By using the Customer Portal, each User and Customer consent to the collection and use of this information by Bank, and their respective employees, agents and affiliates. Bank may modify this Policy from time to time. If Bank decides to modify this Policy, Bank will post those changes on this page. Continued use of the Customer Portal following the posting of changes to these terms will mean Customer and each User accepts these changes. Please contact Bank for more details.

How to Contact Us

Should you have other questions or concerns about this Policy, please contact your Relationship Manager and/or Treasury Management Officer.

© 2021 People's United Bank, N.A. | Member FDIC | Equal Housing Lender icon Equal Housing Lender