This describes the system security arrangements, policies and technologies adopted by NIB Bank in meeting this commitment to protect our customers' information and transactions at all times.
To protect customer’s privacy, confidentiality and data integrity, all information transmitted via our Internet Banking system is encrypted with best available systems. This ensures that all communication between your workstation through the Internet and our Internet Banking system is remain encrypted and secured. In addition to utilize this encryption standard, our Internet Banking system infrastructure is multi-layered to further deter any attempts of security attack from reaching the database and other vital servers. We offer two factor authentication (2FA) as authentication mechanism on our Internet Banking which protects against unauthorized logon to system by validating UserID and secure authentication password with combination of one time generated passcode token on the key. Stretching security further, we have installed multiple firewalls and other systems that detects any web suspicious access or activity. This system is monitored round-the-clock throughout the year and an incident response procedure is in place to respond to any alarm raised.
Within NIB Bank’s jurisdiction and control, all necessary and stringent measures have been taken to protect Customers information. However, like with any other Internet enabled technology, we cannot control the equipments or computers from which you access our Internet Banking services. Therefore, customers are always reminded to exercise all safety procedures when using any Internet Banking system or whenever they transact over the Internet.
It is NIB Bank's policy to NEVER request our customers to provide or reveal their passwords or any access code/pin under whatever circumstances, for whatever reasons and through whatever means. Customers are strongly encouraged to report to NIB Bank of any person, staff or person purporting to be staff of NIB Bank who make such requests.
Always use a strong password - at least eight characters, with a combination of numbers, letters, and punctuation symbols.
Avoid using your birthday or address as your password, you need a word that is hard to guess.
Don't use the same password for banking that you use for other online accounts.
Keep your password safe - don't leave it in a file on your computer or in a sticky note on your monitor.
Change your password periodically.
Ensure that there is adequate anti-virus or security software installed and enabled on the computer you use for Internet banking.
Do not use the browser facility to store your password in order to avoid having to enter it each time you transact using Internet banking.
Avoid using public computers, you have no way of knowing what viruses or Spyware programs may be running undetected on these systems.
Check the site security certificate for the Internet banking site each time before you do your banking.
Ensure that you make payments to the correct account or beneficiary. We cannot reverse duplicate or erroneous payments you make to other accounts without the specific consent of the account holders.
’Phishing’ is a technique used with criminal intends to steal your money in the bank account or to steal your identity or other cyber-crimes. This technique is used with any anonymous email or SMS which seems very friendly and unpretentious sent by a person with aim to get your account details and other personal information for fraud or other criminal reasons.
Phishing is a fraudulent attempt, usually made through email, to request recipients to update or verify their personal and financial information such as date of birth, online login information, account details, credit card numbers, PINs etc. The best way to protect yourself from phishing is to learn how to recognize a phish. Often times phishing attempts appear to come from sites, services and companies with which you do not even to have an account. Legitimate organizations would never request this information from you via email.
In order for Internet criminals to successfully "phish" your personal information, they must get you to go from an email to a website. Phishing emails will almost always tell you to click a link that takes you to a website that looks identical (or very similar) to the organization’s genuine site. Fraudsters can then capture personal data like passwords as you type it in or download malware onto your computer.
NIB Bank do not send unsolicited e-mail messages asking their customers to update or verify their personal details, Internet Banking login or security logon details such as Secure Key passwords/values.
Emails from NIB Bank contain links only from NIB Bank websites.
To verify that the session is secure, make sure that the URL address line is highlighted in green and includes "https" instead of "http", as per the below image.
If you are in doubt about the legitimacy of the e-mail, please contact our Phone Banking at (021) 111-642-111.