How we protect you

Our website provides users with a range of security practices

‍

Firewalls

Our website and Online Banking are protected by sophisticated firewalls with adaptive security algorithms (ASA) which maintain the secure perimeters between the websites and the Internet. This provides full firewall protection that conceals the architecture of the internal networks from the outside world including protection against attacks.

‍

Encryption

Whenever you use our Online Banking service or submit information to us using one of the main online forms available on our website, your information is protected by banking industry standard 128-bit SSL (Secure Socket Layer) encryption. Encryption is a process of scrambling information using random mathematical algorithms ensuring that only we can receive this information in an understandable format. SSL is a protocol developed by Netscape that enables a web browser and a web server to communicate securely. Security is provided in two different ways:

• Authenticating the web server to the client using a digital certificate; and
• Encrypting all information sent

You can identify whether the Online Banking session is secure or encrypted when you see a padlock in the corner of your browser window. Clicking on the padlock will also provide you with details on the Security Certificate pertaining to the encrypted session.

The combination of our SSL-enabled web server and a valid security certificate provides you with three things:

• Authentication - You can be assured that the company that installed the certificate is the true owner of the website.
• Message privacy - Using a unique session key, SSL encrypts all information exchanged between your computer and our web server. This ensures that personal information cannot be viewed if intercepted by unauthorised persons.
• Message integrity - The data cannot be tampered with over the Internet.

Data transmission of our main online forms is protected through the application of SSL certificates.

‍

Automatic time-outs

For your further protection, our Online Banking system has been set to automatically "log out" after 10 minutes if your banking session remains unattended. This means that should you leave your computer for any reason for longer than 10 minutes whilst conducting an Internet Banking session, the system will end your session to ensure that no-one else can access your personal information in your absence. We recommend for your security you logout of our mobile and tablet app once you’ve completed your banking activities. If your session remains inactive you’ll be automatically timed out.

‍

Incorrect access codeblock

With our Internet Banking Service, after 3 incorrect attempts to enter your access code, access will be locked. This is to ensure that there is no unauthorised access to your account details.

If your account becomes locked, it will then be necessary to contact us to request that your Internet Banking access be reinstated.

To avoid incorrect access code attempts, we strongly recommend that you have a password of your own choosing which will be easy for you to remember, and that you should also be aware that the access code are case sensitive so you need to check your Caps Lock key.

If you are still experiencing difficulties with your Online Banking or our web page, please contact us and we will address any issues during normal business hours.

‍

Last login time check

Our Online Banking also provides you with information on the date and time of your last session. This allows you to check the most recent session each time you use Online Banking to ensure that nothing is out of the ordinary.

‍

We will occasionally send you electronic communication (e.g. emails or SMSs) advising you of important information relating to your Membership. We will never ask for your password, date of birth, address information or account details (membership number/RIM and account number) to be disclosed via a link within an electronic communication.

If you receive an electronic communication of this nature, please disregard and delete it, and contact us to notify us of the existence of the scam. From time to time, Qudos Bank may send you emails about competitions, invitations to seminars and other invitations that may require you to enter in your name and contact details (mobile number and email address) in our registration online form. You will not be required to provide any other personal or account information.

To safeguard your personal information, we have adopted the following communication practices.

• We will never ask for your Online Banking login details or credit card details via phone or email.
• We will never send you a link to Online Banking via email.
• We will never request that your Online Banking password be communicated to us in any form (not even our staff know your password).
• Any changes to the web address or to our access sites will only ever be communicated via our authorised website or other formal means.
• We will always identify external links to third party websites; we will explain where these links will take you to so that you can see what you are clicking on.

Furthermore, we will ensure we are always compliant with all online communication legislation and relevant codes of practice. In particular, we will abide by the requirements of the Spam Act 2003 and will ensure that:

• We secure your consent to receiving any commercial electronic messages (as defined by the Spam Act 2003)
• Our emails to you contain clear and accurate identification of who is responsible for sending the message, and how they can be contacted
• Our emails to you contain an unsubscribe facility, allowing you to indicate that such messages should not be sent to you in the future.