We believe protecting the confidentiality of customer information is one of our fundamental responsibilities. We are committed to providing security and privacy regarding the collection and use of this information. Employee access to personally identifiable customer information is limited to those with a business reason to know such information. Our employees are informed of their responsibility to protect confidential customer information.
Personal information collected and stored by the State Bank of Alcester is used for specific business purposes. We use information to protect and administer your records, accounts, and funds; to comply with certain laws and regulations; to help us design or improve our products and services; and to understand your financial needs so that we can provide you with quality products and superior service.
We do not knowingly solicit data from children. We recognize that protecting children’s identities and privacy online is important and that the responsibility to do so rests with both the online industry and with parents.
We continually strive to maintain complete and accurate information about you and your accounts. Should you ever believe that our records contain inaccurate or incomplete information about you, please notify us. We will investigate your concerns and correct any inaccuracies.
We safeguard information according to established security standards and procedures, and we continually assess new technology for protecting information. Our employees are trained to understand and comply with these information principles.
State Bank of Alcester provides Internet Banking & Bill Pay access through Fiserv Western Region. Therefore, a secure internet DMZ is established to ensure security of clients’ access, content delivered, and secure devices providing services to the end client.
The Internet DMZ is configured to isolate web servers from internal and external networks’ direct access. This is established through the deployment of firewalls that are configured in high availability mode; Intruder Detection Network Sensor is deployed to monitor the DMZ network. Firewall policies’ rules are applied for ingress and egress filtering. Communications to internal hosts such as Mainframes are through predefined applications’ vendor proprietary ports and rules.
Multi-Factor Authentication: Each time consumers access the service, they will be asked to enter their Access IDs. After they enter their Access IDs on a registered computer, they will be shown the Authentication Image and Authentication Pass Phrase they have chosen. If they do not see the Authentication Image and Authentication Pass Phrase they have chosen, they should not enter their password and are responsible for calling the bank immediately to report the problem. If they see the Authentication Image and Authentication Pass Phrase they have chosen, they can enter their passwords and click “Submit.” They will then have access to the service.
After they enter their Access IDs on a non-registered computer, they can choose to answer a Challenge Question or get a one-time Passcode emailed to the address in the bank’s records. They must either answer the Challenge Question or enter the one-time Passcode to access their accounts. The correct responses will allow them to view an Authentication Image and Authentication Pass Phrase. If they see the Authentication Image and Authentication Pass Phrase they have chosen, they can enter their passwords and click “Submit.” They will then have access to the service.
Without the proper login, individuals cannot see or use any web pages within the E-Banking product.
Account Number Masking and Account Aliases: When the account number needs to be displayed, it may appear as ###456789 instead of 123456789. Account “Nicknames” are user-defined titles for the consumer’s account (i.e., “My Checking”) and is used when displaying account information on the screen.
Regardless of the efforts, the relative infancy of the Internet as a broad-based communication medium when combined with the “open” nature of the Internet make it impossible to guarantee absolute confidentiality in all circumstances. However, State Bank of Alcester continues to monitor and review the security procedures that it has in place to protect customer information. These measures are updated as practices change and new technology becomes available.
If you have any questions regarding these policies and procedures, please contact us.