Your security

How do you protect my account passwords and user IDs?

Your personal information is entered through Secure Socket Layer (SSL/TLS) which creates an encrypted connection between your browser and our servers. This information is kept encrypted at all times. This means that your account passwords and any user IDs are protected.

Who has access to my account?

You create and only you know your password. Neither the service nor the Service Provider has access to your password. No one can see your account unless you provide him or her with your password or activate the Share Accounts feature. And they can’t touch it - just view the statements.

You can activate the Share Accounts feature on an account that you have added to the service. Account sharing allows a third party to view balance and transaction information on this specific account.

You should only use the Account sharing feature after careful consideration. It is your responsibility to choose who you share your account information with and to set your permissions for each person carefully. You can stop sharing at any time.

Where is my account information stored?

Your information is stored on servers, which are securely housed in an Internet server hosting space that provides enhanced physical security, fire protection and electronic shielding. Security personnel monitor the system 24 hours a day, 7 days a week. Access to servers requires multiple levels of authentication, including biometric (hand print scan) procedures.

How is my account information protected during transmission?

The transmission of data is protected using industry recognised encryption standards, such as 128-bit. Users' passwords are transmitted and stored in encrypted format at all times. This means your information is secure during transmission.

How is my account information protected from "hackers" or outside intrusion?

Network-based intrusion detection systems (IDS) provide 24/7 network monitoring and alert us to any external attempts to access the network. In addition, multiple layers of firewalls are used to guard against unauthorised access to the network.

Why does the system need my bank login information (username and password)?

We need your online banking user name and passwords so that we can help you organise and manage your accounts. We use this information to establish a secure connection with your bank, credit union or credit card company. This enables the service to download and categorise your transaction information automatically and securely.

Am I at greater risk of someone stealing my identity by using your service?

No. The service does not require any personally identifiable information for you to create an account. We only ask for the following:

  • email address
  • password

At no time do we ask you for information that would be required for a hacker to steal your identity, such as your full name, bank account numbers, credit card numbers or billing address.

If someone does manage to steal my login information, can they access my bank accounts and credit cards to make any transactions?

No. The service provides a strictly “read only” view of your transaction information. Your online banking user names and passwords are never displayed after you enter them during your first session.