Data security

• 1. Online security - Generalities
• 2. Avoid fraud
• 3. Protect your PC

1. Online security - Generalities

Internet Banking service of Credit Europe Bank (Romania) - called CreditEuropeNet - can be accessed from anywhere in the world, from any computer connected to the Internet and who meets the minimum requirements necessary to access the Internet Banking application.

Securing communication between the client and the bank is largely based on two-way authentication using digital certificates, thereby achieving the highest level of security, transmission of information, practiced in the Internet.

Security system of the service CreditEuropeNet is developed in accordance with international standards regarding the security of Internet transactions. As a result we have a network of \"distributed security\", which provides data protection throughout the process: on the client computer, during transmission of data and during processing in banking system.

Distributed security means protection using several technologies on several levels, such as: identifying the user using three keys, data encryption, automatic disconnection, monitoring.

To ensure optimal security for transactions made through this service, the system of Credit Europe Bank uses 128-bit SSL encryption, so all data which are transmitted between client and server are encrypted with 128-bit key.

We assure you that our CreditEuropeNet services comply with all security measures, but we cannot take care of your home computer that is entirely your responsibility.

The Internet open for you a lot of opportunities, but to protect your computer, you must defend yourself from hackers.

We\'ve all heard about the frauds with ghost ATMs. The same applies on the internet, so you should take some basic security measures. Here is how you do it:

Very important when you log in CreditEuropeNet:

1. In order to connect, enter directly from the keypad the URL: https://net.crediteurope.ro/ or use the bank\'s web address http://www.crediteurope.ro;

2. Check the authenticity of the bank\'s website by clicking on the icon \"Secured by thawte\" and make sure that in the display window you can find information about securing the site and validity of certificate as shown in below picture:

3. Always check the digital certificate on the server that you connect (in the page opened, by clicking on https://net.crediteurope.ro/, double clicking on the lock from top right). In addition you should always check that the connection is secure (HTTPS and not http);

4. Do not save your password or other information related to CreditEuropeNet service in the computer memory;

5. Do not reveal to anyone your password and information about the security of your accounts, the bank will never contact you to request this information. IF YOU ARE CONTACTED BY PHONE OR E-MAIL BY SOMEONE, WHICH WILL NEED SUCH INFORMATION, THIS IS CERTAIN A FRAUD!

6. Immediately change the password if you suspect another person knows;

7. You should meet the following requirements in setting the password:

1. • Important: the password cannot be blank.
   • The password should contain both uppercase and lowercase letters;
   • The password should contain numbers;
   • The password must contain special characters;
   • The password must have a minimum length;
   • The password should not be in the dictionary;
   • The password must be different from the last n older passwords;

8. Do not use the computers from Internet Café because these are not sufficiently secure;

9. Do not set or change your password from a public computer;

10. Do not leave your computer unattended and logged on CreditEuropeNet service page, if you are using a public computer;

11. You must regularly check your accounts;

12. Contact the support department of CreditEuropeNet as soon as notice suspicious transactions (by phone: 004 444 0801 or 202 000 0750, or e-mail address: net@crediteurope.ro)

back to top

2. Avoid fraud

2.1. Online fraud - phishing

2.1.1. What phishing means?

In computer area, the phishing is a form of criminal activity that consists in obtaining confidential data, such as data access for applications like banking applications, trading applications (Example: E-bay, PayPal) or credit card information, using techniques for handling the identity of a person or an institution.

A phishing attack is normally represented by the sending of an email by the attacker, using instant messaging programs (e-mail) or phone (SMS), in which the user is advised to give confidential information to win some prizes, or is informed that they are necessary due to technical errors that led to the loss of original data.

In the email is usually indicated a web address that contains a clone of the web site of the financial institution or trading. Most of phishers use this method to obtain bank details.

2.1.2. From where do they have my email address and phone number?

Lists of email addresses and / or phone numbers travels on the Internet and are frequently exchanged between hackers.

2.1.3. From where do they know with which bank I work?

They do not know this, but if they send messages, definitely they will find a few people working with the bank presented in the phishing message, as a result of responses received from victims.

2.1.4. What I do if I get an email or a SMS suspicious?

It is best to remove it directly, especially if it has links or attachments.

Warning!

CreditEuropeNet will never ask you all the digits of your debit card.

Credit Europe Bank employees will never ask you to disclose your password and user code. In such a case please contact immediately CreditEuropeNet support service (telephone numbers: 004 444 0801 or 202 000 0750 or e-mail address: net@crediteurope.ro)!

Credit Europe Bank will never send you email or SMS on which you are asked to access URLs or links in order to connect to the CreditEuropeNet service!

2.2. Frauds with debit/credit cards

Debit / credit payment instruments are flexible and fast, but the benefits can be easily undone when the evil-intentioned people manage to take possession of the data stored on magnetic tape of the card and in possession of PIN\'s. Worldwide, most cases are due to phenomenon of credit card fraud skimming.

What is skimming?

Copying data stored on magnetic tape of the card, using special electronic devices. This operation can be performed either at the ATM or POS.

2.2.1. ATM skimming

How do we know?

• ATM skimming is done by attaching a copying device at the card insertion slot in order to copy the information from the magnetic tape and a fake keyboard or a tiny video camera to record the PIN;
• The ATM is installed in withdrawn places. As much as possible is recommended to be used those ATMs with which you are familiar or which are mounted in banking agencies where are installed video cameras;
• Check if your ATM presents unusual issues (scratches, traces of duct tape), especially the keyboard and the right side of the device containing the card insertion slot. (You can easily drag them to see if they are removable).
• Check around the ATM in order to see if various accessories exist (supports, shelf boxes, flyers, forms) or tiny video cameras are installed.
• In case of suspicion, please inform the Bank which holds the ATM.

2.2.2. POS skimming

How do we know?

• For POS skimming, the card is first passed through the POS where you make the payment and then on a similar device that is meant to copy the information on the magnetic tape.
• Pay close attention when using the card for these types of traders: restaurants, gas stations, hotels or casinos.
• When you make a payment at POS, do not leave your cards unattended and always keep it in your visual range.
• Ask the dealer\'s receipt for each transaction.
• Cover the keypad when you enter the PIN.

What we should do to protect us?

• PIN code must be saved. It will not be marked or kept with the card;
• PIN code is confidential. Once it was introduced, the customer consents to such transaction;
• PIN code must not be disclosed to any other person, including family members, police and employees of the Bank;
• Do not set the PIN code based on personal data: birthdays, age, etc;
• Do not accept \"help\" from other people when you make a transaction at the ATM;
• Check the card statement for identification of any unauthorized transactions and report them immediately to your bank by phone at CebLine: 0801.000.000, 0750.000.000;
• If you make transactions over the Internet you should check the terms and conditions before making payment to the trader and print a copy of the order. Also, you should make credit card transactions only on secure websites that contain the format \"https://\";
• Immediately report lost / stolen card or any other unauthorized transactions by phone at CebLine 0801.000.000, 0750.000.000.

What is doing CEB for protecting your credit cards?

As a result of continuous efforts to improve our products, CEB (Romania) SA has begun issuing cards with EMV-based chip (these cards have a chip containing all the information previously stored on magnetic tape).

This technology provides added security and comfort in using the card, both at ATM and for payments to merchants.

back to top

3. Protect your PC

3.1. Use a firewall

3.1.1. What is a firewall?

It is a software/hardware that blocks unwanted traffic between your computer and the Internet.

3.1.2. How it works?

It\'s like a barrier that sits between your computer and the Internet. You choose what programs and applications can connect to the Internet. For example you can allow access of the authorized program Outlook Express, but you can restrict access of a suspect program.

3.1.3. Why do I need a personal firewall?

All users of computers that connect to the Internet should use a personal firewall. This software prohibits the access of malicious codes (eg viruses) and blocks the access of unauthorized programs from Internet.

3.2. Use a antivirus software

3.2.1. Why do I need such a program?

Every time you connect to the Internet, you will be exposed to the danger of viruses. These malicious codes attack through websites, e-mail attachments or simply through the network by spreading from one computer to another.

3.2.2. If you have an antivirus program installed, are you protected?

You will be protected, only if your antivirus is updated. Every month thousands of new viruses appear, so it is important to constantly update the anti-virus program (some programs are updated automatically, others would have to be updated by you regularly, by visiting the manufacturer\'s anti-virus site.).

3.2.3. What do viruses?

Some viruses are just annoying but most are destroyers. For example, some viruses can cause malfunctions of your computer; they can spread viruses to other computers or allow hackers to access files and personal information from your computer.

3.3. Block all spyware software

3.3.1. What is spyware software?

A spyware collects information about you and spread them on the Internet without your approval. Sometimes, the web-browser can attack you and will display unwanted pop-up ads.

3.3.2. Is it harmful?

Yes. These programs can slow down your computer and Internet connection and can copy confidential information such as card number and your PIN code or CreditEuropeNet password (if you save all these in your computer\'s memory) and provide it to the hackers.

3.3.3. Is this a violation of privacy?

Yes. Sometimes these programs are installed in parallel with other programs or it can install themselves without permission, when you visit infected websites. These programs are not noticed by anti-virus programs and for their detection special anti-spyware modules or anti-spyware software specifically are required.

3.3.4. How do you tell if your PC is affected by spyware?

Typical symptoms are slowing down the computer and the Internet connection speed, sudden changes of the web browser and ads / unwanted pop-ups.

back to top