Events   |   Visa Credit Card   |   Rates   |   Online Services      
Home  
About Us  
Applications  
ATM & Service Locator  
Calculators  
Conference Center  
Contact Us  
Commercial Services  
Deaf/Hard of Hearing  
Employment  
JOIN ELGA  
Locations  
Promotions  
Accounts-Member Services  
Rates  
Repo Center  
Web Safety Info  
XpressLink FAQ & Tips  
Web Links  
Disclosures  
Our Community  
Phishing Alert  
Privacy Statement  
 


Security Statement

Our Credit Union is constantly concerned about our member's critical information and privacy. With this in mind, we have the following security services installed on our Internet server:
  • Each server is behind a Firewall. This UNIX based hardware product blocks critical ports and IP addresses on servers from external attack and access.
  • Each server runs proprietary software that constantly monitors the servers for unauthorized use and attempts to "hack" into information. Administrators are contact when forced attacks are committed, and countermeasures can be applied to stop these instances.
  • All administrative activity requires user login and authentication. All administrative updates are logged into files that can be reviewed later.
  • All servers come with a Global Verisign Certificate (RSA) for digitally encrypted communications between the Web server and your member. Information passed in applications cannot be decrypted by third parties attempting to "pick" information being passed across the Internet backbone.

How can I help protect my account?

  • Clear the Cache of Your Browser. Browsers cache or store locally images of the pages they have viewed. This is done to improve performance.By clearing your browsers cache after visiting secure sites you ensure no one else can view confidential information you have transmitted. Please refer to your browsers help instructions for how to clear your cache.
  • Signoff/Exit. Remember to log out or exit with you are finished using your computer or XpressLink. Please always remember to use the XpressLink Signoff menu option. The Signoff option will end your online XpressLink session properly.

Notify us AT ONCE if you believe someone has improperly obtained your XpressLink information.Also notify us if someone has transferred money from your account without your permission of if you suspect any fraudulent activity on your account.To notify us call 810-715-3542 or 800-882-6457

How does ELGA Credit Union help protect my account?

  • 128-Bit Encryption. At ELGA Credit Union, we use 128-bit encryption to perform transactions and access account information through XpressLink. This helps to ensure that all information accessed is secure and confidential. 
  • Users ID, Password and Matrix - To access your account information through XpressLink you must provide a User ID, Password and 3 numbers from your personal Matrix. This method is known as Two Factor Authentication.

Is sending e-mail to ELGA Credit Union Secure?

If you sign up for XpressLink, you have access to a secured network which you can transmit confidential information safely to ELGA Credit Union. To use secure email select the "Mailbox" menu option to send secure email direct to ELGA Credit Union.

ELGA Credit Union cannot guarantee the confidentiality of information you send using your own e-mail service because the information may not be encrypted on sent on a secure network. We strongly discourage you from including any confidential or private information in e-mail that you transfer to us outside of XpressLink. We specifically discourage you from including the following in unsecured e-mail:

  • Your Social Security Number
  • Your ELGA Credit Union Account Numbers
  • Other personal financial information

ELGA Credit Union will not include such information in any unsecured e-mail messages we send to you. ELGA Credit Union is not responsible for any damages you sustain or the privacy and security of your account information if you send confidential or sensitive information to us via unsecured e-mail.

ELGA Credit Union will NEVER ask you to submit information, such as account numbers, pins, Social Security numbers, passwords or other personal financial information, via e-mail. If you receive any e-mail that appears to be from ELGA Credit Union, and it solicits you for this type of personal information, it is most likely fraudulent. You should contact our Customer Service Department immediately at 810-715-3542 or 800-882-6457 and if possible forward the email to abuse@elgacu.com

How do I know if my connection to ELGA Credit Union is secure?

Web browsers that support Secure Sockets Layer or SSL have a symbol that indicates secure mode. If you use Microsoft Internet Explorer you will notice that a closed lock appears in the lower right corner of your browser. If you use Netscape Navigator, a closed lock appears in the lower left corner of your browser. If you are using Firefox a green key symbol will appear near the bottom right side of your browser. You can also check the web address. A secure website will use "https://site-name". Notice the "s" in the fist past of the address. It indicates that you have requested a secure page on the web server.

What is SSL and how does it protect my information?

SSL is a secure protocol commonly used on the Internet. SSL does three main things:

  • SSL creates a secure channel by encrypting your communications between you and the web server.
  • SSL authenticated that the web server which you are connected to is correct. Because of this you can be assured that you are communicating with ELGA Credit Union.
  • SSL uses a cryptographic checksum to ensure data integrity between you and the server. The checksum provides a count of bytes in a document and ensures the exact number of bytes are transmitted and received. With SSL, even this checksum is encrypted and can not be modified.

To ensure you are connected to ELGA Credit Union click on the VeriSign logo at the bottom of the XpressLink Signon page.

Authentication:

XpressLink from ELGA Credit Union participates in Verisign's Authentic Site Program. By clicking on the Verisign seal, you can confirm you are connected to a genuine ELGA Credit Union website. Participation in this program reflects our strong commitment to conducting secure transactions over the Internet.


Password Tips:

The easiest and most effective way to secure your account information is through effective password management. Although passwords are a convenient way of protecting access, members often defeat the security measures by carelessness or improper use. it is important for all members to choose and use their passwords carefully and to protect the confidentiality of their passwords at all times. A few tips to consider are:

  • Choose a secure password. The most common passwords are your birthday, anniversary date or phone number. These are NOT to be considered secure.
  • Protect your password. If you must write your password down, make sure you keep it in a locked location without any identifying information.
  • Never reveal your password to anyone, including ELGA Credit Union personnel.
  • Remember that these tips apply not only to XpressLink, but also to any of your debit cards.

"Phishing" E-Mail Scams and Maintaining the Security of Your Financial Information.

Phishing is the practice of sending fraudulent e-mail messages which ask people to supply confidential information. These e-mails are disguised to look like a request from a legitimate organization such as a Credit Union, Bank or Credit Card Company. Please be advised that ELGA Credit Union will never ask you to submit information, such as account number, PINs, Social Security numbers, passwords or other personal financial information, via e-mail. If you receive any e-mail that appears to be from ELGA Credit Union, and it solicits any type of personal financial information, it is most likely fraudulent. You should contact Member Service immediately at 810-715-3542 or 800-882-6457 and if possible forward the e-mail to abuse@elgacu.com

 

This page last updated on: 8/8/2006 11:36am


ELGA Credit Union