This Internet Privacy Policy explains how we may collect information from you when you visit our web site or when you use our online financial services.
We recognize the importance our customers place on the privacy and security of their personal information. Our goal is to protect your personal information in every way that we interact with you, whether it's on the telephone, in our lobby, at one of our ATMs, or on the Internet.
We protect and safeguard the privacy of Users of our on-line services as we protect our customers throughout the rest of our business services. We will use personal information to identify you, to communicate with you, and to help us answer your questions.
We think it is important for you to be informed of the policies, procedures, and security measures that we have in place to safeguard your personal and confidential information. With that in mind, we have developed this Internet Privacy Policy to help you to understand the steps we take to protect your personal information when you utilize our online financial services.
In addition to the protections discussed within this Internet Privacy Policy, your online financial activities may also be protected by our general Privacy Policy.
Below are several definitions of terms used within this policy:
Customer Information - Customer Information refers to personally identifiable information about a consumer, customer or former customer of this Institution.
Internet Protocol (IP) Address - an IP address is a unique address that devices use in order to identify and communicate with each other on a computer network. An IP address can be thought of as a street address or a phone number for a computer or other network device on the Internet. Just as each street address and phone number uniquely identifies a building or telephone, an IP address can uniquely identify a specific computer or other network device on a network. We may use IP addresses to monitor login activity and for identification purposes when necessary for security investigations.
Cookie - a Cookie is a very small text file sent by a web server and stored on your hard drive, your computer’s memory, or in your browser so that it can be read back later. Cookies are a basic way for a server to identify the computer you happen to be using at the time. Cookies are used for many things from personalizing start up pages to facilitating online purchases. Cookies help sites recognize return visitors and they perform a very important function in secure Internet banking.
"Session" Cookies are used to monitor session activity within our Internet banking product. These Cookies are encrypted and only our Service Provider can read the information in these Cookies. The session Cookie facilitates the processing of multiple transactions during a session without requiring you to reenter your passcode for each individual transaction. Session Cookies used within our Internet banking product do not pass to your computer’s hard drive. Instead, the Cookie is stored in your computer’s memory, identifying only your computer while you are logged on. When you log off, or close your browser, the Cookie is destroyed. A new Cookie is used for each session; that way, no one can use the prior Cookie to access your account. For additional security, the Cookie expires after 10 minutes of inactivity. It must then be renewed by reentering your passcode. We do not use this Cookie to collect or obtain personal information about you.
An encrypted non-expiring Cookie is also used within our Internet banking product for the identification of this Institution.
Passcode - commonly known as a password or PIN, is a way of authenticating a User so that the User may access an application or web site to perform transactions authorized for that User. If the User types in the correct passcode, access is granted.
Service Provider - In order to provide a full range of online financial services, we may use various third party providers. These third parties provide services such as: website hosting, Internet banking, bill payment, and account aggregation. Third party providers are referred to within this policy as “Service Providers”.
Information Collected on the Internet when you browse or download from our site
If you are just browsing through our website, we do not request any personally identifiable Customer Information, nor do we collect unique identifying information about you unless you voluntarily and knowingly provide us that information, such as when you complete an application online or communicate with us via our secure forms.
Service Providers hosting our website and Internet banking service may automatically collect and store general information on our website visitors for security and statistical purposes. Such information may include:
• The Internet address (referral site) which brought you to our web site;
• The domain name from which you access the Internet, your Internet Service Provider (ISP)
• The date and time you access our site;
• The name and version of your web browser;
• Your Internet Protocol (IP) address;
• The pages visited in our website; and
• The duration of your online session.
Use of Information Collected from browsing our site
We use the information collected when you browse through our site as anonymous aggregate data to determine the number of visitors to different sections of our sites, to ensure the sites are working properly, and to help us make our sites more useful. We do not use it to track or record information about individuals.
Information Collected when you use interactive banking tools
Information entered when using interactive banking tools such as financial calculators and self-tests is not retained. This information is used to complete the requested analysis or evaluation.
Information Collected on the Internet when you provide us information, such as when completing an application online or communicating with us via our secure forms
If you provide us information, it is only used internally and in furtherance of the purpose for which it was provided. As part of providing online financial products or services, we may obtain information about our customers and website visitors from the following sources:
• Information we receive from you on applications, correspondence, or other forms;
• Information about your transactions with this Institution and our affiliates;
• Information we receive from a consumer-reporting agency; and
• Information that is generated electronically when you visit our website or use our online financial services.
Use of Information Collected
Information submitted to us on-line is treated no differently than any information you might provide on in a written format such as a written application, check reorder slip, or in a letter.
• We may disclose the information that we collect, as described above, with Service Providers acting on our behalf to provide online financial services such as: Internet banking and bill payment.
• We may also disclose Customer Information when required or permitted by law. For example, Customer Information may be disclosed in connection with a subpoena or similar legal process, fraud prevention, or security investigation.
• We may also share Customer Information outside this Institution when we have your consent, such as when you request a specific product like insurance or an investment product from a third party financial services provider.
• We may also disclose aggregate (not personally identifiable) Customer Information with Service Providers or financial institutions that perform marketing and research services on our behalf and with whom we have joint marketing agreements. Our contracts require all such Service Providers/or financial institutions to protect the confidentiality of your Customer Information to the same extent that we must do.
• We do not disclose any Customer Information about our customers, former customers, website visitors to anyone, except as permitted or required by law.
• We do not sell any of your personal information.
Cookies
Service Provider(s) for Internet (Online) banking and bill payment may also use Cookies within our Internet banking and bill payment products. You must accept these Cookies in order to utilize the service. These Cookies do not store any personally identifiable information; they simply provide another level of security.
Our Web hosting Service Providers may use Cookies and in some cases you may need to accept cookies in order to view our website.
When you click on advertisements in our website or advertisements on linked 3rd party web sites, you may receive another Cookie; however, you do not have to accept any Cookies from third party advertisements.
Account Aggregation
Account aggregation sites allow you to consolidate account information from several sources (web-sites) into one online location so that you can view all of your accounts in one location. We offer account aggregation services, provided through an aggregation provider, via our online banking product. In order to provide this service, the aggregation provider will request your passcode and login information. Before providing any information, you should read the aggregation provider’s policies on protecting the privacy and security of any information that you provide to determine if they are adequate for you.
Gibraltar Bank does not disclose any of the information consolidated through this service. We may use aggregate information, which is not personally identifiable, to better understand the types of account(s) or services which may be most beneficial to you.
If you provide information about your Gibraltar Bank accounts to an aggregation provider, we will consider all transactions initiated by an aggregation provider using the access or login credentials that you provide as authorized by you, whether or not you were aware of a specific transaction.
If you decide to revoke the authority given to an aggregation provider, we strongly recommend that you also change your online passcode with Gibraltar Bank and those of other institutions you may have included in the service. This will help ensure that the aggregation provider cannot continue to access your account(s) with us or other financial institutions.
When you enroll for our online services, we will send you a welcome email. We may also send emails marketing various products and services offered by this Institution. We will always provide you an opportunity to opt-in or opt-out of marketing related emails. If you do not wish to receive marketing information, or if you believe that your personal information is incorrect please contact us via our secure forms or at Gibraltar Savings Bank, FSB, 2 Railroad Plaza, Whippany, NJ 07981.
We will also send security related email notices when you sign-up for email (“notify me”) alerts on your account(s) or whenever you change your passcode, security question, or email address.
If you agree to accept electronic disclosures and/or online account statements, we may also send you notices of important account updates through email. For example, if you have agreed to accept disclosures electronically, we may send you an email with updates to this privacy policy and/or we may send you a notice that your account statement is available for viewing on our website. For more information on how to enroll for electronic disclosures, please contact us at 1-888-472-1819.
Beware of Phishing Attempts and Internet Scams
While email is convenient and has a good business use, it can also be misused by criminals for scams and various other fraudulent purposes. “Phishing emails” are frequently used by criminals to entice the recipient to visit a fraudulent website where they try to convince the recipient to provide personal information, such as ATM card numbers, account numbers, Social Security numbers, access Ids and passcodes. Some of these fraudulent websites may also be virus laden and can be used to download mal-ware to your computer. Fraudulent websites often look identical to a legitimate site, so it’s important to look very closely at the website address.
Below we have listed a few tips to help protect your personal information on the Internet:
• Always be wary of links in emails, especially any links in emails purporting to be from this Institution that is not a follow-up to a transaction you initiated.
• Please remember that if we send you an email, we will never ask for personal information such as your account number, ATM card number, PIN number, or social security number.
• Bookmark financial websites and use these bookmarks every time you visit the website.
• Whenever you enter personal information like your access ID or passcode, always look for the lock symbol, or https: in the address bar. Always click on the lock symbol and review the certificate details.
• Update your Internet browser! Most browsers now offer free anti-phishing tool bars that can help alert you of fraudulent websites.
• Do not send us an email as we will not respond to it. Although it may seem an inconvenience not to be able to send us e-mail, this policy helps against consumers inadvertently including any of their confidential, personal or sensitive information in the email message, as email messages are generally not secure. We do offer secure messaging through our Internet Banking product and you may use this secure messaging feature if you need to send us sensitive or confidential information.
• Make sure that your computer always has up-to-date versions of both anti-spyware and anti-virus software.
• If you receive an e-mail that you think could be a scam, delete it immediately or forward the email directly to the Federal Trade Commission (FTC) at SPAM@UCE.GOV, however, please note that the FTC’s site is www.ftc.gov.
• If you have any questions about the legitimacy of an email, especially an email from this Institution, you can also call your local branch manager, call us at our main number 1-888-472-1819, or forward the email to technology@gibraltarbankfsb.com.
