HSBC Bank International Contact us | Site map
    

You are not logged on to Internet Banking.  Icon: Not logged on

Back to Accounts Summary

Security information - Internet Banking

How do you ensure my account information is secure online?

Because we view system security as fundamental to our service, we are constantly reviewing and developing our procedures to ensure maximum security is provided. Listed below are some of the key security features we apply to our service:

  • Unique logon details
    The logon process for Internet Banking is in two parts; the first part requests that you input your Personal Banking Number (PBN). The second part of the process requests your memorable answer and PIN/Password, which when combined with your PBN are unique to you. So whenever you access the service, entering these details safeguards your information against being accessed by anybody else.

    To make your logon even more secure, we recommend that you use the HSBC Virtual Keyboard.

How do I know whether I’m logged on?
Throughout the website (including the product information pages as well as your account information), in the top right hand corner of the screen you’ll see a status message.

When you are not logged on, this message reads:

"You are not logged on to Internet Banking"
together with a red LOG ON button

When you are logged on, this message changes to "Welcome <Your First Name>, you are currently logged on to Internet Banking", together with a blue LOG OFF button

Please remember to log off the Service by clicking the blue log off button, wherever you are on the website.

Internet Banking 'session' management
Internet Banking uses session cookies to establish and maintain your banking session with us. Session cookies are text files that we transfer to your computer's memory for the duration of your Internet Banking session. They do not contain any information that will enable anyone to contact you via telephone, email or any other means, nor are they used to track your Internet usage. Session cookies are uniquely assigned to you and are destroyed once you log out of Internet Banking or close your browser, as opposed to long term cookies that your browser stores until they expire.

Most web browsers have the facility to enable session cookies even if you choose to disable long term cookies. You can also set your browser to prompt you before accepting a session or long term cookie. For instructions on how to do this, please refer to your browser's help section. It is also possible to set certain firewall, anti-virus or spyware software to decline cookies. If you use any of these you should refer to their instructions to find out how to accept session cookies.

Firewalls
Our systems are protected by sophisticated secure gateways, including 'firewalls' and monitoring devices, which will prevent other, unauthorised Internet users from accessing our computer system.

By installing a personal firewall you will help to protect the information held on your system from any unauthorised access attempts.

Scrambled information
The information sent and received is protected by strong data encryption that scrambles the message so that it can't be read by anyone else.

Visual reassurance
Each screen within the Internet Banking service includes the padlock symbol in the bottom right hand corner to indicate that you are in a secure service and that your information is being encrypted. However, certain versions of both Netscape Navigator and Internet Explorer do not display the correct information due to a software fault in the browser. The errors we are aware of are:

Internet Explorer version 5 - the padlock sometimes disappears.

Internet Explorer version 5 - clicking the padlock displays 'This certificate has failed to verify for all of its intended purposes'.

Netscape Navigator version 4 - clicking the padlock tells you that it is using 'medium grade' encryption, ie, 40 bit.

Despite these faults, please be assured that all communication during your Internet Banking session is encrypted using 'strong grade' encryption ie, 128 bit.

If you are uncertain as to whether an error is occurring due to a system fault or because of a security issue, then please contact International Direct Banking (+44 1534 616100).

Time out facility
Once you have logged on to Internet Banking, after ten minutes inactivity we will automatically end your session to help prevent unauthorised access.

Can I do anything else to help improve my security?

Take extra care
When using computers in a public place or at work, remember you cannot be sure that your information will remain confidential. Be aware that people may be looking over your shoulder or observing what you are doing and never leave the computer unattended. Take any information that you have printed with you and always log off the service by clicking the blue LOG OFF button on the top right of the screen. We also recommend that you 'Bookmark' HSBC Personal Internet Banking to avoid linking from pages you are unsure of while 'surfing' the Internet.

There are a number of other simple steps you can take to improve your security, these include:

Assess your risk
Who has access to your computer? Do you regularly receive or send e-mails with attachments? Do you download or swap free files, such as music, games, screensavers and desktop themes? Whilst none of these things are a security hazard in themselves, they can increase the risk of experiencing online security risks and highlight the need to use software to protect your computer. Avoid doing so where necessary.

Use strong security
The more characters you have the better. We recommend a minimum of eight.
Don't use a PIN/Password that is easy to guess (eg, a partner's date of birth).
You will not be allowed to use repetition (eg, 222222).
Don't write your logon details down, eg PBN, memorable answer, Password, or store them on an electronic device.
Don't tell your logon details to anyone, even bank staff. Bank staff will never ask for your memorable answer or PIN/Password.
Don't let anyone see you entering your logon details.

The key is to remember to keep your logon details safe at all times. If for any reason you suspect that someone else knows your memorable answer or PIN/Password you can change them via Internet Banking or contact International Direct Banking (+44 1534 616100) immediately and they will assist you.

Is there anything else I need to do?

To help maintain the highest levels of security, we also recommend you use the following:

  • Anti-virus software
    By installing anti-virus software and making sure that it is running at all times, you will help to protect your system from known viruses aimed at compromising your PC which can be sent via attachments within emails or by disk. This is a vital piece of software to have and to use. Also it's important to keep this software up to date to protect against more recent viruses. You can usually do this by accessing downloads from your anti-virus software supplier.

    Using anti-virus software will reduce the chances of people being able to fraudulently capture your PBN, memorable answer or PIN/Password, or being able to access your computer whilst you are logged on to Internet Banking.

Software fix
A software fix is an update, to your browser or operating system, from your computer software provider which helps to protect your computer from the latest viruses. Usually you'll be prompted to download these directly and it is worth remembering to do this so that you enjoy the most up to date protection. To find out more information and to download the latest software fixes for Windows and Internet Explorer, we recommend you visit Microsoft Security.

Legal Information  | Security  | HSBC Group Website   © HSBC Bank International Limited 2008