At Luzerne Bank, we take the safeguarding of your information seriously. In fact, we believe keeping your information safe and secure is every employee’s responsibility. We also encourage you, the customer, to take steps in protecting your personal information. We understand that your trust in us depends on how well we keep your personal, business, and account information secure. Our Information Security Program is comprehensive and proactive to ensure your information is secure whether you choose to bank with us through our branch locations, ATMs, telephone, or the Internet.
We utilize industry accepted security practices that are appropriate for the way you choose to bank with us. For your protection, no matter which channel you choose, we verify you are who you say you are before granting you access to your accounts. Additionally, our systems use firewalls and encryption to protect your information from others.
We take steps to safeguard customer information. We restrict access to your personal and account information to those employees who need to know that information to provide products or services to you. We maintain physical, electronic, and procedural safeguards that comply with federal standards to guard your nonpublic personal information.
This Online Banking System brings together a combination of industry-approved security technologies to protect data for the bank and for you, our customer. It features password-controlled system entry, an Extended Validation digital certificate for the bank’s server, Secure Sockets Layer (SSL) protocol for data encryption, a router, and a firewall to regulate the inflow and outflow of server traffic.
Secure Access and Verifying User Authenticity
To begin a session with the bank’s server the user must key in a Log-in ID and a password. Our system, the Online Banking System, uses a “3 strikes and you’re out” lock-out mechanism to deter users from repeated login attempts. After three unsuccessful login attempts, the system locks the user out, requiring a phone call to the bank for re-entry into the system. Upon successful login the digital certificate authenticates the user’s identity and establishes a secure session with that visitor.
Secure Data Transfer
This site requires the use of secure 128-bit encryption enabled browsers to protect you while you access our online services. Secure browsers allow you to communicate with our Web site in a protected session by encrypting information that flows between you and the site. To verify your session is secure, look for https: instead of http: in the URL address line, and a secure symbol (for example, closed padlock or key) on the status bar of your browser located on the lower part of the screen. Once the server session is established, the user and the server are in a secured environment. Because the server has been certified as a 128-bit secure server, data traveling between the user and the server is encrypted with Secure Sockets Layer (SSL) protocol. With SSL, data that travels between the bank and customer is encrypted and can only be decrypted with the public and private key pair. In short, the bank’s server issues a public key to the end user’s browser and creates a temporary private key. These two keys are the only combination possible for that session. When the session is complete, the keys expire and the whole process starts over when a new end user makes a server session.
Router and Firewall
Requests must filter through a router and firewall before they are permitted to reach the server. A router, a piece of hardware, works in conjunction with the firewall, a piece of hardware/software, to block and direct traffic coming to the server. The configuration begins by disallowing ALL traffic and then opens holes only when necessary to process acceptable data requests, such as retrieving web pages or sending customer requests to the bank.
Using the above technologies, your online banking transactions are secure.