Sterling Payment Services Limited is committed to the security of our Internet solutions and to providing our valued customers with information on safe computing.
The following are recommended best practices for safety while using online services.
Password and Personal Identification Number
Online services often require the entry of a user identifier and password combination to gain entry.
The protection of these user credentials is extremely important, especially for sensitive services like those with financial implications.
To ensure the privacy and safety of your password, consider the following:
Use suitable passwords that are difficult to guess and of at least eight alphanumeric characters in length.
The use of special characters and numbers, as well as upper and lower case letters, will increase the strength of a password.
Avoid using easy to guess passwords such as your date of birth, userID, telephone numbers, family birthdays or other personal information.
Passwords should be kept private and not be shared with others.
A Sterling representative will never ask you for your password nor send you an e-mail requesting that you provide user credentials or your password.
Please notify your Sterling representative in case you have any concerns of this type.
You should avoid storing passwords on your workstation or physically in the open near your workstation, e.g. written on paper.
Passwords should be changed regularly and whenever a compromise is suspected.
Passwords used in conjunction with sensitive services should be distinct from others.
While some browsers provide a convenient facility to save passwords on the workstation, such use should be restricted to non-sensitive applications.
The workstation is the means through which sensitive information and instructions get passed to online services.
It is therefore very important that workstations are free from compromises.
Transact only from workstations that are known to be secured. Avoid using shared or public workstations when accessing sensitive services.
Make sure the workstations used are strengthened and protected by:
Keeping anti-virus and anti-Trojan software up-to-date with the latest virus and Trojan signatures.
Keeping operating system and browser software up-to-date, including security patches.
Periodically updating all installed software.
If possible, disabling or removing services that are not needed.
Installing a personal firewall if transactions are to be made using workstations that are outside the company firewall.
Practice safe computing:
Do not allow unauthorized people to have physical access to the workstation.
Do not run unknown software on the workstation.
Do not leave the workstation unattended when you are logged into any services.
Always log out from online sessions when no longer required.
Close browser sessions or clear browser cache immediately after logging out of online sessions.
Check that the bank’s website address changes from http:// to the secure mode of https://
and that a security icon that looks like a lock or key appears on the bottom of the web page after logging on and before making sensitive transactions.
Use a browser that supports the SSL 128 bit or higher encryption standard.
Use the latest browser supported by the online applications.