Security Center

Confidentiality is important to us. Your financial information security comes first.

The JVB Security Center is your resource for the latest fraud alerts, how to prevent identity theft, and how to respond to an event where personal information is compromised. We're committed to your protection.

Security Resources

ID Theft Resources

https://www.identitytheft.gov

https://www.fdic.gov/consumers/assistance/protection/IdTheft.html

JVB can help you avoid becoming a victim of account fraud or identity theft by providing you with following links and list of valuable tips:

Other Important Contact Information:

Checking Account Security

The most secure checking account is one of the four JVB idLOCK checking accounts that include IDProtect, an identity theft solution. IDLOCK ICON

Debit Card Security

Report Lost or Stolen Credit Cards

During regular business hours, call us at 855.582.5101. After business hours, call 1.800.500.1044.

Debit/ATM Card Fraud Alert Messages

SecurLOCK Communicate works behind the scenes to detect suspicious debit/ATM card activity. When a suspicious transaction is conducted, you may receive a free text, automated call, or email from the SecurLOCK Communicate Customer Service Center to validate the transaction. Please refer to the Cardholder FAQs for additional information.

Online Banking Security

Keep your User ID and Password private: Do not be tempted to share your IDs and Passwords with anyone.

Be unique and change your password: Create a unique password comprised of upper, lower and numerical characters. Change your online banking password every 60-90 days.

Be different: Avoid using the same User ID and Password for different online services.

Memorize: Do not write them down or store on your computer. If you really need to record a password then use a code system (i.e. transpose letters/numbers) and keep in a secure location.

Log Out: Log out of Online Banking prior to visiting other websites or leaving your computer.

Alert Us: If you notice suspicious or unusual activity in your online banking accounts, please call 855.582.5101.

Mobile Banking Security

Do not send account numbers, passwords, PINs, dates of birth, driver’s license numbers, personal identification or any other confidential information in e-mail or text messages. Text messages are not encrypted in the same manner as your mobile device information. Third parties gaining access to your phone can view any sent or received text messages not yet deleted.

Do not store banking login information on the mobile device. Turn off the “Remember User ID/Password” feature on the mobile browser.

Password/PIN-protect your mobile device AND set it to auto-lock the keyboard when not in use to prevent third party access to your mobile device and any information stored within.

Delete messages and regularly-scheduled financial institution alerts that contain account information, including account balances.

Secure your mobile device as you would a credit card. A lost or stolen unsecured mobile device can leave YOU at risk.

Install a “locate/kill/wipe” application on the device to maintain information security for lost or stolen devices. Contact your carrier for available applications for your device.

Scrub mobile devices of any personal identifying information before lending out, discarding, or selling your mobile device.

Update your mobile phone number information via your PC Internet Banking account immediately following a phone number change or loss of your mobile device.

Install anti-virus software on your mobile device. Contact your carrier for specific information on available anti-virus software for your device. Do not hack or modify your mobile device as this can leave your device open to infection from a virus or Trojan.

Protect your mobile device from fraudulent e-mail and text messages designed to transmit viruses and Trojans.

Download information from trusted sources ONLY (photos, ring tones, video clips, etc.). Never open or respond to a text message or email from someone you do not know.

Never open links within text messages or emails from someone you do not know and trust.

Always proceed with caution no matter who sends a text message or email.

Never respond to a text message or email by providing personal identifying information such as password, user ID, PIN, etc.

Be certain you have reached a safe website when using your mobile device by turning on the “show URL” or “show address bar” option to display the website addresses; they should start with “https://”. Check the information that came with your device for specific instructions.

 

ATM Security

Safety Tips for using an ATM

Be cautious at any ATM. Protect yourself and your money by following these important safety tips:

Before the Transaction

  • Look for anything or anyone suspicious near the ATM.
  • Avoid poorly-lit ATMs.
  • Avoid ATMs that can't be easily seen from the street.
  • Report access problems to the bank or the provider that operates the ATM.
  • Avoid being alone at an ATM, especially after dark.
  • At a walk-up ATM, park your car close to the machine. Do not leave your car running or key in the ignition.
  • At a drive-up ATM, keep the car running, the door locked, and look around before lowering your car window.
  • Reduce time at the ATM by preparing any needed forms and having your card out and ready for use.

During the Transaction

  • Cancel your transaction and leave immediately if you see anything or anyone suspicious nearby.
  • As you enter your PIN and transaction amount, block the view of anyone nearby. PIN = Personal Identification Number

After the Transaction

  • Collect your card, cash, receipts, secure your wallet, and immediately move away from the ATM.
  • Retain your ATM receipt with your account records.
  • If you are followed, find a crowded, well-lit area and call the police.

Safekeeping Your Card and Code

  • Treat your ATM card like cash. Keep it in a safe place.
  • Keep your PIN a secret. Never write your PIN on your card; memorize your PIN. Never let someone else enter your PIN for you.
  • Never give your PIN over the telephone. Only fraudsters ask for PINs.
  • Never lend your card or give your PIN to others.
  • Check your account balances frequently and verify each ATM transaction. If there seems to be a discrepancy, please notify us at once. If your card is lost, stolen, or if you think an unauthorized person(s) is using your PIN, please call us immediately at 1-866-374-6975 or 1-800-369-4887.


Privacy & Security Tips

Consumers

Protect your Accounts

  • Do not share your credit card, your debit card, your ATM card, your passwords, or your account numbers with anyone unless you initiated the contact.
  • Report lost or stolen checks, debit or credit cards immediately.
  • Review new check orders to be sure you received your entire order. Store new checks securely. Use tamper-resistant, high-security checks.
  • Contact your credit card issuer if your card has expired and your replacement has not been received.
  • Question suspicious emails or phone inquiries. Unless you initiated the contact, Juniata Valley Bank will not request your personal information (account number, Social Security number, or mother's maiden name) through email, U.S. mail, or by phone. Please notify us immediately if you receive odd calls or emails claiming to come from Juniata Valley Bank. Be especially wary of those requesting account information to "award a prize" or "verify a statement."
  • Guard your ATM and online banking information. Avoid using obvious or easily obtainable information as your password. Don't share your passwords with anyone or write them down.
  • Reduce paper documents. JVB has electronic payment and statement options for most accounts. Call our Customer Resource Center at 1-855-582-5101.

Protect your Social Security Number

  • Never send your SS # by unsecured email to anyone
  • Do not display your SS # on your driver’s license
  • Never carry your SS # in your wallet
  • Do not print your SS # on your checks
  • Don't give your SS# just because someone asks for it - know the person with whom you are doing business

Protect Other Personal Information

  • Never keep PIN numbers and passwords in your wallet or any visible location.
  • Protect your PIN at ATMs. Block from view.
  • Do not give personal information over the phone, by email or on the internet, unless you have initiated the contact.
  • Shred documents with personal information:
    • Pay stubs
    • Pre-approved credit offers
    • Shopping receipts
    • Utility and phone bills
    • Insurance documents
  • Obtain your credit report regularly to check for fraud. JVB idLOCK checking accounts include viewing your 3-bureau credit report any time you need, a new report can be accessed every 90 days, and credit report monitoring with automatic alerts is included! Learn more.
  • Review your bank and credit card statements for accuracy - Do Not Ignore suspicious charges.
  • Contact JVB Customer Resource Center immediately toll-free at 1-855.582.5101 if you suspect Identity theft or fraud involving any of your Juniata Valley Bank accounts..

Keep your User ID and Password private: Do not be tempted to share your IDs and Passwords with anyone.

Be unique and change your password: Create a unique password comprised of upper, lower and numerical characters. Change your online banking password every 60-90 days.

Be different: Avoid using the same User ID and Password for different online services.

Memorize: Do not write them down or store on your computer. If you really need to record a password then use a code system (i.e. transpose letters/numbers) and keep in a secure location.

Use strong passwords:

  • At least eight characters with a combination of uppercase and lowercase letters, numbers and symbols
  • Don't include your user name, real name or company name
  • Don't make your password a complete word
  • Create passwords that are significantly different from each other

Businesses

JVB is your business partner for information and account security. Fraud prevention is our goal.

Basic safeguards against Corporate Account Takeover:

  • Keep your User ID and Password private:  Do not be tempted to share your User IDs and Passwords with anyone
  • Be unique:  Create a unique password comprised of upper, lower and numerical characters. Change your online banking password every 60-90 days.
  • Be different:  Avoid using the same User ID and Password for different online services.
  • Memorize:  Do not write them down or store on your computer. If you really need to record a password then use a code system (i.e. transpose letters/numbers) and keep in a secure location.
  • Log Out:  Log out of Online Banking prior to visiting other websites or leaving your computer.
  • Alert Us:  If you notice suspicious or unusual activity in your online banking accounts, please call the Electronic Banking Department at 717-436-3214
  • Read our Security Tips for Businesses

Security Best Practices:

  • Training - Nothing beats training employees to follow safe practices such as those found here. New employee training and follow up training for all employees are keys to success.
  • Dual Control - Require cash and payment transactions to be handled by two separate people wherever possible.
  • Separation of Duties - Employees who make payments should not also reconcile accounts.
  • User Limits - Assign limits to cash and payment transactions.
  • Audit - Regularly check activity and compare to policies or practices.
  • Reconcilement - Reconcile accounts as soon as possible.
  • Review - Statements, cancelled checks, deposit and payment history.
  • Access - Remove or disable online access for terminated employees.
  • Policies - Create or amend sound internal policies regarding the safeguarding of information and be certain that policies are communicated and are being followed.
  • Secure - Secure sensitive information and share only on a “need to know” basis.
  • Restrict - By policy and practice, restrict users from:
  • Sharing ID’s or passwords
  • Clicking on links unknown to them
  • Opening email from unknown sources
  • Installing or removing software unless they are authorized to do so

Device Considerations:

  • Updates - Keep your device (PC, laptop, tablet, phone, etc.), up to date with system security patches, anti-virus software, etc. Set your security software to scan daily.
  • Firewalls - Maintain an up-to-date firewall and engage expertise in monitoring activity.
  • Wireless - If using a wireless corporate network, consider “hiding” it from public view and turn on all appropriate security features. Change the default administrative password immediately upon installation.
  • Data Integrity - Disable other device access such as USB drives if not needed. Perform reliable backups and test restores regularly.
  • Passwords - Set parameters requiring strong passwords and frequent changes.
  • Administrative Access - Only key users should be given administrative access to system connected devices and such access should only be used when necessary.
  • Procedures - Develop, maintain and train on procedures to be followed when a suspected virus infection or breach occurs.
  • Review - Regularly review appropriate logs for suspicious activity.
  • Alerts - To the extent possible, set application alerts to inform you of certain activities. For example, you may wish to be alerted when funds are transferred from an account or when a payment exceeds an established limit.
  • Segregation - For sophisticated businesses, consider a segregated device to be used solely for transacting business and do not allow web browsing, email, etc. on this machine.
Physical Security Best Practices:
  • Maintain locks
  • Monitoring and alarm systems
  • Safe data storage and backups
  • Document shredding
  • Vendor management for privacy standards, background checks, and on-site facilities review

We take your security as seriously as we do our own. Please do not hesitate to contact us with questions. We’re committed to your protection.

Beware of Phishing

Phishing is any email or pop-up advertisement that claims to be from a legitimate business or organization that you deal with. Scam artists recreate pages using information from legitimate web sites in hopes of fooling consumers into providing their personal information.

The email or pop-up will ask you to "update" or "validate" your account information, passwords, logins, and will make some form of urgent appeal so that you will respond quickly. The email or pop-up may direct you to a fraud web site that may appear to be from a trusted source.

Some consumers mistakenly submit financial and personal information and the "phishers" will use it to gain access to financial records or accounts, commit identity theft or engage in illegal acts.

IMPORTANT: Juniata Valley Bank will NEVER request any personal information (such as account numbers, passwords, PINS, Social Security Numbers, etc.) through an unsecure email.

Juniata Valley Bank does not use pop-up advertisements. 

Recognize Phishing:  It may not always be easy to recognize fraud emails or pop-ups but there are some precautions:

Urgency. Watch out for emails or pop-ups that state an urgent reply is needed or your account may be closed.

Generality. Watch out for emails or pop-ups that provide a general greeting and do not identify you by name.

Typos and Errors. Fraudulent emails or pop-ups may have typographical or grammatical errors. Watch out for poor visual and design quality.

How to Protect Yourself

DO NOT click on links you receive from a third-party site asking for personal information or account numbers. To access the legitimate web site, you should type the URL address into your web browser or use a "bookmark.”

DO NOT send confidential information such as account numbers, passwords, or PINs by email.

DO NOT share your IDs or passwords with anyone.

CALL the financial institution or business directly to confirm requests for updating or verifying personal or account information.

LOOK for a secure connection on web sites asking for personal or account information. Normally, the URL will begin with https:// in the browser address bar. Also, a "padlock" icon will appear at the bottom of your browser window.

VERIFY Web Site Security Certificates within your Web browser.

UPDATE the security features of your computer software, including your Web browser. Software companies provide security updates to their products.

ALWAYS log off of secure areas of web sites (for example: Online Banking) for which you use an ID and Password to enter.

If You Have Been Phished:  If you suspect phishing, identity theft or fraud involving any of your Juniata Valley Bank accounts, you should:

1. Contact Juniata Valley Bank Customer Support immediately at 855.582.5101.

2. Contact the following three credit bureaus to have a fraud alert placed on your credit report. File a complaint with the FTC.

Equifax: Fraud Line: 800.525.6285
Experian: Fraud Line: 800.397.3742
Transunion: Fraud Line: 800.680.7289
Federal Trade Commission (FTC): Fraud Line: 1-877-IDTHEFT FTC Complaint Assistant