We take the security of MyBonusBonds very seriously. Here are some of the ways we ensure you and your Bonus Bonds are secure online:
Our promise to you
In the unlikely event that you incur a loss from online fraud involving MyBonusBonds, we'll reimburse you the full amount of any unauthorised transaction (provided that you are not involved in the fraud and act within MyBonusBonds' Conditions of Use).
All MyBonusBonds sessions are secured using a 128-bit encrypted connection (Microsoft Server Gated Cryptography). This means the data travelling across the internet, your computer and MyBonusBonds is encrypted, ensuring only you can access your personal information.
MyBonusBonds session time-outs
You should always sign out of MyBonusBonds when you have finished using it. But if you forget, a session 'time-out' automatically logs you off the system if there has been no activity for 10 minutes. This protects your Bonus Bonds as well as your privacy.
We regularly update our firewall technology to protect our systems from unauthorised access via the internet. You should also make sure you have up-to-date firewalls and virus detection software.
Verification of your identity
You need to activate your registration before you can use MyBonusBonds. This provides extra security to ensure your identity is fully verified. We may also require proof of your ownership of the bank account number you may have provided.
You'll see a Security Alert on the MyBonusBonds log on page if there's any suspicious activity going on - for instance scams such as 'phishing' emails that pretend to come from Bonus Bonds in an attempt to gain access to your Bonus Bonds.
Our Bondmail email system allows you to exchange confidential information with us in a secure environment. Ordinary email systems are not generally secure, but with Bondmail you can send and receive private or confidential information with confidence.
Hoax emails, also known as phishing, are scams where hackers "fish" for your personal details by sending emails claiming to be from financial institutions. Hoax emails claiming to be from financial institutions are often generated overseas and sent in bulk. The email asks the recipient to provide sensitive information such as the username or access number and password by providing a link leading to a fake website, enabling thieves to gather the details for later fraudulent use.
Bonus Bonds will never email you seeking your personal access details (e.g. your MyBonusBonds Access Number or password). We'll also never send you an email containing a direct link to the MyBonusBonds log on page and ask you to log on. We may however send you emails from time to time containing links to the Bonus Bonds website about current promotions if you have signed up to receive email marketing about Bonus Bonds.
If you receive a hoax email there are a number of actions we�d like you to take:
Please forward the email to email@example.com.
Never provide personal details or sensitive information such as your MyBonusBonds Access Number and password, or other log on details.
Bonus Bonds does not send out emails requesting personal details or information regarding your Bondholding/s.
Many hoax emails contain viruses or trojan horses (key logger), which are downloaded to your computer when you open any attachments or select any included links.
If you have clicked on any items within the email, run a complete virus check of your computer. It is recommended that you perform virus scans on your computer regularly.
After scanning your computer and ensuring it is free of viruses or trojans, you should change your MyBonusBonds password by clicking on 'My details' and 'Change password' in MyBonusBonds.
You can minimise your chances of being a victim of phishing scams in a number of ways.