The Bank of East Asia

Personal Banking

Please read the following precautions before using UK Cyberbanking and refer to them from time to time:

A. PIN Management

1.  Log in to Cyberbanking to change your PIN immediately after you have received it from the Bank.
2.  If you suspect that someone has tampered with the sealed envelope containing your PIN prior to receipt, please contact us immediately.
3.  Do not use your passport number, national insurance number, telephone number, date of birth, driving licence number, name, or any simple sequence (such as 12345678 or ABCDEFGH) as your PIN. Avoid using the same alphanumeric character more than once (such as 11111111 or A1A1A1A1).
4.  Do not disclose your PIN to anyone. The Bank will never ask you for your PIN.
5.  Do not send your PIN via email/SMS or use the same PIN to access other services.
6.  Memorise your PIN. Do not write it down or store your PIN and other sensitive information in your computer in a way that can be understood by someone else.
7.  For security reasons, change your PIN regularly.
8.  Change options on your browser to avoid storing your PIN on your computer.
9.  Be alert to your surroundings when using Cyberbanking and make sure that no one sees you enter your PIN.
10.  Change your PIN immediately if you suspect someone knows it.
11.  Contact us immediately if you suspect any unauthorised access to your bank account(s) via Cyberbanking.

B. Personal Computer and Email Protection

1.  Take precautions against hackers, viruses, spyware, and any other malicious software* when reading emails, opening attachments, visiting unfamiliar websites, and downloading files or programs from websites. Do not browse suspicious websites or click on any links and attachments in suspicious emails or messages received through WhatsApp, Line, WeChat and other e-communities.
 

*Malicious software, or ‘’malware’’ are computer programs which can cause damage or collect data from your computer. Viruses and Trojan Horses are examples of malwares. Trojan Horses can be hidden in web pages, emails or email attachments and used by hackers to try to gain access to users’ personal information such as banking details and passwords.

If in doubt, stop any action; do not open any suspicious attachments in emails or enter any bank details or passwords on websites. Contact BEA’s Customer Service Hotline +44 (0)20 7734 3434, or visit any of our branches for assistance.

Contact the Bank for confirmation immediately whenever a website, SMS, email or other correspondence claiming to originate from the Bank looks suspicious to you.

2.  Increase the protection of the computer you use to access Cyberbanking with firewalls, anti-virus software and anti-spyware software, and update them with the latest security patches or newer versions on a regular basis. Use such protection measures to scan your computer from time to time to strengthen the security of your computer. Regularly update the operating system of your computer with the latest security patches.
3.  Browsers often come with security features built in. Make sure they are activated. Upgrade browsers to support the latest Transport Layer Security ("TLS") encryption.
4.  Carefully read installation and/or permission requests from websites, apps and other software and programs. Be wary of any unusual or unnecessary request. Remove file and printer sharing options on your computer, especially when you have Internet access via broadband connection, wireless connection, or other similar set-up.
5.  Do not use software or program(s) from untrustworthy sources. Be sure that mobile applications on your tablet devices are downloaded from trusted app stores.
6.  Limit the number of people who can use your computer and set your own password for your computer if it has this facility.
7.  Disable your browser's "AutoComplete" function. On some browsers, this function remembers the data you input previously. Refer to your browser's "Help" function if necessary.
8.  Disconnect from the Internet when you are not using it.

C. Accessing Cyberbanking

1.  Keep your Cyberbanking number confidential at all times and do not send account information via email.
2.  Never share the One-Time Password ("OTP") with anyone. The OTP we send you should not be given to anyone (even to the police or us), either verbally or in writing. It should only be entered when using our Cyberbanking. Make sure that all other browsers are closed before logging in to Cyberbanking.
3.  Input the Bank's website address in the address bar of a web browser directly to access Cyberbanking.
4.  Only access Cyberbanking through our website www.hkbea.co.uk.
5.  Every time you log in to Cyberbanking, please verify your last login date and time on the Welcome page.
6.  Do not click on URL or hyperlink embedded in any email, SMS, instant message, QR code, search engine, or any untrusted source to log in to Cyberbanking. The Bank will not send emails to the customers with embedded hyperlinks / QR codes to access Cyberbanking.
7.  If any suspicious screens pop up or your computer's network / traffic is unusually slow, you should log out from your internet service / account immediately and scan your computer with the most up-to-date version of your anti-virus software.
8.  Confirm the legitimacy of the Bank's website by comparing the URL and the Bank's name in its site digital certificate. A security icon resembling a padlock or key appears when authentication and encryption are activated.
9.  Always log out and then close all your browsers instantly to clear the browser cache after each banking session.
10.  Do not leave your computer unattended while using Cyberbanking.
11.  Do not use / install any software or program to access Cyberbanking.
12.  Access Cyberbanking with browsers recommended by the Bank.
13.  Do not use public computers to access Cyberbanking. Public computers are unsafe for logging in to Cyberbanking because they are used by many people and thus, more likely to be infected with malwares.
14.  Do not activate any SMS forwarding function which is supported by your mobile network provider. Regularly review and follow the security tips issued by the Bank.

D. Other Notes

1.  Check your bank statement(s) regularly and inform the Bank immediately if you discover any errors or suspicious/unusual transactions.
2.  Inform the bank immediately whenever you change your mobile phone number or if your phone is lost or stolen to prevent anyone else from accessing the OTP.
3.  Contact the bank immediately, if you ever receive an OTP which you are not expecting.
4.  Keep your bank statements, cheque books, and other important documents in a safe place. If you want to discard any documents that contain your personal information, destroy them first.
5.  Under no circumstances shall the Bank, by way of email, SMS, instant message, phone call or any other method, ask for your personal information, such as your PIN, OTP, national insurance number, date of birth, etc. In addition, we will not ask you to access the Bank's website by clicking hyperlinks contained in any email/SMS. Check the website's privacy statement and statement on security safeguards before providing personal data to the website.