About Bank Al BiladConsumer ServicesCorporate ServicesInvestment Services
Search

Secured Internet Banking Statement

Privacy

Secure Sessions / Security Level

All information within Internet Banking uses the SSL (Secure Socket Layer) protocol for transferring data. SSL is encryption that creates a secure environment for the information being transferred between your browser and our Online Banking Server. At a high level, SSL uses public key cryptography to secure transmissions over the Internet. In practice, your browser will send a message via SSL to the Bank's Server. The Bank responds by sending a certificate, which contains the Bank's public key. Your browser authenticates the certificate (agrees that the server is in fact Bank Albilad), then generates a random session key which is used to encrypt data traveling between your browser and the Bank's Server. This session key is encrypted using the Bank's public key and sent back to the Server. The Bank decrypts this message using its private key, and then uses the session key for the remainder of the communication.

Secure Socket Layer (SSL) protects data in three key ways:

  • Authentication ensures that you are communicating with the correct server. This prevents others from impersonating Bank Albilad web site.
  • Encryption scrambles transferred data.
  • Data integrity verifies that the information sent by you to Bank Albilad web site wasn't altered during the transfer. The system detects if data was added or deleted after you sent the message. If any tampering has occurred, the connection is dropped.

Session Time-out / Expiry of Web pages stored in the computer (when closing the session)

Bank Albilad’s system will automatically log you out from Internet Banking systems after 20 minutes of inactivity. This reduces the risk of others accessing your information from your unattended computer. However, before the system logs you out automatically, a pop-up window will be appeared to give you the chance to continue your session, where you have to provide your login password.

Employee access

The Bank restricts access to customer's information by implementing the following standards:

  • Public access to personal information about customers is strictly prohibited.
  • Only authorized employees who have a specific business reason and who received proper training on customer information management technologies will be allowed to access customer data.
  • Our employees are committed to maintain confidentiality and customer privacy. Employees who breach this commitment will be subject to disciplinary actions, including legal liability, as maybe prescribed by the Bank.

Identity Privacy

The Use of log-ins/user name and passwords for verification identity

When you sign on for online access, Bank Albilad asks you to create your own password, along with a username, to access your accounts. This information is encrypted during transmission. Bank Albilad allows you to select your own personal username and password to login. To change your password, login to Albilad's online banking and go to “Maintenance”. This password is stored in our system in unreadable format so none can read it at anytime; when logging to the site, our system verifies the hashed password you entered with the hashed password stored in our system.

When selecting password for your online banking, remember the following guidelines:

  • The safest passwords are those that combine numbers and letters.
  • We strongly urge that you not use obvious passwords, such as your birth date or name.
  • Never share your password with anyone.
  • Change your password frequently.
  • Your password needs to be at least 8 characters and must be alphanumeric. They are also case sensitive.

Automatic Lock-out: (After a number of incorrect attempts to log in)

When you successfully login to our system; a message will be displayed to show you the last login time; the last status of login (success or failure) and the unsuccessful attempts to login to your account so that users can identify if their account was subject to any login attempts without their knowledge. When a user attempts to login to the Bank net with a wrong password for 3 times; the system will automatically lock out the user and the user will has to retrieve login information by using the “Retrieve Login Information” link.

Steps should be taken by the user to increase settings security.

While Bank Albilad continues to evaluate and implement the latest improvements in Internet security technology, users of the Internet Banking System also have responsibility for the security of their information and should always follow the recommendations listed below:

  • The Internet Banking System is best viewed when you use Internet Explorer browser, as it has been tested at our site.
  • Your login password must be kept confidential. You must follow our specific parameters for a login password and change it frequently to ensure that the password cannot be guessed or used by others.
  • Be sure others are not watching you enter information on the keyboard when using the system especially when you login to the system.
  • Never leave your computer unattended while logged in to the Internet Banking System. Others may approach your computer and gain access to your account information if you walk away.
  • Click logout when you are finished using the system to properly end your session. Once a session has been ended, no further transactions can be processed until you login to the system again.
  • Close your browser when you are finished, so that others cannot view any account information displayed on your computer.
  • Keep your computer free of viruses. Use virus protection software to routinely check for a virus on your computer. Never allow a virus to remain on your computer while accessing the Internet Banking System.
  • Activate a pop-up window blocker: There are programs available online that will block pop-up windows. Perform an Internet search for “pop-up blocker” or look at the options provided by major search engines. You should confirm that these programs are from legitimate companies before downloading. Once you have installed a pop-up blocker, you should determine if it blocks information that you need to view or access. If this is the case, you should consider turning off the blocker when you are on web sites that you know it use pop-up windows to provide information you need or want to view.
  • Scan your computer for Spyware regularly: You can eliminate potentially risky pop-up windows by removing any Spyware or Adware installed on your computer. Spyware and Adware are programs that look in on your Web viewing activity and potentially relay information to a disreputable source. Perform an Internet search for “Spyware” or “Adware” to find Spyware removal programs. As with a pop-up blocker, you will want to be sure that your removal program is not blocking, or removing wanted items, and if it is, consider turning it off for some web sites.
  • Avoid downloading programs from unknown sources: Downloads may contain hidden programs that can compromise your computer’s security. Likewise, email attachments from unknown senders may contain harmful viruses.
  • Keep your computer operating system and Web browser updated; use the Microsoft automatic update feature in your operating system.
  • Use “Albilad net” and “Albilad Tadawul” from a dedicated machine; preferred not to open any other explorer while you are banking online.
© 2010 All rights reserved to Bank Albilad Privacy Policy |  Terms of Use  |  Security Statement