Welcome to the World of Internet Banking – Banking at your fingertips. Please take time to read and understand the risks in Online Banking
Always type the address of the website in the address bar of your browser or access it from your stored list of favourites.
Do not share your Passwords with anyone - Corporation Bank officials will never ask you for your Internet Banking Passwords.
Change your Passwords frequently - Use the best practices for creating passwords and ensure that passwords are sufficiently complex and change them periodically.
Use Virtual Keyboard - Using the virtual keyboard wherever available would help prevent key logger compromises as in such cases the keyboard is not being used for the input. It is advisable to use the virtual keyboard when you access Internet Banking from public locations like Internet Cafes or Browsing Centres.
Check for your Last Login Time - Login to the Bank's internet banking website to view the date and time of your last login.
Limit the use of physical statements - Online statements easier to manage than paper statements and instantly retrievable. The fewer personal documents are sent through the post, the less the chance for a possible fraud.
Review your account statements carefully - Make a habit of reviewing your account statements regularly. The Mini Statement and Detailed Statement options available on the internet banking site shall help you to review your bank account statements thoroughly.
Be Vigilant - Never fill in any form that you have accessed via a link received through e-mail or from other sources, with sensitive data such as User-ID, Password, PINs, and other account related information.
Login Frequently - Logging into the internet banking website not only helps you keep track of your accounts online but also enables you to notice and stop any fraudulent activity quickly.
Be Cautious - Do not leave your internet banking session unattended. Always ensure sign off after use from your online banking session.
Update Your Latest Mobile Number – Please register your correct mobile number through the base branch so that instant alerts are delivered to your mobile through Short Messaging Service (SMS) for all successful online transactions. Similarly, update your correct e-mail ID also to receive alerts. Kindly check the mails
Verify Anti Phishing Image – Remember the image chosen by you and ensure that the image appears whenever you login to the Internet Banking Website. In your own interest please register for the forget password facility so that you can regenerate the passwords whenever you have forgotten the same.
Be very sure of the website address:
The website address is reflected on the address bar of your Internet Browser. This check is recommended every time you access any website from a link given elsewhere. Always type the website address yourself or bookmark the websites that you use frequently.
Never enter, confirm or update your account-related details on a pop-up window.
Enjoy added security when using your Credit card online:
If you tend to use your Credit Cards frequently for online shopping, make sure that you sign up for the websites displaying Verified by Visa and/or Master Card Secure Code program(s). (Applicable only in certain countries)
Confirm that website is a secure one:
Make sure any Internet purchase activity you engage in is secured with encryption to protect your account information. Look for "secure transaction" symbols.
Shop Online only from reputed websites
Beware of online offers that require you to provide your account details for ' verification'
In the course of using this website or availing the products and services vide the online application forms and questionnaires, Corporation Bank and its Affiliates may become privy to the personal information of its customers, including information that is of a confidential nature.
Corporation Bank is strongly committed to protecting the privacy of its customers and has taken all necessary and reasonable measures to protect the confidentiality of the customer information and its transmission through the world wide web and it shall not be held liable for disclosure of the confidential information when in accordance with this Privacy Commitment or in terms of the agreements, if any, with the Customers.
Corporation Bank endeavours to safeguard and ensure the security of the information provided by the Customer and uses 128-bit encryption, for the transmission of the information, which is currently the permitted level of encryption in India. When the information provided by the Customers is not transmitted through this encryption, the Customers' system (if configured accordingly) will display an appropriate message ensuring the best level of secrecy for the Customers' information.
The Customer would be required to cooperate with Corporation Bank in order to ensure the security of the information, and it is recommended that the Customers necessarily choose their passwords carefully such that no unauthorised access is made by a third party. To make the password complex and difficult for others to guess, the Customers should use combination of alphabets, numbers and special characters (like !, @, #, $ etc.). The Customers shall undertake not to disclose their password to anyone or keep any written or other record of the password such that a third party could access it.
Corporation Bank undertakes not to disclose the information provided by the Customers to any person, unless such action is necessary to:
- Conform to legal requirements or comply with legal process;
- Protect and defend the Bank's or its Affiliates' rights, interests or property;
- Enforce the terms and conditions of the products or services; or
- Act to protect the interests of the Bank, its Affiliates, or its members, constituents or of other persons.
The Customers shall not disclose to any other person, in any manner whatsoever, any information relating to Corporation Bank or its Affiliates of a confidential nature obtained in the course of availing the services through the website. Failure to comply with this obligation shall be deemed a serious breach of the terms herein and shall entitle Corporation Bank or its Affiliates to terminate the services, without prejudice to any damages, to which the customer may be entitled otherwise.
Corporation Bank will limit the collection and use of customer information only on a need-to-know basis and would deliver better service to the customers. Corporation Bank may use and share the information provided by the Customers with its Affiliates and third parties for providing services and any service-related activities such as collecting subscription fees for such services, and notifying or contacting the Customers regarding any problem with, or the expiration of, such services. In this regard, it may be necessary to disclose the customer information to one or more agents and contractors of Corporation Bank and their sub-contractors, but such agents, contractors, and sub-contractors will be required to agree to use the information obtained from Corporation Bank only for these purposes.
The Customer authorises Corporation Bank to exchange, share, part with all information related to the details and transaction history of the Customers to its Affiliates / banks / financial institutions / credit bureaus / agencies/participation in any telecommunication or electronic clearing network as may be required by law, customary practice, credit reporting, statistical analysis and credit scoring, verification or risk management and shall not hold Corporation Bank liable for use or disclosure of this information.
Security is the most important element of any internet based system. Since the system processes and transmits sensitive financial information and payment instructions of corporations, security becomes crucial. CorpNet uses a multi-tiered security architecture that covers all aspects of security in electronic communication.
Login & Access Rights (level 1)
As a first level of security, CorpNet ensures that only the Client appointed and authorized personnel with designated User Id and password can access the system.
Access rights can be setup for each function of CorpNet. Users can access only the functions for which they have access rights.
Authorisation Password (level 2)
For carrying out online transactions, customers are requested to use an authorisation password. Always ensure that the login password and authorisation passwords are different so that any compromise of one does not enable the fraudster to transfer money from your account.
One Time Password (level 3)
As a measure of pre-caution, the Internet Banking Software would generate a random One Time Password that would be sent to the registered Mobile Number for all on-line transactions and for third party funds transfer. Ensure that your mobile is handy and reachable, when carrying out online Funds Transfer or e-commerce transactions.
CorpNet uses SSL for the authentication and DES for point-to-point secured transmission of data.
Each session of CorpNet is protected by an unique session id and session is invalidated after a preset period and a new session is initiated.
CorpNet also provides security features like Database Access Control List and other Audit Trails.
CorpNet provides the valid users an unique user-id and password for accessing and transmitting data to the CorpNet server through network resources. The information are encrypted and stored in the database. The Passwords are available in a PIN Mailer. Use them immediately and change the login and authorisation passwords. Do not write it down on the same PIN Mailer. Keep the passwords complex and that it is not easily guessable by persons known to you.
CorpNet ensures the information transmitted across the network remains private and inaccessible by unauthorized third party or hackers. This is done through encrypted data transmission using Secured Socket Layer (SSL). Data is encrypted before transmission and decrypted by the Server before processing.
What is Phishing?
Phishing is a form of cyber attack in which the fraudsters induce Internet users to divulge sensitive, confidential information relating to bank accounts. The technique uses email to 'fish' the Internet hoping to 'hook' users into supplying with the login-IDs, passwords, PINs, credit card information etc.
In a typical phishing attack, a user receives an e-mail purported to be sent by a financial institution. The e-mail will carry the spoofed [Spoofing : creating a look alike/shadow/mirror copy] image or logo of the financial institution and will attempt to convince the user to provide / part with personal, account details by directing him to visit a web link (hyperlink) given in the e-mail message. When the user clicks the hyperlink, he will be led to a fictitious web page, which will be a look alike/ exact replica of the website of the financial institution but hosted by the fraudsters. An unsuspecting user, unaware of such a malicious activity will be requested to provide his personal / account details in the fraudulent website in the pretext of some exigencies like updating Bank's database, for cross-verification etc. The fraudsters then use the information for fraudulent transactions causing huge financial losses to the individuals and financial institutions.
Successful phishing countermeasures involve educating the users to be careful while handling emails even though they appear to be emanating from legitimate sources. What needs to be remembered is that Banks will not request customers for such sensitive information in the first instance, leave alone through relatively unreliable modes like Internet / email etc.. This necessitates an user to pay close attention to the contents of any email that seek any personal information.
While logging to Internet Banking, Choose an image and ensure that the image is shown whenever you login to the Internet Banking site of Corporation Bank.
Keystroke logging (often called keylogging) is a diagnostic tool / device to capture the user's keystrokes. Keylogging can be achieved by both hardware and software means. Hardware key loggers could be devices attached to keyboard cable or devices installed inside the keyboards. Software key loggers are software applications specifically designed for the purpose and like any other computer program are distributed as a trojan horse or as part of a virus.
Using the virtual keyboard wherever available would help prevent key logger compromises as in such cases the keyboard is not being used for the input.
Corporation Bank does not request for the account information of the customers in any form. Please do not provide personal information like passwords, PIN, Debit Card numbers to any entity in response to an e-mail, oral or any other kind of requests.
In case you have revealed any sensitive information, you are advised to immediately change your login and authorisation passwords.
Do not click on any link to access our Internet Banking website. Always type https://www.corpbank.in or https://www.corpretail.com or https://www.corpbank.biz in the browser address field to go to the Corporate Website or Retail Banking website or Corporate Internet Banking websites of Corporation Bank.