Skip to main content

Online Security - Personal and Business

Your online security is our priority

At Union Bank®, we believe in investing in your security. We consider your information to be a critical and valued asset, entrusted to our bank: The confidentiality and integrity of your information and financial assets are of primary concern, and we are committed to safeguarding that information.

Online security: Cyber crime and COVID-19

As the pandemic has driven us to do more and more at home, which may continue for some of us well into the future, it’s never been more important to stay connected and plugged in. Therefore it's never been more critical to understand online security best practices and what you can do to protect your information online. Cybercriminals are taking advantage of the situation and they are creating fraudulent messages, websites and apps concerning the virus and vaccinations. Just as you are taking extra precautions by washing your hands more often and using hand sanitizer, please take the time to ensure you’re brushing up on your cyber-hygiene. Stay safe through education and review this alert on COVID-19 cyber scams from the Cybersecurity and Infrastructure Agency (CISA).  Follow the tips for protecting personal information and leverage the cybersecurity resources below to ensure your cyber safety in the new normal:

  • You may be working from home, stay cyber secure. The National Cyber Security Alliance offers an extensive resource library on teleworking and online scam prevention.
  • To protect yourself against email, online, and phone scams, please review our cybersecurity practices, which include tips on how to spot fraudulent communications, how to stay safe on social media, and how to protect accounts with strong passwords.
  • Keep your personal information up-to-date: Check that your most current contact information (phone numbers, email, mailing address) is reflected in your bank account. This allows us to contact you quickly if we detect any unusual activity on your accounts.
Couple reviewing finances on laptop

Online security practices

We maintain enterprise-wide information security programs in good faith compliance with applicable laws and regulations, including the Gramm-Leach-Bliley Act (GLBA). Our teams work hard to ensure that all financial transactions, data transmissions, and communications are conducted in a secure online environment. 

Our approach to security strives to create an advanced web of protection that safeguards your private information and financial assets, while providing the banking services you need.

Multi-layered security program

Here are some of the steps we take to protect your information:   

  • We maintain a task force composed of security, information technology, and business professionals focused on assessing risk, testing the security controls of our services, and executing remediation plans to maintain our secure computing environment.
  • We engage in ongoing application and network threat modeling and penetration testing. Before we offer our customers new services and features, we test them to ensure that they meet our standards for confidentiality and integrity. We also reevaluate our controls to ensure that our services and software withstand newly discovered vulnerabilities and attack vectors or techniques.
  • We have a formal Incident Response Program that outlines the process in the event of a breach of electronic or physical security or loss/exposure of sensitive data. The Incident Response Program is structured to provide timely and efficient assessment and response to all reported incidents, in compliance with state and federal laws and regulations.
  • We evaluate our online security practices regularly, with internal audits and evaluations of our internal control environment.
  • Our program also includes investment in both the skills of our people and in advanced security systems. Our employees, along with the tools that enable them to do their jobs, are our strongest assets in the fight against hackers and fraudsters. We engage with our employees through our security awareness program and train and certify them to ensure they understand policy, regulations, and security. We periodically evaluate the preparedness of our employees through simulations of cyber threats.
  • We communicate with our customers and commercial clients about cybersecurity and IT updates and requirements.
  • We require that relevant third-party service providers adhere to specific security policies and standards, as well as regulatory obligations.
  • We maintain strong relationships with law enforcement and leaders in the security industry.

Responsibility for unauthorized transactions

Federal Regulation E provides certain protections against loss resulting from unauthorized Online Banking or Mobile Banking transfers from your personal account, such as bill payments or transfers to other accounts. These protections do not apply to business purpose accounts, regardless of account ownership.

If you give your online PIN or access code to another person, you take responsibility for all transactions made by that person or by anyone else to whom that person gives the PIN or code, directly or indirectly, until you notify us to cancel your online service. If you download account information to your computer, you take responsibility for protecting the downloaded information from access by unauthorized persons.

You will not be responsible for any unauthorized online transaction if you report the first incident to us within 60 calendar days after the date of the first statement where the transaction is shown. If you do not report it to us within that time period, you could be held responsible for unauthorized transactions that occur after the 60 days. Thus, it is important for you to check your statement or Online Banking Account Detail screen regularly and report any unauthorized activity to us immediately.

If your online PIN or access code is lost or stolen and you tell us within 2 Business Days after you learn of the loss or theft, you can lose no more than $50 due to unauthorized activity using your PIN or code. If you do not tell us within 2 Business Days, you could lose as much as $500 if we can prove that we could have stopped the unauthorized activity if you had told us.

If you believe there has been an error with an online transfer or payment and you notify us within 60 calendar days after the transaction first appears on your account statement, we will either:

  • Make a determination within 10 Business Days after we hear from you
  • Take up to 45 calendar days to investigate. If we do this, we will credit your account within 10 Business Days for the transaction you think is in error. You will have use of the funds while we investigate.
  • We may take up to 90 calendar days to investigate, if a notice of error involves an electronic fund transfer that:
    1. Was not initiated within a state;
    2. Resulted from a point-of-sale debit card transaction
    3. Occurred within 30 days after the first deposit to the account was made.

Review our “Personal Accounts & Services Disclosure and Agreement and Fee Schedule" for more information.

If you, or any user of the Online Banking service designated by you, give the online PIN or User ID to another person, you take responsibility for all transactions made by that person or anyone else to whom that person gives the PIN or User ID, directly or indirectly, until you notify us to cancel your online service. If you or any designated user downloads account information from the Online Banking service to your computer, you take responsibility for protecting the downloaded information from access by unauthorized persons. 

If your statement shows transactions that you did not make, notify us at once. If you do not notify us within 30 days after the date of the first statement where the transaction is listed, your statement will be considered correct and we will have no further responsibility to you with respect to online transactions shown on that statement.

If you think you have been a victim of fraud...

To report suspicious activity on your account (ATM/Debit, Check Fraud): 
Call 800-238-4486 Monday-Friday: 7:00 a.m. to 5:00 p.m. PST
Saturday: 8:00 a.m. to 5:00 p.m. PST
Sunday: Closed

To report suspicious activity on your credit card: 
Consumer: 888-642-3311  
Business: 888-643-9800 
Available 24/7

Looking for cyber tips?

From protecting your password to staying ahead of the latest IT scams, we have a number of tips designed to keep you cyber safe.  Your online safety is very important to us.

Explore cyber security articles