Security Information – How CTBC Bank Protects You

CTBC Bank has implemented commercially reasonable technical, administrative, and physical security measures to protect your personal information from unauthorized access, modification, or use. We periodically review and update security measures in light of current technologies. At CTBC Bank, we are serious about protecting your personal information. We use a variety of methods to make sure your details are safe, for example, requiring a User ID and Password when you log in, employing multi-factor authentication, and using Secure Socket Layer (SSL) encryption for all your online transactions.

Secure Access and Verifying User Authenticity

To begin a session with the Bank's server, the user must key in a Log-in ID and a password. Our Internet Banking System uses a "3 strikes and you're out" lock-out mechanism to deter users from repeated login attempts. After three unsuccessful login attempts by a user, the system locks the user out, requiring either a designated wait period or a phone call to the Bank to verify the password before re-entry into the system. Upon a successful login, our system uses the industry’s best of breed Digital ID to authenticate the user's identity and establish a secure session.

Secure Data Transfer

With SSL, data that travels between the Bank and customer is encrypted and can only be decrypted with the public and private key pair. In short, the Bank's server issues a public key to the end user's browser and creates a temporary private key. These two keys are the only combination possible for that session. When the session is complete, the keys expire and the whole process starts over when a new end user begins a server session.


Requests must filter through a firewall before permitted to reach the server. The Firewall is a hardware-based network security system that controls the incoming and outgoing network traffic by analyzing the data and determining whether or not data should be allowed through, based on a rule set. A firewall establishes a barrier between a trusted, secure internal network and another network (e.g., the Internet), that is not presumed to be secure and trusted.

We use all of these methods to ensure that your Internet Banking transactions are secure.