Security

Bridgewater Bank is pleased to offer Internet banking and bill payment services. Delivering these services requires a solid security framework that protects you and our institution’s data from outside intrusion. We are committed to working with our Internet service and communications providers to produce the safest operating environment possible for our customers. The information below summarizes our security framework, which incorporates the latest proven technology.  There are several levels of security framework. User Level deals with cryptography and Secure Sockets Layer (SSL) protocol, and is the first line of defense used by all customers accessing our banking server from the public Internet. Server Level focuses on firewalls, filtering routers, and our trusted operating system. Host Level deals specifically with our Internet banking and bill payment services, and the processing of secure financial transactions.

A few simple things  you should know as a online banking user include:   

  • We will never email, call or otherwise ask you for your user name, password or other electronic banking credentials.  
  • You can help protect yourself by implementing alternative risk control processes like:
    • Make sure you have an adequate user name and password that, at a minimum, mixes in small case letters, uppercase letters, special characters and numbers.  
    • Periodically changing your password and safeguard your username and password information.
    • Making sure you have a firewall in place when conducting your financial transactions.
    • Logging off the system when you're done conducting business - don't just close the page or "X" out of the system.
    • Monitor you account activity on a regular basis.  Call us immediately if you see a discrepancy!  You must act in a timely matter to take advantage of the protections established to guard against unauthorized electronic funds transfers. 

 

  • In addition, commercial accounts are required to perform their own risk assessments.  The following are some examples of actions you should be monitoring:
    • Passwords that are left out in the open or written down.
    • The use of old or inadequate passwords.
    • The possibility of fraud or internal theft.
    • Delays in terminating the rights of former employees
    • The lack of dual control or other checks and balances over individual access to online transaction capabilities.
  • An evaluation of controls your business uses may include:
    • Using password protected software to house passwords.
    • Conducting employee background checks.
    • Initiating a policy and process to terminate access for former employees.
    • Segregating duties among two or more people so no one person has too much access or control.
    • Conducting internal audits of controls
    • Using firewalls to protect from outside intrusion or hackers.

User Level

There are several components of User Level security that ensure the confidentiality of information sent across the public Internet. The first requires your use of a fully SSL-compliant 128 bit encrypted browser such as Netscape Navigator or Microsoft Internet Explorer. SSL is an open protocol that allows a user’s browser to establish a secure channel for communicating with our Internet server. SSL utilizes highly effective cryptography techniques between your browser and our server to ensure that the information passed is authentic, cannot be deciphered and has not been altered en route. SSL also utilizes a digitally signed certificate which ensures that you are truly communicating with the Online Banking Server and not a third party trying to intercept the transaction.

After a secure connection has been established between you and our server, you then provide a valid User ID and Security Code to gain access to the services. This information is encrypted, logged by the server forming another complete physical security layer to protect the server’s information, and a request to log onto the system is processed. Although SSL utilizes proven cryptography techniques, it is important to protect your User ID and Security Code from others. You must also follow the Security Code parameters we specify at the time you sign up for an Internet banking account. We also recommend changing your security code often. Session time outs and a limit on the number of logon attempts are examples of other security measures in place to ensure that inappropriate activity is prohibited at the User Level.

Server Level

All transactions sent to our Banking Server must first pass through a filtering router system. These filtering routers automatically direct the request to the appropriate server after ensuring the access type is through a secured browser and nothing else. The routers verify the source and destination of each network packet, and manage the authorization process of letting packets through. The filtering routers also prohibit all other types of Internet access methods at this point. This process blocks all non-secured activity and defends against inappropriate access to the server.

The Banking Server is protected using the latest firewall platform. This platform defends against systems intrusions and effectively isolates all but approved customer financial requests. The platform secures the hardware running the online applications and prevents associated attacks against all systems connected to the Banking Server. The system is monitored 24 hours a day, seven days a week for a wide range of anomalies to determine if attempts are being made to breach our security framework.

Host Level

Once authenticated, the customer is allowed to process authorized Internet banking and bill payment transactions using host data. In addition, communication time-outs ensure that the request is received, processed, and delivered within a given time frame. Any outside attempt to delay or alter the process will fail. Further password encryption techniques are implemented at the host level, as well as additional security logging and another complete physical security later to protect the host information itself.

User Responsibilities

While our service provider continues to evaluate and implement the latest improvements in Internet security technology, users of the E-Banking system also have responsibility for the security of the information and should always follow the recommendations listed below:

  • Utilize the latest 128 bit encryption version of either Netscape Navigator or Microsoft Internet Explorer. The online banking system is best viewed and is most secure when you use one of these two browsers, as they are both certified for use at our site.
  • Your Security Code must be kept confidential. You must follow our specific parameters for a Security Code and change it frequently to ensure that the information cannot be guessed or used by others.
  • Be sure others are not watching you enter information on the keyboard when using the system.
  • Never leave your computer unattended while logged onto the E-Banking system. Others may approach your computer and gain access to your account information if you walk away.
  • Click Exit when you are finished using the system to properly end your session. Once a session has been ended, no further transactions can be processed until you log onto the system again.
  • Close your browser when you are finished, so that others cannot view any account information displayed on your computer.
  • Keep your computer free of viruses. Use your virus protection software to routinely check for a virus on your computer. Never allow a virus to remain on your computer while accessing the online banking system.
  • Report all crimes to law enforcement officials immediately.


When you follow these simple security measures, your interaction with the E-Banking system will be completely confidential. We look forward to serving your E-Banking and bill payment needs both today and in the future- securely!

Limitation of Liability

Bridgewater Bank will not be liable for any damages, loses or expenses incurred in connection with this internet site or use thereof or the inability to use the internet site by any party, or in connection with any failure of performance, error, omission, interruption, defect, delay in operation or transmission, computer virus or line or system failure relating to the internet site, even if Bridgewater Bank, or its representatives, are advised of the possibility of such damages, losses or expenses. Hyperlinks to other internet site resources are at your own risk. The content, accuracy, opinions expressed, and other links provided by these resources are not investigated, verified, monitored, or endorsed by Bridgewater Bank.