first direct

help - security

System Security
Password Security
Automatic Timing Out of the Service
Information Security and SSL Certificates
VeriSign Commercial Software Publishers CA

System Security

We have always viewed system security as fundamental to our operation. As such, when developing Online Banking we have ensured that the integrity of our systems has remained our number one priority.

All banking information is encrypted to keep your personal information private and secure.

We digitally sign every message to guard against them being added to, deleted, replayed or tampered with, and any computer software we send to you is also digitally signed to prevent tampering.

To protect our systems and keep the banking network secure from unauthorised entry, we have installed the latest Firewall technology. We ensure that our systems are fully password protected and can only be accessed by authorised personnel. The latest security devices also protect our buildings.

Password Security

Your first direct passwords and security numbers are unique to you. The security of these is very important and it is in your own interest to ensure that they are not revealed to anyone. Password security also forms part of the Terms and Conditions of the Online Banking service. Therefore please remember:

You must keep your electronic password, telephone password and Digital Secure Key password or Secure Key PIN secret
You must take all reasonable precautions to prevent its unauthorised or fraudulent use
You should not write down or reveal passwords to others
Do not reveal your password to anyone
If you divulge your password, or suspect that it has been compromised, you should call the Digital Support Team on 03 456 100 234 immediately.

For added security, password details will be protected using highly secure encryption techniques. We recommend that you change your electronic password at regular intervals.

Please note that when you log on to Online Banking for the first time, you will need to set up a new username and memorable question/answer. To access full Online Banking service you will need either a Secure Key or a Digital Secure Key. You will be asked to choose which Secure Key you would like when you log on for the first time. You can access a limited Online Banking service by setting up a username, password and memorable question/answer.

We do not advise you to save any personal information on any device that is not controlled or maintained by you.

If you forget your electronic password please call us on 03 456 100 234.

Automatic Timing Out of the Service

Part of the security procedures within Online Banking is to ensure that the system is not connected to first direct whilst unattended. Therefore, if there is no communication between your computer and our Online Banking server over a set period of time you will be 'timed-out' from the service and we will break the connection to your computer.

The time-out period is currently set at 15 minutes, after which time you will not be able to send or receive information. If you experience a 'time-out' please ensure that your modem has disconnected from the service.

Information Security and SSL Certificates

Online Banking provides a secure method of information transfer between your computer and our Online Banking server. It uses the latest software encryption techniques including the international standard SSL (Secure Socket Layer). This has been incorporated into Microsoft® Internet Explorer version 4 or higher, Netscape Navigator 4.0 or higher, and other well-known browser/software manufacturers.

SSL works by encoding any data sent from one computer to another along with a SSL certificate (see below). Upon receipt of this encoded data the computer authenticates the sender and decodes the information into a readable form. This ensures that your banking information cannot be infiltrated by anyone not authorised to do so.

The sender and receiver use the SSL certificate to authenticate each other before the transfer of secure data. The browser will show a SSL alert, which tells you that the site has an authentic SSL certificate and the information is secure. The browser also verifies that the site certificate is valid.

This SSL warning will appear every time you receive sensitive data from first direct unless you check the tick box on the warning to indicate not to show it again.

For more information on SSL and certificates please see the Microsoft® Internet Explorer help pages.

VeriSign Commercial Software Publishers CA

VeriSign is the world's leading provider of digital certificate solutions for businesses and individuals wanting to perform secure electronic commerce and communications. VeriSign have underwritten our software using a digital signature which authenticates that the software originated within HSBC UK Bank plc. Should you require further information on VeriSign please visit their web site at www.verisign.com.

first direct is a division of HSBC UK Bank plc. © HSBC Group 2018. All Rights Reserved. Member HSBC Group.
Because we want to make sure we're doing a good job, we may monitor or record our calls. We hope you don't mind.