Return to the Global home page

Sign in to online services
Private Banking Online
Other Services

Close window

Steps you can take

There is much you can do to protect yourself online. Some are simple, others may require a little time invested or help from someone else.

If nothing else, please follow these five golden rules:

  • Ensure your operating system (e.g. Windows XP) and your internet browser have the latest security updates and patches
  • Use and regularly update anti-virus software
  • Use personal firewalls
  • Read our password advice
  • Use an anti-spyware program

Please also read the detailed information below:

Keep your details and identity secure


Identity theft is the act of stealing or using an individual's personal information without their knowledge or consent, for example, to illegally apply for credit, make purchases, or gain access to funds. Since the statements or bills related to the fraudulent accounts are often sent to a different address, victims may not be aware of the increased debt until they are tracked down by creditors or are turned down for credit. Identity theft can take months to detect and even longer to clear.

Reduce your risk and protect your personal information in all your financial dealings, whether over the Internet or during your normal banking activities, by following these tips:

Top tips
  • Take care where you go online
    If you can, try to avoid using Internet banking, or any other Internet services that require the use of critical passwords, at Internet cafés, libraries and other public sites to avoid the risk of information being copied and abused after you leave.
  • Get wise to online fraud
    Be aware that there are phoney web sites designed to trick you and collect your personal information. Sometimes links to such web sites are contained in emails purporting to come from financial institutions. Try whenever possible to use a known web address, or use a Favourite, to link to bank pages.
  • Change your passwords
    Always change passwords that may have been compromised.
  • Contact your bank if you think someone else knows your Internet banking password
  • Password protect your computer
    Use a password on your computer to prevent unauthorised individuals from accessing your information. If you are unsure how to do this, you may need to ask someone.
  • Disable the 'AutoComplete' function within your browser
    This will help prevent others from seeing personal information. On Internet Explorer for example, the ‘AutoComplete' function remembers data you have input, sometimes including passwords. Typically the browser's own Help function will tell you how to disable the 'AutoComplete' function.
  • Buy from well known companies – and only provide bank information in secure sessions.
Back to top

Keep your password secure


Passwords are the key to your online account information, to accounts at online stores and a host of other activities. Your HSBC Internet banking password would permit access to your bank accounts. For this reason it should be unique and very well protected.

Top tips
  • Keep them to yourself
    Do not be tempted to share your passwords with anyone.
  • Be unique
    Try and create passwords that are unique and not easy to guess.
  • Use letters and numbers
    Passwords containing numbers and upper and lower case letters are far harder to guess.
  • Be different
    Avoid using the same password for different services.
  • Don't be personal
    Do not be tempted to use passwords that can easily be guessed e.g. your name, your birth dates, telephone numbers, pet's name.
  • Never write them down
    If you really need to record your password then use a code system, e.g. transpose some of the letters.

No one at HSBC will ever ask you for your Internet banking password. If someone does ask you for it – they do not represent HSBC.

Back to top

Keep your computer secure


The Internet offers hackers the opportunity to access your system. In fact, although the web's a great way to find the demos, downloads, and music you may want, it's then that you could be at most risk. There are a number of steps you can take to protect yourself.

Golden rule number one
Update your operating system (e.g. Windows XP) and browser on a regular basis with the latest security updates and patches.

From time to time vulnerabilities are discovered in these programs. Before the publisher can release a security patch to correct these weaknesses, they can be exploited by virus writers and hackers to gain unauthorised access to those PCs that have not yet been patched.

To check for patches and updates you should visit the publisher's website, typically in their Download section.

Microsoft users can visit: http://windowsupdate.microsoft.com, which can automatically check what is required, and then suggest that you download it.

Golden rule number two
Use and regularly update anti-virus software.

You may already be using anti-virus software but to be effective the software should be updated on a regular basis with the latest “virus definition” files. If you are unsure how to do this, you should refer to the programs own Help function.

There are many effective programs to choose from, but the most common commercial products are from McAfee, Symantec (Norton) and Sophos.

It is also possible to obtain free anti-virus protection. A search for “free anti-virus” on Google will provide a list of the most popular.

Golden rule number three
Use personal firewalls.

A firewall is another small program that helps protect your computer and its contents from outsiders on the internet. When properly installed, it stops unauthorised traffic to and from your PC.

There are many effective programs to choose from. Common commercial examples are from Zone Labs , Symantec (Norton), McAfee and Computer Associates.

The widely recognised market leading free firewall is “Zone Alarm” from Zone Labs and there are many others to choose from. Zone Alarm is now used on over 20,000,000 PCs and has been awarded the PC World 2003 "World Class Award" for Best Firewall.

Top tips
  • Don't share computers
    Disable your computer's 'File and Printer Sharing' capabilities to help prevent unauthorised access. Use your computer's Help function for instructions.
  • Filename extensions
    Most operating systems use filename extensions. For example a word document ends in .doc and a photo image might end in .jpg

    By default some operating systems do not show these extensions. Whilst this presents cleaner looking file names, it also provides viruses with a means to hide. Use your computer's Help function (Index and then "display") for steps needed to display file extensions.

    Any file with what appears to be a double extension - e.g. wow.jpg.pif is almost certainly a virus and should never be opened.
  • Be wary of opening any unexpected emails with attachments
    A common way for a virus to spread is via email. Some viruses send copies of themselves to everyone in the infected PC's address book. This means it could appear to come from someone you know. Never open an e-mail attachment that contains a file ending .exe, .pif, .vbs as these are commonly used with viruses.
Back to top

Keep your online banking session secure


You should ensure that you and your family are aware of potential pitfalls and know the best way to deal with them. There are two key areas to focus on.

Logging in
Ensure you enter your correct password(s) without the details being overlooked by someone else.

Logging off
Always remember to log off from Internet banking and close your browser when you have finished your online banking. This will clear all traces of your visit from the PC's memory.

Top tips
  • Memorise your access
    Your Internet banking ID and password are your keys to accessing our online services. Only the right combination of these allows you access.
  • Don't use links to access our site
    Always enter the web address or use a Favourite. Do not use a link as this could in theory take you to a phoney web site that may look exactly like ours.
  • Avoid using shared computers for Internet banking
    Try to avoid using shared public PCs, such as those in Internet cafes, to access Internet banking.
Back to top

Keep your emails secure


Generally, email that is sent or received through a regular email address (e.g. yourname@hotmail.com) is not secured or encrypted to protect the content. Therefore, any personal information you include in an email is at risk of being intercepted by unauthorised individuals. Do not send your Internet banking Id and/or passwords by email to anyone - ever.

Top tips
  • Never send sensitive information by email
    Don't answer any unexpected emails requesting personal information.
  • Be wary of opening any unexpected emails with attachments
    A common way for a virus to spread is via email. Some viruses send copies of themselves to everyone in the infected PC's address book. This means it could appear to come from someone you know.

    Never open an e-mail attachment that contains a file ending .exe, .pif, .vbs as these are commonly used with viruses.

    Any file that appears to have a double extension is almost certainly a virus and should be deleted. Use your computer's Help function for further instructions.
  • Review who you use as your Internet Service Provider (ISP)
    Apart from varying prices, ISP's now offer a range of services that include virus protection on incoming emails.
Back to top

Protect yourself - even when you're offline


Even when you are offline, there's much that you can do to protect yourself. This centres on keeping private information strictly private.

Top tips
  • Keep your details safe
    Don't be tempted to share your User IDs, password or any unique personal identifier / details with someone else.

    Nor should you supply personal information to anyone over the phone or to a web site unless the source has been verified. HSBC would never ask for internet passwords over the phone.

    You should memorise your Passwords; do not record information in wallets or purses.
  • Read your statements
    Review your bank and credit card statements for any unusual transactions or withdrawals and notify the bank immediately if you suspect any discrepancies.
  • Notify your bank of any changes
    Tell us of any changes in your personal details (e.g. address change).
  • Store bank details, such as statements and cheque books, in a safe place
  • Credit and bank cards
    If you plan to cancel a card (or it expires), immediately destroy the card by cutting it in two, through the account number and the magnetic strip.
  • Keep yourself and your property safe and protected to minimise your risk of theft
    Be careful of any personal information you discard. If you can, destroy receipts, pre-approved credit card applications, bank statements and any bills that contain personal information.
Back to top

IMPORTANT NOTICE
No endorsement or approval of any third parties or their advice, opinions, information, products or services is expressed or implied by any information on this Site or by any hyperlinks to or from any third party websites or pages. Your use of this website is subject to the terms and conditions governing it. Please read these terms and conditions before using the website.

Email scams

For a list of known email scams aimed at HSBC Private Bank clients, please view our alerts.

Online banking

Learn more about HSBC Private Bank's online services.

Your questions answered

If you use online banking and have a question, find the answer in our frequently asked questions.