lock

Security is our top priority

Our online services are a safe and secure way to manage your finances and are built around the highest security standards. It is important that you are aware of potential fraud attempts that can come from the Internet. You will find information about the most common threats and frauds below:

Phishing

Phishing is a technique commonly used by fraudsters to obtain personal data and security information in order to steal an identity or money. Fraudsters usually send emails that appear to come from a legitimate company to encourage you to visit a fake website and provide personal information. Financial institutions are frequently targeted by such attacks.

Sogexia may occasionally send you marketing information or product information by email. It is important to note that we will never ask you for your personal information, login or card details or encourage you to visit or connect to a site through an email.

It is also possible to end up on a website appearing identical to the legitimate site after a query on a search engine. However, this fake site will have the sole purpose of stealing your login details.

Finally, some online shops are set up to collect bank card numbers. After making a purchase on one of these sites, you will not only never receive the item purchased but fraudsters will have recorded your personal banking information and may reuse this later without your knowledge.

Advance paymens

Advance payment fraud is a method by which a fraudster tries to extort an “advance” from you to secure a specific transaction. There are several variations of this type of fraud.

Principle:
  • You receive an unsolicited message (e.g. fax, email, letter or website) about an individual, a company or government wishing to transfer funds abroad
  • These messages are sometimes similar to those from real institutions
  • The fraudster will then contact you directly to transfer funds to your bank account in exchange for reduced fees
  • If you respond to the initial offer, you will probably receive an “official” document to complete. Typically, you will be asked to provide a letter with your BIC/IBAN in addition to the amount to be covered for the transaction, transfer and legal costs
  • The fraudster then quickly transfers the funds to an offshore account and moves on to the next victim

Viruses and Trojan horses

The effects of a virus or a Trojan horse greatly depend on its purpose. Some only cause little or no damage, while others can be very dangerous and deliberately target online banking customers. The bank viruses are specifically programmed to obtain personal information or security data from an infected PC or phone. These viruses can then access the device when the user enters their password on the bank site or connects from a fake login window created for the occasion. Such viruses can be installed from an infected website or by opening an email attachment that looks legitimate and from a trusted source.

SMS and phone calls

Sending SMS or making phone calls are widespread fraud techniques. Fraudsters send you an SMS or phone you posing as a legitimate person or company in order to trick you into sharing personal information.
At Sogexia, we understand the paramount importance of the security and confidentiality of your information.

To counter the threats posed by fraudsters, we recommend that you apply the simple guidelines below to help you improve the security of your PC and your personal information.

DO
DO NOT DO
Keep your anti-virus software up to date. Write the PIN for your card down and/or keep it with your card (if you must write it down, disguise it and keep it separate from your card and in a secure location).
Keep your operating system up to date. Keep your passwords in a file on your computer.
Keep your browser up to date. Open attachments from people you do not know or open attachments from people you know (unless you know their content).
Install a firewall on your computer. Share passwords with other people.
Make sure, if you enter personal information, that the connection is secure. A closed padlock should appear in your browser’s address bar and the address should begin with https:// instead of http:// Click on links in an email.
Ensure your web browser’s security is configured properly. Connect to your bank’s website using a search engine: always type the address in the browser yourself or add the site to your bookmarks.
Use different passwords for every website or service and change them regularly. Use an unknown computer to connect to your online account.
To make sure you can access your accounts with confidence, Sogexia uses the highest levels of security:

Secure connection

Our web and mobile online accounts require a username and secure password to access them. It is important that you never give anyone your personal login information.

Before entering any personal information on a web page, always check that the website belongs to Sogexia:
  • Check that the page address starts with https://
  • Check that the security lock is present in the address bar and displays Sogexia (you can click on the padlock to verify the security certificate)
  • Never connect to the site after searching on the Internet but enter the website address in the address bar manually and save the Sogexia site in your web browser’s bookmarks

SSL encryption

To ensure continuous secure access to our services, we use an SSL EV 256-bit certificate on each page of the site.

Automatic logout

This feature protects against unauthorised access to your online account.

Your online account signs you out after 8 minutes of inactivity. You must continue browsing (by clicking) to stay connected.

Last login date

The date and time of the last connection to your online account are displayed on the homepage. Always ensure that you recognise the connections. Otherwise, please contact Customer Service.

Strong authentication – 2-step connection

We have put a strong authentication protocol in place to protect against security threats. Depending on your account settings, at the time of each connection from a new browser, you will be asked for a single password that can only be obtained from a digital card reader which has been previously sent to you, by SMS or by calling a special number from the phone connected to your account.