SSL Certificate
Your information, such as your Customer ID, ePIN, and other transaction details, are encrypted using the Secure Socket Layer (SSL) Certificate.
ePIN
BBK’s online banking channels (Online Banking and BBK Mobile Banking App) can only be accessed using a registered Customer ID and ePIN.
Dual Factor Authentication
One-Time Passwords (OTP) are generated when you log into your Online Banking and BBK Mobile Banking App accounts and authorize requests. These OTPs are only valid for one session and for a limited time only.
Access Control and Intrusion Prevention
Our e-Channels are protected by Intrusion Prevention Systems and Web Application Firewalls. These security systems help prevent unauthorized access and provide strict monitoring to prevent intrusions.
Compliance
BBK complies with the Payment Card Industry’s Data Security Standards (PCI DSS 3.2) and the ISO 27001 Certification
Security Policies
We ensure that all our security policies are regularly reviewed and updated. In addition, BBK employees undergo extensive training and skill development for security-related topics such as Secure Coding, PCI, and Privacy Law.
Dedicated Security Personnel
BBK has a dedicated Trust and Security Organization that handles the security of all applications, networks, and systems. This team is responsible or security compliance, education, and incident response.
Vulnerability Management
BBK utilizes a Vulnerability Management Program that includes periodic scans to identify and remedy security vulnerabilities of servers, workstations, network equipment, and applications. In addition, internal and external penetration tests are also conducted regularly.
Logging and Monitoring
Our application and infrastructure systems are equipped with a centrally managed log repository where vital information for troubleshooting, security reviews, and analysis are kept. BBK can grant customers access to these logs should there be any security incident that affects their account.
