Security
Security
 
Security
 
We are aware that fraudsters are operating on the internet, with many scams targeting financial services organisations and their clients. We take every step to ensure the security of our systems and the details stored on them. We recommend that you take similar action to secure your details. 
 
To help you, we have put together the following security advice:
 
 
 
Our Website Security
 
The security of your financial information is very important to us and we take every step to protect you online. We use the latest technology to ensure that our online dealing service is a safe and secure environment. Here is what we do:
  • Secure Sessions 
  • Secure Login   
  • Session Timeout 
  • Cookies 
Secure Sessions
 
When you login to our website you are always in a 'secure session' - you can tell this by looking for a padlock at the bottom right hand of your browser and checking that the website address starts with 'https'. This means the data sent between your computer and our website is encrypted and even if it does fall into the hands of a third party, it is virtually impossible to decipher.
We use 128-bit Secure Socket Layer (SSL) encryption - which makes our website very secure.
 
Secure Login
 
Our login process provides another layer of security. We use the industry standard login process of User ID and Password. Only after you have correctly entered these details can you access your accounts.
To ensure that a high level of security is maintained, please remember that you must not disclose your User ID, account details, account number(s), or passwords to anyone. Tell us immediately if you think these may have been disclosed to someone else.
 
Session Timeout
 
After logging into our website, if your session remains inactive for 20 minutes, you will be automatically logged off. This reduces the risk of unauthorised access of your account if you forget to logout.
To eliminate this risk please ensure you 'logout' when you have finished. To do so use the ‘Logout’ button in the left hand menu of the website. You will only see the ‘Logout’ button whenever you are logged in to your account.
 
Cookies
 
A cookie is a small harmless text file that websites sometimes store on your computer. They provide a safe means for sites to pass information to a user's desktop while protecting the security of the user, such as remembering your User ID.
A cookie cannot be used to get data from your hard drive, get your email address or access sensitive information about you as an individual. They have very strict specifications to ensure that they are not used to compromise security. 
 
Session Cookies
 
Session cookies (also called transient cookies) are stored in temporary memory on your computer and are deleted when the browser session is closed.
We use session cookies as an added layer of security to process your online transactions and requests. Without the session cookie information, we would not be able to complete your online transactions securely.
As we use session cookies for added security, you need to accept session cookies so that you can login and deal.
 
Your PC security
 
  • Anti-virus protection
  • Updates and patches
  • Personal Firewall
  • Downloads (including Spyware)
  • Email attachments 
 
Anti-virus protection

Anti-virus protection is software that can scan your incoming and outgoing mail to detect and if required destroy any known viruses. It can also scan your computer and destroy any viruses if detected.
  • If you use anti-virus software, ensure that you regularly update the software to keep it as up to date as possible.
  • If your anti-virus software has a virus scanner option, it is recommended that you scan your computer regularly - at least once a month.
  • Anti-virus software is available from many different manufacturers, with the main providers being Norton (from Symantec), McAfee and Zone Alarm. See the manufacturers' websites for further details.
Updates and patches

Software patches work to close a hole or weakness in your computer's software.
Personal Firewall

Personal Firewall software works in the background on your computer and prevents any unauthorised access to your computer while you use the Internet.
  • As with anti-virus software, ensure that you regularly update the software.
  • It is recommended that your Firewall is set up to work both inbound and outbound, so that you control not only what you allow into your PC, but also what leaves it.
  • Personal Firewall software will not protect your computer from any viruses so should run alongside Anti-Virus software.
  • Personal Firewall software is also built into Window XP, although it may need to be activated.
Downloads
 
There are many Internet frauds that rely on people downloading software to their computer often without their knowledge or consent. These programmes can include Spyware, Trojan software and Premium diallers.
  • Do not download any software onto your computer unless it is from a trusted source or site.
  • Some pop-ups will not close unless you click 'yes'. These will download a malicious programme onto your computer.
  • Be vigilant when downloading other software off the internet such as MP3s as malicious software is often 'hidden' amongst legitimate software.
Spyware
 
Spyware is a programme that will secretly gather information about you as you use your computer.
  • It is commonly downloaded without the knowledge or consent of the user.
  • It can slow down your computer, alter your homepage, produce lots of adverts or links to websites and even include keystroke loggers to record details such as passwords and user names.
  • There is free software available, for example Spybot, that claim to be able to remove Spyware from your computer. See the manufacturers' websites for further details.
Trojan Programmes
 
Trojan programmes are hidden programmes, again commonly downloaded without the knowledge or consent of the user, that can give control of your computer to a hacker or gather information about you as you use your computer.
  • They can record your key strokes with the aim of capturing your online user IDs, passwords and other sensitive details. The captured details can then be passed on to the hacker.
  • They can also access or delete files stored on your computer and even view what is on your screen.
  • If you are using anti-virus software, this should detect and destroy any Trojan programmes on your computer.
  • There are a number of specialist software programmes that claim to detect and remove Trojans. See the manufacturer websites for further details.
Premium diallers
 
There is currently an internet scam affecting dial-up internet users which changes the way your computer connects to the internet, resulting in a very large phone bill.
  • The scam works in the same way as Spyware or Trojan programmes in being a programme which is downloaded without the users consent or knowledge.
  • The programme is a premium rate dialler, that replaced your chosen internet dialler. Then every time you access the internet after that point you will be charged at a premium rate.
  • The dialler may also access the internet when you are using the computer but not online if you leave your computer connected to a phone line.
  • If you are a Broadband user this will not affect you, as long as you have disconnected the internal dial-up modem from your phone socket and don't use this modem to make fax or voice calls.
  • If you have any suspicions contact your telephone services supplier.
Email Attachments
 
Be vigilant of attachments sent to you via email, especially if you do not recognise the sender. Emails are a common way to spread viruses, if you are at all suspicious, do not open the email and delete it immediately.
 
 
Common Online Scams
 
  • Phishing
  • Additional income email scams
 
Phishing
 
Phishing is where fraudsters pretend to be a financial institution such as Barclays Bank in order to persuade you to enter your security details into a bogus website. Their aim is to obtain your security details and remove money from your accounts and their emails and websites are often very convincing. 
We will never send you an email asking for personal security information.
We take email security very seriously (see Our Wesite Security). But if you are at all concerned about receiving emails please choose not to use emails for sending us queries or receiving information from us such as Equity Research grade changes and Order Service updates. You will be offered the opportunity to either unsubscribe from any emails sent by us or you can choose ‘do not send’ when placing orders using our Order Service.
Please be on your guard against emails that request any of your security details. If you receive a suspicious email, please contact us.
 
Additional income email scam
 
A current scam involves someone offering, via an email or website, to pay funds into your bank account on the understanding you then transfer them overseas. In return, you supposedly get a commission. Many of these scams involve the proceeds of fraud. Ignore the request and delete the email.
 
Lottery Prize email

This scam involves being contacted to advise you that you have won a substantial amount of money. You will be asked to send bank details and other personal information. These scenarios are not genuine and your personal information may be used in other types of fraud.
 
 
Managing your Passwords and PINS (User ID)
 
Your passwords and PINs (Personal Identification Number) are the key to your online accounts and information security.
 
  • You should keep them secure and never share them with anybody. 
  • Change your password regularly and avoid having the same password for different services. 
  • Ensure your passwords are as secure as possible. Use a long password that contains letters and numbers in upper and lower case. 
  • For the optimum security on our website, use a password that contains more than 8 characters that contains upper and lower case (our systems already require combination letters and numbers passwords) 
  • Be wary of unsolicited phone calls or emails requesting you to disclose your personal security information. If in any doubt contact the bank/institution using a contact route you are confident with. 
  • Be aware when you access the internet – do not access sensitive websites such as online banking or email accounts from public access points. Ensure you do not choose to ‘save’ passwords or login details to any computers other than your own.
The web pages within this area are issued by TD Waterhouse CFDs and TD Waterhouse Financial Spread Betting which are trading names of City Index Limited (CI), who is a provider of contracts for difference (CFD) trading and financial spread betting and whose head and registered office is Moorgate Hall, 155 Moorgate, London, EC2M 6XB. For the purposes of CFD trading and financial spread betting any contract is between you and CI and all dealing, administration and settlement is carried out by them and
TD Waterhouse Investor Services (Europe) Limited are not responsible for any of the functions they perform. Your account is held with City Index Limited (CI), which is authorised and regulated by The Financial Services Authority (FSA Registered Number: 113942). Any references on these pages to TD Waterhouse CFDs Trading Service, TD Waterhouse CFDs Trading, TD Waterhouse CFDs, TD Waterhouse Financial Spread Betting mean the trading service carried out by CI under those names.
   |    Privacy Policy    |    Terms and Policies    |    Accessibility    |    Disclaimer    |    Security    |