Solutions Products Resources Support
CU Village.com Solutions Home
  Home » About Us > Privacy & Security

Privacy & Security
 

Privacy

When your member conduct their credit union business (transactions) through your Web site they should feel as comfortable as they do when they visit you in person.

At Credit Union Village we understand the need to serve your members privately and appropriately.

After all, members' information is personal; it's proprietary and ought to stay that way. With our security features, we ensure that it does.

CU Village.com Privacy Policy
CU Village.com's policies and procedures for handling customer information have been created with the understanding that Internet technologies are still evolving and that Internet business methods are continuing to evolve to meet the needs and opportunities of the changing technologies. As a result, these policies and procedures are subject to change.

In the course of serving its customers, CU Village SM may acquire, store and transmit customer communications and information that customers may regard as private or sensitive. Some of this information — such as the customer's name, address, telephone number, and credit card data — is provided to CU Village by its customers in order to establish service. Other information — such as the customer's account status, choice of services, and customer logs — is created and maintained by CU Village in the normal course of providing service. CU Village also uses cookies, which are small pieces of information that a Web site can store in a designated file on a user's computer for various reasons. For example, CU Village uses cookies on the landing pages of products sold online which record the customer information that is required on the order form. This information is then forwarded to an internal sales tracking database within CU Village database. In addition, CU Village may store customers' electronic mail and other communications as a necessary incident to the transmission and delivery of those communications. CU Village may share limited customer contact information with selected partners to provide customers with information about products or special that might be of interest to the customer. CU Village will not otherwise disclose its customers' personal and account information unless CU Village has reason to believe that disclosing such information is necessary to identify, make contact with, or bring legal action against someone who may be causing harm or interfering with the rights or property of CU Village, or CU Village's customers, or others, or where CU Village has a good faith belief that the law requires such disclosure. Furthermore, CU Village also will not, except for reasons stated below, disclose to third parties the contents of any electronic mail or other electronic communications that CU Village stores or transmits for its customers. The circumstances under which CU Village will disclose such electronic customer communications are when:

  1. it is necessary in order to provide service to the customer;
  2. it is necessary to protect the legitimate interests of CU Village and our customers;
  3. it is required to cooperate with interception orders, warrants, or other legal process that CU Village determines in its sole discretion to be valid and enforceable; and
  4. it is necessary to provide to a law enforcement agency when the contents are inadvertently obtained by CU Village and appears to pertain to the commission of a crime.

Security
CU Village.com (Credit Union VillageSM) will protect the confidentiality of its customers' information, account information and personal communications to the fullest extent possible and consistent with the law and the legitimate interests of CU Village.com, its partners, its employees and other customers of CU Village.com's services. To guard against the loss, misuse, and alteration of information that is collected from customers, CU Village.com has appropriate physical, electronic, and managerial procedures in place.

CU Village.com's Web hosting servers are 'hardened' against hackers with firewalls, proprietary tools, OS tweaks, network procedures and constant monitoring. This is not a guarantee that a hacker could not succeed.

Through Verio, we have System Administrators that are dedicated to Web hosting security. They insure that we are current with all OS security patches. We have very high-level software maintenance contracts with our Vendors (SGI, Cisco, Foundry, Nokia) so that we are sure to have the latest patches and support staff available to us 24x7x365 for fixes.

Security audits are run regularly on our servers. This supplements our internal efforts to keep our servers as protected as possible. We do record and monitor illegal port accesses both on the networking hardware and the servers. We log all accesses to our servers; that allows us to check the accesses for intrusion attempts. Additional technologies are also used to ensure notification of any active attacks.

For Denial of Service attacks, a new procedure that our System Administrators implemented called "ipfilterd" allows us to block attacks directed at a single Web site on a server rather than a network level giving us better granularity. "spamd" and Barracuda firewalls are other tools used to minimize the effect of attacks on the system — specifically email. Blocking spam makes us less of a target for those hackers that target Spammers. We also have the following implemented services:

  • Regularly scheduled digital tape backups
  • Each Dedicated Server resides in a protected sandbox
  • Potentially insecure programs are disabled or removed
  • Hacking alert system immediately notifies system administrators
  • Redundant OC12, OC3, and DS3 Internet connectivity
  • Routers and switches
  • Firewalls
  • Redundant power backup
  • 24/7 data center monitoring
  • Security hardened operating systems