You Are Here: Home > e-Banking > Personal e-Banking > Service Conditions > Risk Reminders
Risk Reminders

The Applicant should take note of the following warnings when using the ICBC Personal e-Banking

1. Login to the correct website
- The Applicant who uses ICBC Internet Banking through personal computer should log on directly to the Bank's website It is suggested to add this website's address to the favorite browser and not visit the Bank's website via indirect links.
- The Applicant who uses ICBC E-Banking through mobile phone should install the Bank's application ICBC Mobile Banking from “App Store” for iOS or “Play Store” for Android system.
- The applicant shall verify the developer of the bank's application before downloading the application to ensure the downloaded application came from the trusted developer, not the fake application.
- The applicant shall update the bank's application to be a current version on his mobile devices regularly.

2. Keep the account number, User Name and Password confidential
- For the security of the Applicant's information and funds, the Applicant should read the contents of this Risk Reminder thoroughly before setting the Password. When setting the Password, any personal-related information such as name, birthday, or telephone number should not be used as the Password.
- The Applicant shall keep confidential the User Name and Password as well as other passwords and information related to the use of ICBC e-Banking and shall not disclose such information to other persons.
- The Applicant shall change the Password regularly at least every 3 months.
- The Password for the ICBC e-Banking shall not be the same as those set for the bank card or other user password on other websites.
- The Password shall not be saved or stored on the computer, any electronic file or written down on paper that is not kept in a safe place.
- Every time the Applicant logs on to the ICBC e-Banking, the "last log-on time" should be checked against the actual log-on time.

3. Set your ICBC e-Banking's profile for your own secure
- The Applicant shall set the log-on notification via Email at the setting menu. The Applicant shall change password immediately and contact the Bank's Call Center if getting notified but have not done the log-on transaction by yourself.
- The Applicant shall set the “Reserved Information” at the setting menu and verify “Reserved Information” on the welcome page to detect any unusual situation.

4. Secure your transaction with OTP
- OTP is a "One-Time Password" which is randomly generated and sent to your registered mobile number for validation of the transaction and will be validated within one minute. This is to provide an enhanced level of security on transactions.
- DO NOT share OTP with anyone for any offers, prizes or contests. The OTP is highly confidential information, which means that not even the bank's employees or its customer support team would ever ask you to share it.

5. Create a strong payment PIN
- A personal identification number (PIN) is a numerical code that is required to be entered to issued complete various financial transactions. The core purpose of PIN is to provide an additional layer of security to the electronic transaction process.
- Make your PIN unique and less easy to guess by avoiding obvious number combinations or sequences such as "111111", "123456" or "987654" .

6. Keep E-Password Token properly
- E-Password Token is a product for transaction security enhancement on the e-Banking services which provides you with a “Password Token” as the two factor authentication tool. Each dynamic code is used only once to help you avoiding the security issues.
- The e-Password Token should be kept in a safe place to prevent it from being used by unauthorized persons and from loss and theft.

7. Protect the Applicant's mobile phone
- The Applicant should not modify or alternate the Applicant's mobile phone system, used to log on ICBC e-Banking such as Jailbreak or Root.
- The Applicant who receives the Bank's SMS on the Applicant's mobile phone should take caution in using the mobile phone, keeping it safe from phone virus and unauthorized users.

8. Ensure the safety of the Applicant's computer
- Download, install or update Applicant's computer, widget, operating system and browser determined or provided by the Bank for the security.
- Install and promptly update anti-virus software.
- Install firewall program.
- Never open emails from unknown sources.

9. Other necessary protective measures
- Never allow any unauthorized person to use the Applicant's computer.
- Never use the ICBC e-Banking from publicly used computers such as Internet bars, public library, etc.
- Set a password on the computer or the mobile device to prevent others accessing confidential information.
- Never leave the computer or the mobile device idle while using ICBC e-Banking.
- Never run the Remote Assistance programs of the operation system while using ICBC e-Banking.
- Check that the payment amount and the billing amount are correct before confirming any transaction conducting via the ICBC e-Banking.
- Click "Logout" on the right top corner of the webpage to exit the ICBC e-Banking after each use.