Security

The privacy of communications between you (your browser) and our servers is ensured via encryption. Encryption scrambles messages exchanged between your browser and our online banking server.


Consumer Privacy

Citizens Bank of Kentucky takes consumer privacy seriously. We will take every precaution to protect your privacy. Citizens Bank will not share your information with other companies.

Online Privacy

The privacy of communications between you (your computer / device) and our servers is ensured via encryption. Encryption scrambles messages exchanged between your browser and our online banking server.


The use of Cookies

Cookies are small text files on your system, used to keep track of settings or data for a particular site. Web sites can use cookies to identify a returning user or to pass information between Web pages in a single visit.

There are two types of cookies: temporary and permanent. Temporary cookies are used and tracked by the browser to pass information and are deleted once the browser is shut down. Permanent cookies are stored on your system and can be accessed again for multiple visits. Permanent cookies usually have an expiration date and will be automatically deleted from your system at that time. Internet Banking uses temporary cookies and may use permanent cookies, but never passes private information through cookies.

Internet Banking also uses a different kind of temporary cookie known as a session cookie, a non-persistent cookie, or a pre-expired cookie. This cookie is used as part of the stringent security measures in Internet Banking to make sure that each page in Internet Banking is not cached or saved on your system. This means that each page must be retrieved from the Web server. This cookie is deleted when a user logs out Internet Banking session expires or if the browser window is closed and ensures that another user on the same computer cannot access the previous user's Internet Banking session or information.

Enhanced Security used by Internet Banking may place a secure permanent cookie on your computer. This secure cookie is unique, and when used in combination with your login information, creates a unique way to identify you to the system. For every login attempt after you add extra security to a computer, this secure cookie is validated along with the login identification you normally enter. This secure cookie is only used to validate your identity and does not contain any personal information.


Linking to Other Sites

We will provide links to other websites from Citizens Bank of Kentucky website. You will receive a notification when leaving our banks website. If you choose to go to that website, Citizens Bank of Kentucky is not responsible for the privacy, accuracy, reliability, or security of information on that site. Before providing any information to those sites review their privacy policy carefully.


How Encryption Works

The privacy of communications between you (your browser) and our servers is ensured via encryption. Encryption scrambles messages exchanged between your browser and our online banking server.

  • When visiting online banking's sign-on page, your browser establishes a secure session with our server.
  • The secure session is established using a protocol called Secure Sockets Layer (SSL) Encryption. This protocol requires the exchange of what are called public and private keys.
  • Keys are random numbers chosen for that session and are only known between your browser and our server. Once keys are exchanged, your browser will use the numbers to scramble (encrypt) the messages sent between your browser and our server.
  • Both sides require the keys because they need to descramble (decrypt) messages received. The SSL protocol assures privacy, but also ensures no other website can "impersonate" your financial institution's website, nor alter information sent.
  • To learn whether your browser is in secure mode, look for the secured lock symbol at the bottom of your browser window.

Encryption Level

The numbers used as encryption keys are similar to combination locks. The strength of encryption is based on the number of possible combinations a lock can have. The more possible combinations, the less likely someone could guess the combination to decrypt the message.

For your protection, our servers require the browser to connect at 128-bit encryption (versus the less-secure 40-bit encryption). Users will be unable to access online banking functions at lesser encryption levels. This may require some end users to upgrade their browser to the stronger encryption level.

To determine if your browser supports 128-bit encryption:
  • Click "Help" in the toolbar of your Internet browser
  • Click on "About [browser name]"
  • A pop-up box or window will appear.
  • For Internet Explorer: next to "Cipher strength" you should see "128-bit"
  • For Netscape: you should see "This version supports high-grade (128-bit) security with RSA Public Key Cryptography"

If your browser does not support 128-bit encryption, you must upgrade to continue to access the website's secure pages.


Firefox, Chrome, Safari and Internet Explorer web browsers

To get the best possible experience and added internet security using our website, we require you to upgrade your current web browser or install another web browser.

A list of the most popular web browsers can be found below. More information on some common browsers is available via these links:

Browser Encryption Information More Information Download
Firefox: All versions of Mozilla Firefox support 128-bit encryption. View Download
Chrome: All versions of Google Chrome support 128-bit encryption. View Download
Safari: The Safari browser displays a lock icon at the top right corner of the browser window when you're viewing a secure (https://) site. This symbol is absent when viewing an unsecured (http://) site. Safari can use both 40-bit and 128-bit strong encryption; the Web site determines which level of encryption is used at a given time. View Download
Internet Explorer: From the top menu, click on Help. From the drop down menu, select About Internet Explorer. The information displayed for Cipher Strength is the encryption level (i.e. Cipher Strength: 128-bit). If it does not say 128-bit, then you do not have a browser with 128-bit encryption. View Download

Our Environment

Our network and data centers are protected by multiple layers of physical, procedural and technical controls. Our systems continuously monitor activity from unauthorized entry attempts.


User Password

When you sign up for online access, we ask you to create your own password, along with a logon ID, to access your accounts. This information is encrypted during transmission and will remain a secret as long as you do not disclose it.


Timed Log-off

Our system will automatically log you off from Online Banking and BillPay after a specified period of inactivity. This reduces the risk of others accessing information from your unattended computer. You may set the timeout period in online banking's User Options screen. We recommend that you always sign off (log out) when done banking online.


Children's Online Privacy Protection Act

We do not knowingly solicit data from children, and we do not knowingly market to children. We recognize that protecting children's identities and privacy online is important and that the responsibility to do so rests with both the online industry and with parents.


About Passwords

It is important to verify that only authorized persons log into online banking. This is achieved by verifying your password. When you submit your password, it is compared with the password we have stored in our secure data center.

We allow you to enter your password incorrectly a limited number of times; too many incorrect passwords will result in the locking of your online banking account until you call us to reinitialize the account. We monitor and record "bad-login" attempts to detect any suspicious activity (i.e. someone trying to guess your password).

You play a crucial role in preventing others from logging on to your account. Never use easy-to-guess passwords. Examples:

  • Birth dates
  • First names
  • Pet names
  • Addresses
  • Phone numbers
  • Social Security numbers

Never reveal your password to another person. You should periodically change your password in the User Option screen of online banking.


Our Servers

The network architecture used to provide the online banking service was designed by the brightest minds in network technology. The architecture is too complex to explain here, but it is important to convey that the computers storing your actual account information are not linked directly to the Internet.

  • Transactions initiated through the Internet are received by our online banking Web servers
  • These servers route your transaction through firewall servers
  • Firewall servers act as a traffic cop between segments of our online banking network used to store information, and the public Internet.

This configuration isolates the publicly accessible Web servers from data stored on our online banking servers and ensures only authorized requests are processed.

Various access control mechanisms, including intrusion detection and anti-virus, monitor for and protect our systems from potential malicious activity. Additionally, our online banking servers are fault-tolerant, and provide for uninterruptible access, even in the event of various types of failures.

Security Features

We provide a number of additional security features in online banking. For example, online banking will "timeout" after a specified period of inactivity. This prevents curious persons from continuing your online banking session if you left your PC unattended without logging out. You may set the timeout period in online banking's User Options screen. We recommend that you always sign off (log out) when done banking online