Secure Online Banking — Site-to-User

What is Site-to-User?

Site-to-User IconSite-to-User is a security enhancement designed to confirm that you are logging in to our legitimate web site. You choose a unique image and phrase known only to you and our Internet banking system. Then, each time you log in, you will see your unique image and phrase. If you do not see your image and phrase, DO NOT LOG-IN.

How does this increase security?

Site-to-User helps you know you are really on our legitimate web site. Our bank does all it can to confirm that you are who you claim to be. Site-to-User helps you know that we are your bank. If our site knows that you are who you claim to be and you know that our site is legitimate, we can transact business safely and securely. During phishing and pharming attacks, users are often lured to fake web sites that look genuine. Such fake sites may ask a visitor to enter private information. Site-to-User helps you know the difference between a fake web site and a real one.

What is Phishing?

Phishing (fish´ing) (n.) is the act of sending an e-mail to a user falsely claiming to be a legitimate enterprise in an attempt to scam the user into surrendering private information that will be used for identity theft. The e-mail directs the user to visit a website where they are asked to update personal information, such as passwords, credit card, social security, and bank account numbers, that the legitimate organization already has. The website, however, is bogus and set up only to steal the user's information.

How will my login process change?

On the first screen you will be asked for your logon name. Then, on the second screen, you will be asked for your password and, once you have chosen an image and phrase, your unique image and phrase will be displayed. The original login process asked for both your logon name and password on the first screen.

Do I have to use Site-to-User?

Yes. If you have questions about this, please contact us for assistance during our business hours at 310.412.3280, ext. 556.

How do I get Site-to-User?

You will be asked for your user name and password. After the system recognizes you as a legitimate user, you will then be asked to choose a unique image and phrase. Once you have chosen an image and phrase, you should see that image and phrase every time you log in.

Do I have to choose an image and phrase?

Yes. We require all users to choose an image and phrase.

Can I change my image and phrase?

Yes. Simply choose "Customer Service," from the menu and then select "Change Image."

Can I use my own picture?

No, but there are many images to choose from.

What if the image is not my image when I log in?

Do not log in. If this happens to you, it could be caused by one of the following things: (1) you may have entered an invalid login name, (2) you are on a fraudulent site, or (3) you (or someone with your credentials) changed your image. If this happens, you should try starting the login process over completely. If the wrong image continues to appear, or if there is not an image, contact us during our business hours at 310.412.3280 ext. 556 for assistance. If you are unable to reach us, DO NOT LOG-IN, leave us a message and/or email us at and we will contact you at our earliest convenience.

Retail Banking Customer — Safeguarding Your Information

At Broadway Federal Bank, the security of customer information is a priority. We are strongly committed to the safety and confidentiality of your records. Every day, unscrupulous individuals are busy developing new scams targeting the unsuspecting public. One of the best ways to avoid fraud is to become an educated consumer.

  • Watch out for copycat web sites that deliberately use a name or web address very similar to, but not the same as the real one. The intent is to lure you into clicking through to their Web site and giving out your personal information, such as a bank account number, credit card number or Online Banking login information.
  • Always use your pre-established links to access Web sites and avoid clicking on links in unsolicited e-mails. If you ever receive a suspicious e-mail representing itself as Broadway Federal Bank, please forward the message in it's entirety to onlinebanking@broadwayfederalbank.com.
  • Ensure that your own personal computer has updated anti-virus and firewall protections. Apply security patches for all of your programs and operating systems regularly.
  • Passwords should be unique to you and changed regularly. Do not use birthdays or other numbers or words that may be easy for others to guess. Never write down your password or give it to another person.
  • Monitor your account activity frequently using our free Online Banking services. Sign up for free Online Banking eStatements to avoid having your paper statement sitting in an unsecured mailbox where it could be compromised.
  • Set up free Security and Balance Alerts through Online Banking to be notified via e-mail when there is login activity or changes in your expected balance.
  • Set up a personalized Site Image and Phishing Phrase for your Online Banking so that you always know when you are on our secure Web site.

Please keep in mind that we will never ask for or email you requesting your online banking password. We may on occasion call to verify other information regarding your online activity should we see something of concern in your login patterns.

In case of errors or questions about your electronic transfers, call or write us at the telephone number or address listed, as soon as you can, if you think your statement or receipt is wrong or if you need more information about a transfer listed on the statement or receipt. We must hear from you no later than 60 days after we sent the FIRST statement on which the problem or error appeared.

For personal accounts, limitations on your liability for unauthorized electronic funds transfers and other electronic errors that are covered by Regulation E are explained in the EFT Disclosure Statement in our Consumer Terms and Conditions brochure. However, if you use online services for any business activity, you assume all risk of loss for unauthorized transfers and payments, and you must establish your own internal security procedures for employees you authorize to prevent all unauthorized use by other employees or persons.

Special Instructions for Traveling

If you plan to travel and use your Online Banking or debit card, it is very helpful to call us in advance to avoid your account being temporarily disabled for security purposes.

To report a lost or stolen ATM or Debit Cards, please call (800) 264-5578 24 hours a day.

We encourage you to review our Security and Privacy page. If you have questions regarding security or possible fraud, please contact our customer service representatives during our business hours at (310) 412-3280 ext. 556 for assistance or via e-mail at .

Commercial Banking Customers — Safeguarding Your Information

At Broadway Federal Bank, the security of customer information is a priority. We are strongly committed to the safety and confidentiality of your records. Every day, unscrupulous individuals are busy developing new scams targeting the unsuspecting public. One of the best ways to avoid fraud is to become an educated user. Small to Medium sized business and government banking accounts are being targeted by criminals every day.

In most circumstances you will be responsible for assuming the loss on fraudulent transactions. Commercial/Business Accounts are not covered under Electronic Fund Transaction Act (Reg. E)

It is vital that you follow these best practices.

What You Need To Do To Protect Your Account

  • Establish a separate account for the origination of each type of transaction. ACH origination / Wire Transfer etc.
  • Ideally only fund those accounts with enough funds to cover the planned transactions on a daily basis. Establish dual control over the setup and creation of new user accounts on the system.
  • Establish dual control over the setup of new payees on the system.
  • Run summary reports of all transactions to ensure they are accurate.
  • Review your transactions the next business day to determine if fraudulent activity has occurred.
  • Maintain up to date anti-virus software at all times, on your computer systems that access financial websites.
  • Patch your operating system weekly and ensure that you are updating Java and Adobe applications weekly as well. Vulnerabilities in these applications are utilized by criminals constantly.
  • Ideally, dedicate a single PC for online financial transactions and prohibit any other form of web surfing on this PC.
  • Have the firewall specifically restrict access for the workstation to only the IP Addresses of the financial institutions systems. This will prevent individuals from surfing the internet on the PC.
  • Utilize a unique complex password (Upper Case, Lower Case, Special Characters) at least 8 characters long.
  • DO NOT RE-USE PASSWORDS THAT YOU HAVE REGISTERED FOR AT OTHER WEBSITES!
  • Websites can be compromised and your password will be exposed. Change your password every 30 days. Do not utilize words in your password such as Password1.
  • Never provide your account number or username / password in any written communication to the bank. This is especially true of email.
  • Watch out for copycat Web sites that deliberately use a name or Web address very similar to, but not the same as the real one. The intent is to lure you into clicking through to their Web site and giving out your personal information, such as a bank account number, credit card number or Online Banking login information.
  • Always use your pre-established link to access web sites. Never click on a link contained in an email.
  • Utilize Security and Balance Alerts to be notified via phone, e-mail and or SMS text messages when activity occurs on the account.

What Broadway Federal Bank Does

  • On at least an annual basis the bank examines its controls that it has implemented for online banking access.
  • Based on that review the bank will determine if changes are necessary and will implement required changes on an ongoing basis.
  • Reviews the current fraud trends at least quarterly to determine if changes are required in regards to current security controls and provide alerts to our customer base.
  • We utilize multi-factor authentication that is in guidance of federal guidelines for online banking.
  • We provide Positive Pay services for commercial customers.
  • A Bank Representative may on occasion call to verify other information regarding your online activity should we see something of concern in your login patterns.

What the Bank Does Not Do

  • We will never ask you for your online banking password.
  • We will not contact you via email and request that you click on a link inside the email.
  • All electronic communication is done through the secure email system provided within the online banking system.
  • We will never send your non-public information via email unless it utilizes our security email system.

While these layered process are designed to prevent fraud. They will not catch fraud 100% of the time. You are responsible for losses incurred on commercial/business and government accounts, so we encourage you to be vigilant and monitor your account at all times.

In case of errors or questions about your electronic transfers, call or write us at the telephone number or address listed, as soon as you can.

We encourage you to review our Security & Privacy link which can be found at the bottom of any page of our Broadway Federal Bank Web site. If at any time you have questions regarding security or possible fraud, please contact our customer service representatives during our business hours at (310) 412-3280 ext. 556 for assistance or via e-mail at .