Bank securely

Security Training

Capital One associates are required to participate in annual security training.

Social Security Number Protections

Safeguards are in place to protect your information.

• We prohibit the unlawful disclosure of your Social Security number.
• We restrict access to your Social Security number except when required for authorized business purposes.

When you contact us:

• When you initiate contact with Capital One, we’ll verify your identity before sharing account information or performing transactions on your behalf.
• Our agents may ask you to verify information we have on file or ask other questions to confirm that they’re speaking to you.
• Our agents will not ask you over the phone to provide your online banking password or answers to your online security questions.

When we contact you:

• We may contact you by email with offers or to provide account information. If you’re ever in doubt about a communication, forward any suspicious emails to abuse@capitalone.com.
• Our Fraud department may contact you if we detect unexpected activity on your account. Fraud agents will require verification of your identity prior to discussing your account.
• If you ever suspect the party contacting you is not Capital One, please tell the caller that you would prefer to contact Capital One directly and use the contact numbers on our site.
• We’ll never ask you over the phone to provide your online banking password or answers to your online security questions.

Text messages from Capital One

We may contact you via text to confirm an attempted charge (to prevent fraud), but we will never ask you to confirm or verify your personal information in an unsolicited text message.

We use some of the strongest forms of encryption commercially available for use on the Web today.

Online communication between you, your account, and Capital One are protected. Your data is encrypted with 128-bit Secure Socket Layer (SSL), which helps ensure that sensitive information can only be viewed by you and our secure systems.

Secure Site Indicator

We make it easy to confirm that you’re on a secure, authorized site by providing a visual indictor in the address bar of your browser. The address bar will show “https,” and a closed lock. Web addresses that begin with "https://" use encryption—the “s” stands for “secured.” In some browsers, the address bar will also turn green.

Customer Verification

Our strong authentication controls protect your accounts from unauthorized access.

We adhere to all requirements of the Federal Government's banking regulators.

Technology Guarantee

We build information security into our systems and networks using internationally recognized security standards, regulations, and industry-based best practices.

We offer various ways to move money electronically for the purpose of paying bills, making purchases and managing your accounts. Such services include, ATM/debit cards, electronic check conversion, phone transfers, online bill payment and online banking external funds transfer. When using these services, we ask that you monitor your account and alert us of any unauthorized transactions. Read more about EFT under the Resources section on this page.

If you’re ever notified that your data may have been compromised by a breach, it’s important to take precautions to protect yourself from identity theft:

• Take advantage of any credit monitoring services offered.
• Order a credit report to monitor for new accounts.
• Sign in to your account online to review account activity for unknown transactions and to change your user name, password and security questions if online credentials are breached.

For more information on data breaches, visit the Identity Theft Resource Center.

Please review the tips below and be aware of your surroundings when using any ATM.

• Be prepared: Have your deposit slips, checks, endorsements, and other documents ready.
• Be cautious: Inspect the ATM for skimming devices that can be attached to ATMs and capture your card information. Protect your PIN by shielding your PIN entry with your hand or body.
• Be observant: Scan the surrounding area prior to approaching an ATM. If you feel uneasy for any reason, leave the area.
• Be patient: If you see another person using the ATM, allow them to finish their transaction before approaching.

Online Account Safety

• Safeguard your online banking credentials, including user name and password, by keeping them private and secure.
• Avoid using obvious passwords, like pet names, unless you make them unique by adding special characters or numbers to make them more obscure.
• Create distinct sign-in credentials that are different than those used for social networking or other online accounts.
• Take note of emails, phone calls, or texts requesting your account or sign in information and report them immediately.
• After completing a transaction online, make sure you sign out when you’re finished, then close your browser completely.
• When using public or shared computers (like in a library), be aware of your surroundings including people who could look at your computer screen.
  Don’t select the “remember me” feature for your user name or password.

Wi-Fi Network Tips

• Don’t assume that available Wi-Fi connections are safe and secure. Cyber criminals create public Wi-Fis in public spaces so that they can view data, including usernames and passwords, and steal your information.
• Limit the sensitive information viewed during a public Wi-Fi session, as the data may be visible or intercepted by a third party intent on stealing your identity or sign-in information.
• If in doubt, use your cellular network if available.
  For more information, check out some Wi-Fi tips from the Federal Trade Commission (FTC).

Online Network Safety

• Install and regularly update anti-virus and anti-spyware software. Perform frequent scans of your computer.
• Look for EV SSL encryption (green bar and https visual indicators) in web address bars.
• Use the most recent version of your computer operating system and Internet browser as previous versions can have security weaknesses that put you at risk.
• Be careful when you download free software from the Internet. A lot of free software may contain viruses or other malicious software that could steal your information.

Online Tips

• Be careful not to over-share information on social networking sites—personal information could be used to access your accounts.
• Set up alerts for account activity. Some alerts are generated automatically when you set up online account access, but you also have the ability to set up customized alerts. Alerts can be sent via email or text.
• Choose paperless (online only) statements to reduce your risk of mail fraud and identity theft, and reduce the likelihood of your account information getting into the wrong hands.

General Tips

• Store your credit and debit cards in a secure place where you’ll immediately know if they’re missing.
• Sign the back of your credit and debit cards as soon as you receive them.
• When you’re expecting a new or replacement credit or debit card, look for it in the mail.
• Report a lost or stolen credit or debit card immediately.
• Never carry your PIN in your wallet or write it on the back of your credit or debit card, and don't choose an obvious number (such as your birth date or telephone number) for your PIN.
• Never let anyone put your account number on a check or any other document not associated with a purchase on your account. (In some states, this is against the law.)
• Never give your account number or other personal information to someone calling you on the phone, even if the caller says it will be used to claim a prize or award.
• Review your financial statements and verify that transactions were authorized by you and report any unrecognized charges to us.

• Keep documents with personal information—like credit card bills, statements, and offers for preapproved credit—in a safe place or shred them if you don’t need them.
• Check your credit report regularly. You can order one free report per year from each credit bureau (that's three free credit reports per year) or from annualcreditreport.com. If information looks incorrect, request a correction.
• Social Security numbers of minors are sometimes used to commit identity theft. Parents may want to request credit reports for their children on an annual basis.

Phishing is a common scam that uses email to collect personal or financial information. A phishing email often appears to be sent from a legitimate source that is actually an imposter.

How to spot a phishing email:

• Requests: If information is requested in an email, identify alternative ways to provide the information. If you have any doubt, don’t respond to the email.
• Email details: Inspect the sender’s email address and hover over any URL links included in the message. Although the email address and URL may appear to be legitimate at first glance, this information can be spoofed or direct you to an unauthorized site.
• Urgency: Scare tactics are often used to prompt victims to respond to requests for personal or financial information. Email notices that threaten to close your account or impose fines or penalties should be treated as suspect.
• Typos and grammatical errors: Spelling errors and oddly structured sentences can be a quick indication that the email is not from a legitimate source.

For more information on Phishing, you can visit the FDIC Phishing Scam site.

Malware is malicious software that is intended to damage or disable computers and computer systems. Your computer can potentially be infected when you open an attachment, click on a pop-up ad, or download a game, song, screensaver, or other application. Many types of malware can operate without you ever knowing you’re infected, and some can lead to identity theft and credit card fraud.

Signs your computer may be infected with malware include general computer problems (slow processing or frequent crashes), excessive pop-up messages and spam, or other unexplained changes to toolbars, search settings, or homepage settings.

Here are some tips to help you avoid malware:

• Consider any attachments to email messages potentially unsafe. They can cause you to download spyware or a virus without your knowledge or any indication that it’s occurring. We will never email you an attachment or a software update to install on your computer. In general, never open unexpected attachments from anyone.
• If possible, use one computer for banking and security-sensitive applications and a different computer for less sensitive activities such as email and social networking.
• Keep your software updated and install manufacturer-provided patches. This is especially important for operating systems, Web browsers, and security software, but also applies to other programs.
• Only download programs and files from legitimate sources. It’s not uncommon for malware to be embedded within an otherwise legitimate program or file when advertised for free through file sharing or other sources not endorsed by the original manufacturer.

A security breach is when sensitive data ends up in the hands of someone who does not have authorization to receive the information. Sensitive data may include Social Security numbers, user names, passwords, account numbers, bank statements, and similar information. Data breaches can occur in several ways including large-scale organized cyber-attacks (when large files of data are stolen from a financial institution).

If you’re ever notified that your data may have been compromised by a breach, it’s important to take precautions to protect yourself from identity theft:

• Take advantage of any credit monitoring services offered.
• Order a credit report to monitor for new accounts.
• Sign in to your account online to review account activity for unknown transactions and to change your user name, password, and security questions if online credentials are breached.

For more information on data breaches, visit the Identity Theft Resource Center. 

If you use our mobile app for credit cards, you can replace your usual password with a custom pattern you swipe with your finger. Some users find this not only quicker but some also feel safer by not having to deal with the typical letter-number combinations that most sites require. Find the feature in the Settings menu of the app.

Learn more about SureSwipe.

We automatically check your credit card accounts for unusual, duplicate, and auto-renewal charges. If we see any of those types of things, we’ll notify you to help be sure you’re not wrongfully charged.

Learn more about Second Look.

Alerts are a great way to identify unauthorized transactions. Once you’re signed up, we’ll send you an email or text message if and when certain activity occurs on your account.

Some examples of optional alerts

• Transaction posts over a certain dollar amount
• Your balance is greater than a specified amount
• A payment has posted

We’ll also send some security alerts automatically if we think you should be informed of something important.

Some examples of security alerts

• Suspicious activity on your credit card
• Mailing address has changed
• Online password has changed

We’ll send you a real-time alert by email or text if we suspect a fraud attempt. This way you can respond instantly and avoid unlawful charges or unnecessary declines.

Keep track of your credit standing and monitor your credit score with our free CreditWise tool.

• Receive an alert whenever an inquiry is made to your credit—like if an account is opened in your name or a change of address is requested.
• Receive alerts if changes occur to your credit standing—like if an account is reported delinquent.
• Check your credit alerts online anytime to see things like the reporting of improved accounts.

Learn more about CreditWise.

Within your online and mobile transactions list, we show you detailed information including the merchant name, address, phone number, and a map if available, so you can see if anything looks fishy.

If you have an iPhone^®, you can use your fingertip as your account sign in.

Use Apple Pay along with your Capital One credit or debit card to make purchases with a single touch on your iPhone^®. It’s a simple way to pay easily on the go while leaving your physical card at home.

Learn more about Apple Pay.