Security Policy

Effective Date: January 1, 2025

At Crest Vale Banking bank, the security of your personal and financial information is our highest priority. This Security Policy outlines the measures we take to protect our systems, digital platforms, and customers from fraud, data breaches, cyberattacks, and unauthorized access. By using our services, you agree to follow the security practices outlined herein.

1. Our Commitment to Security

We are committed to maintaining the highest levels of security across all channels—whether online, mobile, ATM, or in-branch. Our security infrastructure is built using industry best practices and governed by U.S. federal regulatory standards, including the Gramm-Leach-Bliley Act (GLBA) and guidance from the Federal Financial Institutions Examination Council (FFIEC).

2. Data Encryption

All customer data transmitted through our digital channels is protected using advanced encryption protocols, including Transport Layer Security (TLS). This ensures that your information remains confidential and secure during transmission.

We also use encryption when storing sensitive customer information in our databases, and access is restricted to authorized personnel only.

3. Multi-Factor Authentication (MFA)

We employ Multi-Factor Authentication for account access to enhance identity verification. This includes a combination of passwords, one-time verification codes, biometric recognition (fingerprint/face ID), and secure device identification.

4. Account Monitoring and Alerts

We continuously monitor your accounts for unusual activity and use intelligent fraud detection systems that analyze patterns and flag suspicious transactions. If abnormal behavior is detected, you may receive real-time alerts or calls from our fraud team for verification.

5. Firewalls and Intrusion Detection

Our infrastructure is secured with enterprise-grade firewalls and Intrusion Detection and Prevention Systems (IDPS) that monitor and block unauthorized access attempts. These systems are continuously updated and monitored 24/7 by our cybersecurity team.

6. Regular Security Audits

We conduct internal and external security audits, penetration testing, and vulnerability assessments to proactively identify and address any potential weaknesses in our systems. These reviews are performed regularly in compliance with banking regulations and cybersecurity best practices.

7. Customer Education

We believe that security is a shared responsibility. That’s why we offer resources to help our customers stay informed and vigilant against scams, phishing, and other forms of financial fraud. We encourage customers to:

• Never share passwords or security codes with anyone
• Use strong, unique passwords and update them regularly
• Enable MFA whenever possible
• Monitor accounts regularly for unauthorized activity
• Report suspicious messages or emails immediately

8. Secure Online Banking Experience

Our online and mobile banking platforms are secured using HTTPS encryption, session timeouts, secure login protocols, and firewalls. We also use device fingerprinting to recognize your devices and challenge unrecognized access attempts.

9. Protection Against Phishing & Malware

We do not send unsolicited emails asking for account credentials, PINs, or sensitive information. If you receive suspicious communications claiming to be from Crest Vale Banking bank, please report them immediately to info@primewestholdings.co.uk.

10. Data Privacy and Confidentiality

We follow strict privacy policies to ensure that your information is not disclosed, sold, or shared without your consent, except where legally required. Please refer to our Privacy Policy for more information on how we collect and use your data.

11. Employee Training and Access Control

Our employees receive regular training on cybersecurity awareness, data handling, and fraud prevention. System access is granted on a need-to-know basis, with strict identity verification and activity logging to prevent unauthorized internal access.

12. Reporting Security Concerns

If you suspect that your account has been compromised or have experienced unauthorized access, please contact us immediately through any of the following methods:

13. Policy Updates

We reserve the right to update this Security Policy at any time in response to emerging threats, changes in regulatory guidance, or new technologies. Updated versions will be posted on this page with a revised effective date. We recommend that you review this policy periodically to stay informed.

Your trust is the foundation of our business, and we remain steadfast in our mission to safeguard your assets and information at every step.