• Home
  • Security Policy

Security Policy

While the Internet is generally not a secure environment and no one can guarantee absolute security, we strive to provide our clients with a level of comfort about the security of the information they store and transmit through our website. Protecting your personal information is of vital importance to STRATA Trust. It is our goal that all information submitted, and transactions completed through this Website are confidential and secure.

Protecting your information and transactions is a shared responsibility.

Here is what STRATA Trust does to protect your information and what you can do, as well.

STRATA TRUST’S ROLE IN SECURITY

Secure Communications
Our system is designed so that data will be encrypted as it travels to and from your PC. Encryption turns meaningful words and phrases into coded language. Everything you do during your STRATA Trust’s web access sessions is encrypted using 128-bit encryption, making your account information read as gibberish to everyone but you and STRATA Trust. 128-bit encryption means there are 2128 possible keys that could fit into the lock that holds your account information, but only one that actually works for each session. Encryption is accomplished through Secure Sockets Layer (SSL), which has become one of the de facto standards for data encryption on the Internet. This makes it difficult for your sensitive financial information to be deciphered by unauthorized individuals. SSL allows users to establish sessions with Internet sites that are secure, meaning there is minimal risk of external violation.

Secure Login
For security, an ID and password must be entered to access the website and your account. Additionally, the password you enter displays as asterisks so that no one else can see it. An account lockout condition has been set to prevent unauthorized access. After three consecutive failed attempts to access your account, access will be restricted, and you will have to contact us. STRATA Trust employees do not know your password and do not need to know your password. No one from STRATA Trust will ever ask you for your password.

Secure Environment
To provide additional safety, STRATA Trust’s account access does not connect directly to the Internet. It is protected by firewalls – software and hardware products that are intended to define, control, and limit the access that outside individuals have to account access. As a general rule, firewalls allow only authenticated users to send or receive transactions through the system.

Automated Time Out
To help prevent unauthorized access to your account, your session on the website will automatically end after 15 minutes of activity.

Use of Cookies
We use “cookies” to help personalize your online experience. A cookie is a text file that is placed on your hard disk by a Web server. Cookies are not used to run programs or deliver viruses to your computer. Cookies are uniquely assigned to you and can only be read by a Web server in the domain that issued the cookie to you. The use of cookies is a widespread industry standard and thus many major Websites use cookies. Cookies are primarily used to facilitate navigation of websites and as a convenience feature in the entering of information on websites.

You have the ability to accept or decline cookies. Most Web browsers automatically accept cookies, but you can usually modify your browser setting to decline cookies if you prefer. If you choose to decline cookies, you may not be able to fully experience some features of STRATA Trust’s website.

Social Media Features
Our websites include Social Media Features, such as the Facebook Like button and Widgets, such as the Share This button or interactive mini-programs that run on our sites. These features may collect your IP address, which page you are visiting on our sites, and may set a cookie to enable the feature to function properly. Social Media Features and Widgets are either hosted by a third party or hosted directly on our Websites. This policy does not apply to features hosted by third parties. Your interactions with these features are governed by the privacy policy and other policies of the companies providing them.

Your Role in Security

    • Do not share your username and password with anyone else. If you lose your login information, notify us immediately.
    • Keep your username and password safe. Memorize this information and never tell it to anyone. Remember, we do not need your password to help you and will never ask you for it.
    • Change your password frequently, at least every 30 days.
    • Follow the guidelines below this section for creating strong secure passwords.
    • Make sure no one else is watching you when you type in your username and password.
    • If using Microsoft Internet Explorer to access your account online, use the most recent version.
    • To verify that your session is secure, look for an address starting with https:// instead of http:// and a secure symbol (closed padlock for Internet Explorer) on the status bar of your browser located on the lower part of your screen.
    • Do not leave your computer unattended during an account access session.
    • Click Log Off to end your account access session.
    • Promptly report known incidents of unauthorized account access immediately.
    • Review all your confirmations and account statements and verify the accuracy of all account information, all transactions, and other instructions entered through account access. Promptly notify us of any errors, omissions, or inaccuracies you may find.

Guidelines for Creating a Strong Secure Password

    • The password must be between 8-20 characters and must include at least one letter, number and symbol (e.g. afhtfsf2$).
    • Use a combination of uppercase and lowercase characters as well as numbers in your passwords.
    • Do not use single words that can be found in the dictionary.
    • Do not use your name, your spouse’s name, your pet’s name, birthday, favorite food, or any personal information that others can easily obtain.
    • Do not use a password that contains part of your username or e-mail address.