Privacy and Security

We've Got Answers.

Extraco works hard to protect your personal financial information. You can take steps, too, to make sure your data remains private.

Extraco Corporation and its member bank and subsidiaries strive to be the financial services provider of choice in central Texas.

Our Website is designed to provide information about our deposit, loan, and other financial services, and help you effectively and conveniently manage your finances.

Using our Website to take advantage of these services may require that you provide us with personal information. We respect and recognize your concern about the use and protection of any personal information provided to us and accordingly:

You may visit our Website and obtain information about us and our services without providing any personal information to us. We may retain non-personal information about visitors to our Website such as username, the date and time of your visit and the city and state from which the visit occurred. Such non-identifying information will be used for statistical purposes to help determine the level and geographical distribution of interest in our Website, and to identify users who have previously visited our Website. Personal information may be required to enable certain services and information to be made electronically available to you. Your E-mail address may be retained in order to enable us to better communicate with you. Any personal information provided by you as well as your e-mail address will be appropriately used to provide services and information and for other legitimate business purposes by Extraco. Such information will not be provided to third parties except as permitted by law.

You should safeguard your accounts. Electronic banking is a convenient and safe way for conducting your financial transactions with us. The advantages of electronic banking are made possible through the use of access codes, personal identification numbers (PIN's), user names and passwords that allow online access to your accounts. To protect your money and your financial privacy, keep your codes and other access devices and names secret and guard them against being obtained and used by unauthorized persons. Providing to others your access codes, PINs, user names, passwords or any other information that allows access to your accounts and financial information, may expose your accounts to fraud, the risk of theft of your money, and the compromise of your financial privacy. Permitting others access to these and other access codes may establish your responsibility for their unauthorized use or misuse and result in your liability for any loss of funds from your accounts. You should review the terms and conditions of your account agreements and immediately report any unauthorized activity to us.

Our Website is not directed to children less than 13 years of age and we do not knowingly collect personal information from children. If we have actual knowledge of receiving unsolicited personal information from a child through our "Contact us" button, other Website portal or avenue, or via E-Mail we will take one of two actions: (a) we may collect a child's name and contact information for the purpose of responding one time to the child and will then immediately delete the information; or (b) we may immediately delete the information entirely without responding.

Notice of Disclosure of Information About Customers

Protecting your privacy and the confidentiality of your information is important to Extraco and we want you to understand what information we collect and how we use it.

The standards set forth below to safeguard the privacy of our customers and former customers are followed by Extraco Corporation, Extraco Delaware Corporation, Extraco Banks, NA and Extraco Community Development Corporation, herein referred to collectively as "Extraco companies" or "Extraco."

What Information We Collect

We may collect nonpublic personal information about you from the following sources:

Information we receive from you on applications or other forms;
Information about your transactions with us or others; and
Information we receive from third parties such as credit bureaus

What Information We Disclose

We may as permitted by law share information about our experiences or transactions with you or your account (such as your account balance and your payment history with us) among Extraco companies. Additional information about you or your account will not be shared among Extraco companies without your permission.

We may disclose all of the information we collect, as described above, to companies that perform services for us or functions on our behalf or to companies that perform marketing services on our behalf with whom we have joint marketing agreements. In addition, we may make disclosures to other nonaffiliated parties as permitted or required by law.

We do not disclose any nonpublic information to third parties except as permitted or required by law.

Our Security Procedures

We restrict access to your personal and account information to those employees who need to know that information to provide products and services to you. We maintain physical, electronic, and procedural safeguards that comply with federal standards to guard your nonpublic personal information.

USE OF NONPUBLIC INFORMATION TO OFFER EXTRACO'S INSURANCE PRODUCTS

We may use your name and address to offer insurance products to you. For this purpose, your name and address are not considered nonpublic information. Further, unless you object as described below we may use nonpublic information about you to solicit you for insurance products. We will not provide your nonpublic information or your name and address to third parties for the purpose of another's solicitation of the purchase of insurance. If you do not desire us to use your nonpublic information to solicit you for insurance products, you should object by writing to: Insurance Department, Extraco Banks, NA, P. O. Box 6101, Temple, Texas 76503. Please include your name, address and Social Security Number in your letter.

Educating yourself is the best way to protect your personal information. These websites contain concise and authoritative information on consumer education, identity theft / fraud prevention, and reporting identity theft / fraud.

http://www.fdic.gov/consumers/index.html http://www.ftc.gov/bcp/index.shtml

You may think identity theft and fraud are the same thing, but actually they are separate, but equally serious, crimes.

Identity fraud is a single attempt to steal money from an account, i.e. someone charges a purchase to your credit or debit card without your knowledge or consent.

Identity theft is when someone steals your personal information-such as your driver's license or social security number-and uses that information to open new accounts or initiate purchases in your name without your knowledge or consent.

Now that you know the difference between identity theft and fraud, learn how to prevent becoming a victim. Check out the FDIC and Federal Trade Commission websites for useful tips.

http://www.fdic.gov/consumers/theft/index.html http://www.ftc.gov/bcp/edu/microsites/idtheft/

If you think or know you are a victim of identity theft or fraud, it is absolutely essential that you file the necessary reports as soon as you discover the crime.

Contact Extraco Banks - If your Extraco Banks account experiences criminal activity, contact our Customer Care Center during regular business hours at 1.866.EXTRACO.
Contact the Major Credit Bureaus - Place a fraud alert and victim's statement in your credit file with the three major credit bureaus: TransUnion 800-680-7289; Equifax 800-525-6285; and Experian 888-397-3742. Credit bureaus must provide a free copy of your report if you have reason to believe it is inaccurate because of fraud and you submit a request in writing. Check the "inquiries" section of your report and request that inquiries from companies that opened any fraudulent accounts be removed from the report.
Contact All Creditors - Advise any other bank or institution where you have an account of the crime and ask that they restrict access, change your password, or close your account if there is evidence of criminal activity. If your bank closes your account and assigns you a new one, make sure you get a new credit card, ATM card, debit card, or checks. Reset all automatic payments to your new account number.
File a Police Report - Contact your local police department and file a criminal report. Make sure you receive a copy of the report to submit to your creditors, your bank, and others that may require proof of the crime.
Contact the Federal Trade Commission (FTC) - File a report with the FTC by calling 1.877.ID.THEFT. Go to the centralized government-wide Identity Theft website at www.idtheft.gov for assistance in recovering from identity theft and other helpful information.
Contact All Other Appropriate Agencies - Consider contacting the US Postal Service, the Department of Motor Vehicles, and any other agency that uses your personal information for identification.
Deactivate Your Debit Card - If your Extraco Check24® debit card experiences criminal activity and you're an E-Bank subscriber, you may deactivate your card at any time using the Options feature on E-Bank. Phone24® also allows 24/7 card deactivation. Reset all automatic payments to your new card number.
Monitor All Accounts and Review Your Credit Report - Resolving identity theft or fraud can be a time consuming process. Monitor your accounts and credit report regularly to make sure additional fraudulent activity does not occur.

Useful websites:
Equifax: www.equifax.com
Experian: www.experian.com
TransUnion: www.transunion.com
Federal Trade Commission: www.idtheft.gov

Debt Collection Email Phishing Alert

Central Texas police are investigating a recent slew of bogus emails that claim to be an attempt to collect on a debt.

The email directs recipients to make payment via credit card or electronic check to a linked Paypal account.

If you receive one of these emails, you are advised to simply delete. If you have opened the email and submitted a payment, you are advised to file a complaint with the IC3 (Internet Crime Complaint Center - An FBI and NW3C partnership) at http://www.ic3.gov/default.aspx
________________________________________________________

FDIC Email Phishing Alert

The Federal Deposit Insurance Corporation (FDIC) has become aware of e-mails appearing to be sent from the FDIC that are asking recipients to download and open a "personal FDIC insurance file" to check their deposit insurance coverage. These e-mails are fraudulent and were not sent by the FDIC. The FDIC is attempting to identify the source of the e-mails and disrupt the transmission.

The e-mails ask recipients to "visit the official FDIC website" by clicking on a hyperlink provided, which appears to be related to the FDIC and directs recipients to a fraudulent Web site. The Web site includes hyperlinks that appear to open forms. However, it is believed that clicking on the hyperlinks will cause an unknown executable file to be downloaded.

While the FDIC is working with the United States Computer Emergency Readiness Team (US-CERT) to determine the exact effects of the executable file, recipients should consider the intent of the software as a malicious attempt to collect personal or confidential information, some of which may be used to gain unauthorized access to online banking services or to conduct identity theft. Financial institutions and consumers should NOT access the Web site or download the executable files provided on the Web site.