Information Security Tips

Information Security Policy and Guidelines

At HBTF, protecting the privacy and security of our customers’ information is one of our top priorities. We continuously stay updated on the latest developments in the field of information security and protection to provide the best possible measures for safeguarding the data and information related to our customers and their accounts.

Based on our Information Security Policy to protect customer data, we take the necessary steps to ensure the highest level of security. This includes implementing specialized Endpoint protection solutions to prevent malicious attacks and ensuring thorough customer identity verification before granting access to sensitive information. Additionally, we encrypt data during transmission to safeguard it from potential theft, and we utilize the latest and most secure firewalls along with advanced protective security devices to provide comprehensive protection for our customers' data.

The following are some essential information security tips that all customers should pay attention to:

Password Security

A password is the key to accessing your personal data, information, and accounts.

To protect your password, follow these best practices:

  • Use a password with at least eight characters
  • Create a strong password that includes a combination of letters, numbers, and special characters (such as #, @, *, &, etc.), so it cannot be easily guessed or hacked
  • Never share your password with anyone
  • Always remember your password and avoid writing it down or storing it in visible places
  • Change your password regularly
  • Cover the keypad while entering your password
  • Avoid using easily guessable passwords, such as your name, your father's name, your phone number, or your date of birth
  • Refrain from using repetitive letters or numbers, like "1234" or "aaaa"
  • When changing your password, make sure to use a new one that’s different from previous passwords
  • Never enter your password when someone can see what you're typing
Identity Theft

Identity theft is a form of fraud where criminals steal your personal data to impersonate you and exploit it for illegal financial gain. Examples of personal data vulnerable to theft include:

  • Account numbers
  • Username and password
  • Date of birth, phone number, or address
  • Credit card number, CVV, and expiration date
  • ATM card number  PIN

Best practices to avoid identity theft:

  • Do not trust any message or individual asking for your personal information via phone or email, even if the email appears to be from someone you know
  • Securely dispose of unnecessary documents like transaction receipts, account statements, and personal data by shredding them
  • Regularly monitor your accounts and review your financial transactions.
  • Always check your invoices to ensure no unauthorized purchases
  • Never carry sensitive information or passwords in your wallet or purse
  • Subscribe to SMS services to monitor your account transactions
  • Avoid accessing your bank services from public places or using untrusted Wi-Fi networks
  • Never store your password on your mobile phone or laptop in an obvious manner
  • Only enter personal information or passwords on websites that use HTTPS://
  • Always log out of services when you are done, especially if you are away from your computer
  • Do not share your OTP (One-Time Password) with anyone and always verify bank communications related to your purchases or account movements

Remember: The bank will never ask you to reactivate your account, request your credit card details, or ask for your username or password.

Social Engineering (Phishing and Electronic Fraud)

Phishing is a form of deception that attempts to acquire sensitive customer information such as credit/Debit card numbers and passwords for fraudulent purposes. Hackers send out thousands of fake emails or text messages that seem to come from trusted sources, like your bank, asking you for personal details or directing you to fake websites created for illegal activities.

 Tips to protect yourself from phishing:

  • Never reveal your personal data such as ID numbers, account details, or passwords over the phone, email, or any other electronic communication
  • Be cautious of emails claiming that you’ve won money or need to transfer funds to another account. These emails are likely from fraudsters trying to steal your information
  • Ensure that you're connecting to the official, secure website of HBTF, where encrypted communications and security certificates are in place to protect your personal data and card details.
Protecting Yourself from ATM and Card Fraud

To protect yourself from ATM fraud, follow these precautions:

  • Be aware of your surroundings when using an ATM; watch out for anyone acting suspiciously nearby
  • Inspect the ATM machine for unusual attachments such as devices, wires, or adhesive materials. If anything looks out of place, do not use the ATM and immediately report it to the bank
  • If your ATM card doesn’t insert smoothly, do not force it. Report the issue to the bank
  • Always cover the keypad when entering your PIN at an ATM
  • Never share your PIN with anyone and avoid keeping it written down in your wallet or purse