Privacy & Security
A Private Note to Our Members:
Credit Union is owned by its members and run by a Board of Directors elected by the membership. You can be confident that your financial privacy is a top priority of this credit union.
Information We Collect
We collect nonpublic personal information from many sources, including member applications and other applications for products and services, from those who do business with us or with our vendors, and from consumer reporting agencies. Credit Union will collect only the personal information that is necessary to conduct our business.
Information We Disclose
We do not disclose or sell information to non-affiliated businesses or third parties desiring access to our member information. We may disclose information we collect about you under circumstances as permitted or required by law. These disclosures typically include information to process transactions on your behalf, conduct the operations of our credit union, follow your instructions as you authorize, or protect the security of our financial records.
We are committed to provide you with competitive products and services to meet your financial needs, which necessitates that we share information about you with our affiliates, to complete your transactions and to provide you with certain financial opportunities. We have also entered into agreements with other companies that provide either services to us or additional financial products for you to consider. Under these agreements, we may disclose information we collect to companies that perform marketing or other services on our behalf or to other financial institutions with whom we have joint marketing agreements. To protect your privacy, we require these companies to agree to maintain strong confidentiality protections and we prohibit their use of this information other than to carry out the purposes for which it is disclosed.
If you terminate your membership with Credit Union, we will not share information we have collected about you, except as permitted or required by law.
Steps We Take To Protect Your Information
We restrict access to nonpublic personal information about you to those employees who have a specific business purpose in utilizing your data. Our employees, members of the Board of Directors and Committee Members shall maintain confidentiality and member privacy. We maintain physical, electronic, and procedural safeguards that comply with federal regulations and industry practices to safeguard your nonpublic personal information.
Our web site will be checked every day that we are open for lobby business. The loan department will treat an application received via our web site the same as a loan application taken by phone or in person and it will be processed as quickly as possible. You will be contacted regarding the approval or denial of the loan request. You may also be contacted if further information is necessary to process your application.
Personal information contained in e-mail sent by members and non-members will be reviewed by AAC Credit Union staff and used to improve the level of service we provide. Unless specified, appropriate follow-up will be determined by the nature of the question, comment, or complaint. Please be advised that we cannot guarantee the security of e-mail messages against interception by unauthorized individuals.
Linking to Other Web Sites
AAC Credit Union is not responsible for the content of any third party Web site or the privacy practices of such third parties. In addition, a link from our Web site to another Web site does not indicated that Credit Union endorses the services or policies of such third party Web site. You should always investigate the information practices of all Web sites that you access and carefully examine the privacy policies, if any, of the Web sites appearing on or linking to or from our Web site. Information collected from the linked Web sites will be subject to the information practices of those Web sites.
When your member conduct their credit union business (transactions) through your Web site they should feel as comfortable as they do when they visit you in person.
At AAC Credit Union we understand the need to serve our members privately and appropriately.
After all, members' information is personal; it's proprietary and ought to stay that way. With our security features, we ensure that it does.
AAC Credit Union's policies and procedures for handling customer information have been created with the understanding that Internet technologies are still evolving and that Internet business methods are continuing to evolve to meet the needs and opportunities of the changing technologies. As a result, these policies and procedures are subject to change.
- it is necessary in order to provide service to the customer;
- it is necessary to protect the legitimate interests of AAC CREDIT UNION and our customers;
- it is required to cooperate with interception orders, warrants, or other legal process that AAC CREDIT UNION determines in its sole discretion to be valid and enforceable; and
- it is necessary to provide to a law enforcement agency when the contents are inadvertently obtained by AAC CREDIT UNION and appears to pertain to the commission of a crime
Protecting Children's Privacy Online
The Children's Online Privacy Protection Act (COPPA) was passed by Congress in October 1998, with a requirement that the Federal Trade Commission (FTC) issue and enforce rules concerning children's online privacy. The primary goal of the Act and the Rule is to place parents in control over what information is collected from their children online. The Rule was designed to be strong, yet flexible, to protect children while recognizing the dynamic nature of the Internet. Click here to read the Frequently Asked Questions about the Children's Online Privacy Protection Rule.
What These Privacy Rules Mean to YOU:
AAC Credit Union is committed to protecting the privacy of children (and everyone) who visits our site. You probably noticed that we don't ask you for your name, we don't ask you for your e-mail address, and we don't have a chat room where other people can ask you for personal information.
Why don't we care about all of your personal information? Because we want you to be a safe cyber-surfer…and we want you to have fun and learn while you're at our site. That's all…just have some fun and learn a few things!
AAC Credit Union will protect the confidentiality of its customers' information, account information and personal communications to the fullest extent possible and consistent with the law and the legitimate interests of AAC Credit Union, its partners, its employees and other customers of AAC Credit Union's services. To guard against the loss, misuse, and alteration of information that is collected from customers, AAC Credit Union has appropriate physical, electronic, and managerial procedures in place.
AAC Credit Union's Web hosting servers are 'hardened' against hackers with proprietary tools, OS tweaks, network procedures and constant monitoring. This is not a guarantee that a hacker could not succeed.
Through Verio, we have System Administrators that are dedicated to Web hosting security. They insure that we are current with all OS security patches. We have very high-level software maintenance contracts with our Vendors (SGI, Cisco, Foundry) so that we are sure to have the latest patches and support staff available to us 24x7x365 for fixes.
Security audits are run regularly on our servers. This supplements our internal efforts to keep our servers as protected as possible. We do record and monitor illegal port accesses both on the networking hardware and the servers. We log all accesses to our servers that allows us to check the accesses for intrusion attempts. Additional technologies are also used to ensure notification of any active attacks.
For Denial of Service attacks, a new procedure that our System Administrators implemented called "ipfilterd" allows us to block attacks directed at a single Web site on a server rather than a network level giving us better granularity. "spamd" is another tool used to minimize the effect of attacks on the system - specifically email. Blocking spam makes us less of a target for those hackers that target Spammers. We also have the following implemented services:
- Triple data backup
- Accessible 24-hour user volume backup
- Regularly scheduled digital tape backups
- Each Virtual Server resides in a protected sandbox
- Potentially insecure programs are disabled or removed
- Hacking alert system immediately notifies system administrators
- Redundant OC12, OC3, and DS3 Internet connectivity
- Cisco routers and switches
- Redundant power backup
- 24/7 data center monitoring
- Security hardened operating systems
AAC Credit Union is constantly concerned about our member’s critical information and privacy. With this in mind, we have the following security services installed on our Internet server:
- Each server is behind a Firewall. Our servers block critical ports and IP addresses on servers from external attack and access.
- Each server runs proprietary software that constantly monitors the servers for unauthorized use and attempts to "hack" into information. Administrators are contact when forced attacks are committed, and countermeasures can be applied to stop these instances.
- All administrative activity requires user login and authentication. All administrative updates are logged into files that can be reviewed later.
- Our web site servers come with a Global Verisign Certificate (RSA) for digitally encrypted communications between the Web server and your member. Information passed in applications cannot be decrypted by third parties attempting to "pick" information being passed across the Internet backbone.
- Our web servers run the latest version of Apache Web Server, considered the strongest and most secure Web server software on the market.