boci banner boci banner home tradital version security information contact us sitemap search
search
boci banner
prepaid card card services promotions customer services about us the greatwall magazine
Bullet Do not login 'BOCI Online Service' through hyperlinks embedded in any emails.
Bullet We will never ask for customers' account number, password or any personal information via emails or other means.
Bullet Please do not disclose your login password to anyone (including card centre staff).
Bullet When you have completed your Online Service activities always follow proper exit instructions before closing your browser.

Home

Security Information
 
If you wish to browse the internet and use the convenient online credit card services safely, please pay attention to the following security measures while surfing the net and using the electronic financial services:

Preventing online frauds
Using 'BOCI Online Service'
Protecting your computer
"SMS Alert" service

 
Preventing online frauds
 
 
Fake websites
 
Customers are reminded to be vigilant of any fraudulent websites which seek to pass off as www.boci.com.hk
Do not disclose your online account or personal information unless you are completely sure that you are connected to www.boci.com.hk
Do not open e-mails from unknown sources or follow any suspicious URL links in the emails. Do not enter into suspicious websites.
You should type in the web address of BOC Credit Card (International) Ltd ("Card Company") (www.boci.com.hk) into the browser address bar.
   
Phishing emails
 
Beware of fraudulent emails that pretend to be sent from the Card Company. Inform us immediately if you receive any fraudulent emails under our company name.
Do not open emails or email attachments from unknown sources. Do not reply to suspicious emails, follow the URL links or disclose any sensitive information.
Under no circumstances will the Card Company send you any emails to inquire or confirm with you your personal information including but not limited to your credit card account number, online account password, account balance, HKID card number or passport number.

If you wish to verify the genuineness of the URL links or any other websites attached in the emails sent from the Card Company, you only need to check whether the domain of the URL or other websites belong either to:

www.boci.com.hk - BOC Credit Card, or
www.bochk.com - Bank of China (Hong Kong)

 
Using 'BOCI Online Service'
 
 
BOCI Online Service provides various security measures to protect your financial information:
 
Personal password - Whenever you log in to the BOCI Online Service, you have to input the correct user name and password.
Changing password reminder - We suggest you change your password on a regular basis. If it remains unchanged for more than 90 days, BOCI Online Service will send you a reminder automatically.

Digital certificate verification: If you have an approved digital certificate from one of the below-named Certification Authorities, you may choose to use it for automatic ID verification during the login process to ensure only you can use BOCI Online Service:

  1. Hong Kong Post;
  2. Digi-Sign Certification Services Limited (Digi-Sign); and
  3. HiTRUST.COM (HK) Incorporated Limited (HiTRUST).
Secure Socket Layer (SSL) 128 digit cryptography - We adopt the internationally recognised standard, SSL cryptography, by which the information transmitted between the BOCI Online Service and you will be encrypted to ensure information security.
Automatic disconnection for prolonged inactivity - In order to protect your interests, your online access to BOCI Online Service will be disconnected automatically after prolonged inactivity. In such a case, you may use the service again by re-entering your user name and password.
Service suspension upon incorrect password input ,your online account will be suspended instantly if there are five consecutive login attempts with incorrect passwords. You then have to contact our customer service officer to reactivate your online account by calling our 24-hour customer service hotline at (852) 2853 8828.
Every time when you login to the BOCI Online Service, the system will show your last login and logout record. You should check the details carefully, and inform us at once in case of any discrepancies.

Certificate - Check the validity of the certificate by the following methods to verify if you have correctly linked to the BOCI Online Service:

Internet Explorer

  1. Click the "security lock icon" at the bottom right corner
  2. Check if the following certificate is within a valid date and the information below is displayed:
 
24 hour system monitoring
   
We strongly suggest you adopt the following measures to ensure safety when using the online financial serviceˇG
 

Properly set up and keep your personal password:

  1. Create a password with more than 6 characters containing a combination of both random letters and numbers.
  2. Do not use easy-to-guess numbers or words as your password, such as your birthday, ID card numbers, telephone numbers, names or other personal information that can be easily accessed.
  3. You should avoid using your online service password as your password for other services such as your online account, bank account, emails etc.
  4. Do not disclose your BOCI Online Service or other online financial service password to anyone (including card center and bank staff and police).
  5. Please memorise the password. If you write down the password, please keep it in a safe place away from the User ID and account number.
  6. Change your password regularly. For the sake of your information security, if your password has not been changed for more than 90 days, our system will remind you automatically.
  7. If you suspect your password has been disclosed, please inform us immediately.
Do not share your account with other people.
Do not access BOCI Online Service from a shared computer in public (such as cyber cafe, internet bar, libraries, etc.)
Remember to keep your transaction records. When you have completed your online transaction, note down the reference numbers or transaction numbers. You can also make a print copy or save it as a file for future reference.
You can click the lock or the key below the browser to check the certificate to ensure that you are connected to the BOCI Online Service.
Do not use links embedded in emails to access BOCI Online Service.
Close other browser windows before accessing BOCI Online Service.
Do not leave your computer unattended before logging off from the online banking service. Every time when you finish using the BOCI Online Service, you must click the 'Logoff' button to exit the system.
Remember to turn off the "automatic completion" of your browser and the "file and print share" function of your Windows to prevent others from retrieving your personal information, including password, via the network or public computers that can get access to the online banking service.
 
Protecting your computer
 
 
You may consider to adopt the following measures to protect your personal computerˇG
 
Avoid letting other people use your personal computer. You should set your personal password for your personal computer if needed.
Install a firewall system and anti-virus software.
Regularly download and install updates and patches for your anti-virus software, computer operation system and browser.
Do not use computer software or programmes that are illegal, unreliable or from a suspicious source.
Keep safely all the devices for accessing the online financial service, such as ATM card, smart card with digital certificate, other storage media, PIN etc.
Consider using cryptography to protect sensitive data before transmitting it through a public network or the internet.
Have your system and data backed up regularly and kept properly. The safest and the most effective way to recover your lost data is with back up files.
Perform transactions with renowned or reliable online stores only.
Heed all security hints provided by this website regularly.
   
 
"SMS Alert" service
 
 
  "To better protect our customers, BOC Credit Card (International) Ltd is pleased to announce a free "SMS Alert" service for Platinum, Titanium and Gold cardholders. Effective from November 2008 whenever you use your credit card, our alert system will evaluate the transaction. A SMS message will be sent to your cell phone if deemed appropriate. If you cannot recognize the transaction as your own, please immediately call our 24-hour customer service hotline: 2853 8828.If you have changed your mobile number or wish to re-confirm your number on record with us, please complete the amendment form and fax to 2296 7468.
   
 
     
 
Should you have any question in respect of the above security warning, please call BOC Credit Card 24-hour Customer Service HotlineˇG(852)2853 8828
 
     
 
PrintEmail to a FriendAdd to my favorites
2004 BOC Credit Card (International) Ltd. All Right Reserved. Important Notice Hyperlink Policy