Security Center

Education is the first line of defense against fraud and deception, and CRCU is dedicated to helping you protect yourself.  


How We Protect You

CRCU has many security policies in place to make sure your financial information is  protected.

  • Encrypted Data - Our website uses high-grade Secure Socket Layer (SSL) encryption during all transactions that involve sensitive data to and from members.
  • Multi-Factor Authentication - Multi-factor authentication is a secure and effective means of identity verification for signing on to Online Banking. It lets you know that it's really you accessing your accounts.
  • One-time passcode - This is a security feature that provides additional protection from fraud and identify theft. In addition to your username and password, it helps us to identify you as the true owner of your account.  The one-time passcode can be sent either by text, voice call or e-mail.  If the computer you use is not recognized, you will be asked for a one-time passcode the answers you setup related to your challenge question before being allowed access.
  • Internal Protections - Our internal network is protected by a wide variety of security software. We also conduct routine and regular security analysis on our network.
  • Online Services - To help lower your risk of identity theft and mail fraud, we offer paperless e-Statements and e-Notices and the ability to view check images online. In addition, our Online Bill Pay service allows you to pay your bills automatically and securely.

Your Rights Under Regulation E

The Electronic Funds Transfer Act is commonly referred to as “Regulation E”. Electronic Funds Transfers services using debit cards, TouchTone Teller, Online Banking, Mobile Banking and Bill Pay have certain protections and liabilities under Regulation E, including:

  • You have the right to receive periodic statements and if your statement shows transfers you did not make, you have 60 days after the statement was mailed to you to notify CRCU. You may authorize periodic or recurring automatic payment from, and deposits into, your account. You have the right to stop payment on regular payments with three business days or more advance notice.
    Tell us at once if you believe your card has been lost or stolen or if you believe someone has used any EFT service, ATM card, Visa Debit Card or access code or otherwise accessed your accounts with us without your authority or if you believe that an electronic funds transfer has been made without your permission using information from your check.
    If you tell us within two (2) business days of discovery that your card has been lost or stolen, you can lose no more than $50 if someone accessed your account without your permission. If you do not tell us within two (2) business days after you learn that your card has been lost or stolen or that there has been unauthorized use of an EFT service, and we can prove that we could have stopped someone from accessing your account without your permission, you could lose as much as $500.
  • Never keep your PIN with your debit card as you may be liable for unauthorized use. You are liable for all transfers of purchases made via your card, access code or passwords that you authorize or allow. You have no right to stop payment for terminal transactions, as those transactions are immediately deducted from your account.

Assess Your Risk

We recommend periodically assessing your online banking risk and put into place increased security controls where weaknesses are found; particularly for members with business accounts. Some things to consider when assessing your online banking risk are:

  • Who has access to your online business accounts?
  • How and where are user names and passwords stored?
  • How strong are your passwords and how often are they changed? Are they changed before or immediately after terminating an employee who had access to them?
  • Do you have dual controls or other checks and balances with respect to access to online banking transactions?

The tabs below contain additional resources and information to keep your personal information, and your money, safe and secure.

  • Reporting Fraud
  • Identity Theft & Schemes
  • Resources

Reporting A Lost/Stolen Card

If your CRCU ATM or VISA Check Card is lost or stolen, please follow the steps below.

  •  Report your lost or stolen ATM Card or Check Card immediately
  • Call 281.422.3611 in Baytown, 281.462.2728 in Crosby, after hours call 866.664.9364

If your CRCU Credit Card is lost or stolen, please follow the steps below.

  • Report your lost or stolen Credit Card immediately
  • Call 866.664.9364

Community Resource Credit Union works to catch any fraudulent behavior and protect your accounts. However, there are also some simple things you can do. Click here to learn more. 

 

Avoid becoming a victim of identity theft. Learn about these common schemes that target financial institution customers.

  • Phishing
    Member and non-members alike may receive fraudulent e-mails which claim to be from CRCU. These are sent by third parties, called 'phishers' (pronounced "fishers"), seeking to lure you into disclosing confidential and personal information such as passwords, credit card numbers, account numbers, PIN codes, or Social Security Numbers. These phishers are engaging in two forms of identity theft: they are impersonating our identity, and they want to steal your information to impersonate yours.

    A phishing e-mail will generally follow one of a variety of possible themes:
    1. Threatens to close your account, states your account is already closed, or states that there has been fraudulent activity on your account, and asks for immediate action by requesting personal information via a linked website.
    2. Asks for personal information directly in the e-mail, possibly in a form within the body of the e-mail itself.
  • Smishing
    The term "smishing" is a combination of "SMS" and "phishing". This involves sending text messages to cell phones, at your expense. Although the messages are typically brief, they will often ask you to visit a website or dial a phone number.

Like vishing and phishing, smishing is a social engineering attack designed to steal personal information and does not originate from CRCU.  Please forward any messages received to answers@crcu.org and do not visit any URLs given. We also recommend that you inform your cellular provider so that they can take preventative measures against these types of attacks.

The FTC has established a web resource to help deter, detect and defend yourself against ID Theft.  Learn about the crime of identity theft, and find out what to do if your identity is stolen.

Annual Credit Report You can fight identity theft by monitoring and reviewing your credit report.  AnnualCreditReport.com provides consumers with the secure means to request and obtain a free credit report once every 12 months from each of the three nationwide consumer credit reporting companies

Identity thieves use stolen information to obtain new credit cards; open checking accounts; make long distance or collect calls; or make purchases on a stolen credit card.  The office of the Texas Attorney General has established an online resource to help you fight identity theft. 

In partnership with the FBI, the Internet Crime Complaint Center gives victims of cyber crime a convenient and easy-to-use reporting mechanism that alerts authorities of suspected criminal or civil violations.




 

 

 

 

 

Security Center

Unsolicited Calls/E-mail

Community Resource Credit Union will never send messages (e-mail, phone or text) requesting your personal information, including card numbers, passwords or PIN. If you receive a message asking for your personal or confidential information – do not respond. Immediately contact the credit union at 281.422.3611, 800.238.3228 or e-mail us to report the incident.