SECURITY

Security-related aspects at www.bbvaapimarket.com

At BBVA we are aware of the need to ensure the transit of information with people interested in our activities. That is why www.bbvaapimarket.com has the highest possible levels of security to guarantee the confidentiality of all communications. Transactions are made using a secure server with the SSL (Secure Socket Layer) protocol, which is always activated when the service is accessed. The secure server establishes a secure connection that transmits encrypted information using algorithms, thereby ensuring it can only be read by the customer’s computer and the BBVA’s server. So using the SSL protocol guarantees:

• That users communicate their data to the OP3N server and not to any other server purporting to be BBVA.
• That the data is transmitted in encrypted form between the user and the BBVA server center, thus ensuring it cannot be read or manipulated by third parties.

BBVA will never ask you for your bbvaapimarket.com credentials by e-mail, telephone or SMS. If you receive this type of message, please do not provide any information. Passwords are secret and should be known only to their owner or their exclusive use on bbvaapimarket.com

In addition to the security measures established by BBVA, it is necessary that you take certain precautions when browsing the Internet and thus increase your security in your daily activity and avoid malware.

Malware, commonly referred to as a virus, is about malicious programs that can sneak into a computer, smartphone or tablet with certain purposes such as stealing private data, causing the device to stop working properly or taking control of it to perform other malicious actions.

There are different types of malware, of which some of the most notable are:

• Phishing:  This consists of sending an e-mail purporting to be from a well-known organization and requesting the user’s data (address, bank details, passwords, etc.). To provide this data, the user is in most cases required to follow a link that appears in the e-mail and then enter the requested information once on the bogus page.
• Ransomware: This is a lucrative method of technological delinquency. Usually concealed as “parcel delivery services” or any other credible excuse, it is propagated via email with links that enable the installation of programs or the download of infected files. This virus blocks access to computer information and demands a ransom that will supposedly provide the key to decrypt the information.

Below are a list of various tips divided into three categories:

Safe browsing

• If you have to enter your credentials, check that the address (URL) of the server begins with https, which means you are accessing a secure server.
• Another indication that the server is secure is the presence of a closed padlock (as opposed to an open one in the case of a non-secure server) to the left or right of the address (URL).
• Check the security certificates dof the page you are on by clicking on the padlock icon that appears when accessing a secure area, or on the certificate in the browser bar, and check that the expiry date and domain of the certificate are up to date. The detailed information includes the issuer, the period of validity and who the certificate was issued to.
• Before clicking on a link, move the cursor over it to see the address you’ll access when you click on it. Check that the address is correct and is related to the activity you want to carry out.
• Whenever you finish a transaction or query, remember to use the log-off button. This will securely end the session at bbvaapimarket.com, and the next time you log on, you’ll be asked for your user number and access code again.
• In common computers or if you are connected to public wifis do not access pages where you need to use username and password, also do not provide personal data such as postal address, telephone, etc.

Security on your devices

• Your operating system, your browser and extended use programs must always be up to date.
• You should install a firewall and antivirus program and always keep them updated and running. You can find these kinds of free programs at www.osi.es.
• Files with extensions of type .exe, .bat, .rar, .zip or .ini and whose sender is not trusted shall not be downloaded to your computer. Do not open emails from unknown recipients either.
• Set an unblocking pattern on your devices so they can’t be accessed by third-parties.
• Don’t connect any external device to your devices if you don’t know where it came from, such as flash drives, hard drives and unknown cellphones.

Secure passwords

• Use complex and hard-to-guess passwords that contain uppercase, lowercase, and interspersed numbers.
• Do not share your passwords with anyone. The passwords are secret and only their owner must know them for their use
• Do not write your passwords on post-it or notebooks; memorize it or use specialized password managers. You can find free programs of this type at www.osi.es.
• Disable the option to save your browser password. It is safer to insert it each time you access it.
• Change your passwords periodically.

Following these tips will increase your internet security.