How to Keep Your Information Safe During a Retailer Data Breach

The statistics aren’t promising. The Identity Theft Resource Center (ITRC) reported a total of 1,091 breaches in 2016 alone – up 40% from the previous year. 2017 isn’t looking much better, with 975 cases reported already this year. Many of these are a retailer credit card breach or other merchant compromise. Here’s what you can do to protect yourself from data breaches that target outside merchants.

Data Breach Definition

A data breach is the organized theft of sensitive information – often credit or debit card information. This information can be simply viewed by an unwelcome party, or stolen for a nefarious purpose. A data breach does not necessarily equate to fraud right away. If your card data was a part of a breach, your information could be compromised, but you probably won’t have any fraudulent activity on your card as long as you act quickly to replace the card.

The most common type of data breach, according to ITRC, are those that include hacking, skimming, or phishing tactics. They make up 55.5% of total breaches. The next most common is accidental email or internet exposure at only 9.2%. Merchants are often compromised through their own systems or 3^rd party vendors. They simply don’t have the same protections in place as financial institutions.

One of the worst data breaches in the past few years happened to Target customers in late 2013. Up to 110 million people’s sensitive information was compromised. The breach was active for multiple weeks before discovered and ultimately led to the resignation of both the CIO and CEO in 2014. The hackers had gained access to the information through a 3^rd party vendor of Target’s point-of-sale credit card machines.

What Happens If Your Data is Part of a Breach

If your financial institution notifies you that your data has been breached, they often will not be able to tell you the details of that breach. They may be notified by VISA or law enforcement, who will not provide the name of the merchant or the date the breach occurred. This is because they want to keep the sensitive information as protected as possible.

The most common response to a data breach is reissuing a new card with a new number. You will not have to pay for this card, but you will have to update any automatic payments you have on file with the new card number. It can be a hassle, but worth it to protect your overall accounts.

Credit & Debit Card Safety Tips

It’s scary to know how common it is for data to be stolen. However, there are ways you can protect yourself from a retailer credit card breach. Use these tips to make sure your data stays safe.

1. Use up-to-date technology, like EMV chip technology. If a retailer has the option to use a chip reader instead of swiping the card, use the chip option. It’s more difficult for hackers to steal data from the chip than the magnetic strip.

2. Never give out your PIN number. Protect this number above all! If a hacker finds out your pin number, they can access your account through any ATM.

3. When online shopping, only enter card information on secure sites. Look for the HTTPS in the website url before paying for anything online. The url should also have a green lock symbol that shows the website is protected.

4. Regularly monitor your accounts. Whether you look at your account history through online banking, a mobile application, or paper statements, always check for mistakes. Make sure all transactions are the correct amounts and that you recognize every purchase. If you notice something amiss, notify your financial institution right away of the fraudulent charge.

5. Don’t open suspicious emails. And definitely don’t click on attachments from unknown senders. These attachments may contain viruses. Hackers are also known to imitate real businesses and try to get you to enter your personal information on a false site.

How AmeriChoice Handles Fraud

If a fraud alert is created, our card processor will text you asking if a purchase was legitimate. If you respond, “yes,” then the card remains open and you can continue shopping. If you respond “no,” then the card is blocked and a follow-up call is placed.

We encourage you to contact AmeriChoice directly for further instruction on card replacement. Although our card processor has this ability, we prefer to have personal contact with our members who experience fraud on their card. We know it can be a scary time, and our eServices department wants to take that time to reassure you and make sure you understand what happens next.

In most cases, the charge is stopped and never posts to your account. We then issue another card at no charge, and you’re back on track! If a fraudulent charge does post to your account, here’s what happens next.

• You’re assigned a personal case worker from our eServices Department.
• A new ATM/Debit card is ordered immediately. The card is created the same day and mailed the following day. If you are not local and need the card immediately, we will pay our card processor to have the card expedited, at no charge.  If getting cash becomes a dire need, we can offer alternative solutions, like a limit increase on your VISA credit card, Western Union, wire transfers, checks, cash back, etc.
• Your account is monitored on daily basis for any outstanding checks or automatic drafts to the account. All items are paid up to the fraud amount and no items are returned. You are free to continue to use the account as normal – only the ATM/Debit card needs to be replaced.
• You then must complete a fraud packet that consists of forms verifying that you did not participate, or had knowledge of the transaction(s), nor did you authorize anyone to use the card. We will also need a copy of your driver’s license, the ATM/Debit card returned if not lost/stolen, an affidavit for our insurance company, and a police report. The police report is used for subpoenas to pull ATM video to try and find the perpetrator. Many steps occur behind the scenes to investigate these crimes.
• Once we receive the completed fraud packet, the account is completely reimbursed since AmeriChoice is fully insured by the NCUA.

Even as technology improves, merchants and retailers – large and small alike – will still be susceptible to hackers and data breaches. That’s why we and other financial institutions will continue to expand our security systems, advocate for updated protections across all industries, and educate members on how to stay safe.

Start Monitoring Your Account in Case of a Data Breach

The best way you can avoid fraud through merchant security breaches is to monitor your account for any suspicious activity. You can do this for your AmeriChoice accounts 24/7 through our free mobile banking app. Learn more about the app now. Get the AmeriChoice mobile banking app.