Secure Access and Verifying User Authenticity
To begin a session with the bank's server the user must key in a Log-in ID and a password. Our system, the Internet Banking System, uses a "3 strikes and you're out" lock-out mechanism to deter users from repeated login attempts. After three unsuccessful login attempts, the system locks the user out, requiring either a designated wait period or a phone call to the bank to verify the password before re-entry into the system. Upon successful login, the Digital ID from VeriSign, the experts in digital identification certificates, authenticates the user's identity and establishes a secure session with that visitor.

Secure Data Transfer
Once the server session is established, the user and the server are in a secured environment. Because the server has been certified as a 128-bit secure server by VeriSign, data traveling between the user and the server is encrypted with Secure Sockets Layer (SSL) protocol. With SSL, data that travels between the bank and customer is encrypted and can only be decrypted with the public and private key pair. In short, the bank's server issues a public key to the end user's browser and creates a temporary private key. These two keys are the only combination possible for that session. When the session is complete, the keys expire and the whole process starts over when a new end user makes a server session.

Router and Firewall
Requests must filter through a router and firewall before they are permitted to reach the server. A router, a piece of hardware, works in conjunction with the firewall, a piece of software, to block and direct traffic coming to the server. The configuration begins by disallowing ALL traffic and then opens holes only when necessary to process acceptable data requests, such as retrieving web pages or sending customer requests to the bank.

Using the above technologies, your Internet banking transactions are secure.

IDENTITY THEFT: Steps to Take if You are a Victim

If you suspect misuse of your personal information to commit fraud, take action immediately. Keep a record of all conversations and correspondence when you take the following suggested steps:

1) Contact your bank(s) & credit card issuers immediately so that the following can be done: access to your accounts can be protected; stop payments on missing checks; personal identification numbers (PINs) and online banking passwords changed; and a new account opened, if appropriate. Be sure to indicate to the bank or card issuer all of the accounts and/or cards potentially impacted including ATM cards, check (debit) cards and credit cards. Customer service or fraud prevention telephone numbers can generally be found on your monthly statements. Contact the major check verification companies to request they notify retailers using their databases not to accept these stolen checks, or ask your bank to notify the check verification service with which it does business. Three of the check verification companies that accept reports of check fraud directly from consumers are: Telecheck (800) 710-9898, International Check Services (800) 631-9656 and Equifax (800) 437-5120.

2) File a police report with your local police department. Obtain a police report number with the date, time, police department, location and police officer taking the report. The police report may initiate an investigation into the loss with the goal of identifying, arresting and prosecuting the offender and possibly recovering your lost items. The police report will be helpful when clarifying to creditors that you are a victim of identity theft.

3) Contact the three major credit bureaus and request a copy of your credit report. Review your reports to make sure additional fraudulent accounts have not been opened in your name or unauthorized changes made to your existing accounts. Check the section of your report that lists "inquiries." Request the "inquiries" be removed from your report from the companies that opened the fraudulent accounts. In a few months, order new copies of your reports to verify your corrections and changes to make sure no new fraudulent activity has occurred. Request a "fraud alert" for your file and a victim's statement asking creditors to call you before opening new accounts or changing your existing ones. This can help prevent an identity thief from opening additional accounts in your name. Here are the major credit bureaus and their phone numbers: Equifax (800) 525-6285, Experian (888) 397-3742 and Trans Union (800) 680-7289.

4) Check your mailbox for stolen mail. Make sure no one has requested an unauthorized address change, title change, PIN change or ordered new cards or checks to be sent to another address. If a thief has stolen your mail to get credit cards, bank and credit card statements, pre-screened credit offers or tax information, or if an identity thief has falsified change-of-address forms, that's a crime. Contact your local post office and police.

5) Maintain a written chronology of what happened, what was lost and the steps you took to report the incident to the various agencies, banks and firms impacted. Be sure to record the date, time, contact telephone numbers, person you talked to and any relevant report or reference number and instructions.

Safe & Secure Internet Banking

Safe & Secure Internet Banking
When you use the Internet to access the convenience of online banking, you want to be assured, first and foremost, that effective safeguards are in place to:
· ·Ensure that your account information is accessible by you and you alone;
· Guarantee that no one can eavesdrop on your transactions;
Protect your privacy and safeguard your personal information.

· Your Password - When you enroll for Internet Banking we will ask for information to identify yourself to us. You will be assigned an ID and first time password. Upon your first sign-on to internet banking system, we will ask you to develop a secret password that only you will know. Only then will you be able to review personal information about your account.
We will never ask for your password. Safeguard this password as you would your Personal Indentification Number of your ATM or Debit card.

· Our Privacy Policies - Our privacy policies protecting your personal information are stringent and enforced - we insist that our employees and vendors adhere to them, and it is available on our Web site for you to review.

· Encryption Software - so-called "cryptographic software" - makes it possible to scramble a message between two parties (you and your bank), in a way that allows the message to be decoded only by the two parties. We use one of the highest level of encryption commercially recognized available today.

FDIC - Insured...or Not? Your best guarantee for both online and traditional banking is the institution's membership in the Federal Deposit Insurance Corporation. To verify a bank's insurance status, look for the FDIC logo on their website or search for the bank on the FDIC website. Mainstreet Community Bank of Florida is a member of the FDIC.

As with non-Internet banking, only deposit accounts offered by FDIC-insured institutions are protected by the FDIC. Talk to you banker if you have any questions.

To Learn More:

Drop by to learn more about our online services and the security measures we use or contact our financial industry regulator: Federal Deposit Insurance Corporation at www.fdic.gov.