Skip to main content

1FBUSA Privacy and Security Center

At 1st Financial Bank USA (1FBUSA), we are committed to maintaining the security and privacy of your personal and account information. As part of this commitment, we have taken a number of steps to enhance the safety and confidentiality of information sent electronically to and from 1FBUSA.

Our Security Measures

For security purposes, our computer systems employ software programs to monitor network traffic, to identify unauthorized attempts to upload or change information, and to prevent denial of services attacks or other attacks intended to cause damage.

All communication to and from 1FBUSA is transmitted over HTTPS using Transport Layer Security (TLS). TLS creates a private conversation between two communicating applications, such as your web-enabled device and our corporate Internet server. When your data is transmitted electronically, it is encrypted, or scrambled, at the sending end and then decrypted at the receiving end, helping to ensure that the information remains confidential.

As further protection, we require that you use a browser that supports 128-bit encryption to gain access to your account using the 1FBUSA website or 1FBUSA Mobile App. When using the 1FBUSA website, we recommend that you use a browser that supports 256-bit encryption. We use 256-bit encryption because it provides a significantly greater amount of cryptographic protection than the lower level of encryption does. Examples of browsers supporting 256-bit encryption include the latest versions of Google Chrome, Mozilla Firefox, Apple Safari, and Microsoft Internet Explorer.

No one can access your account(s) without your username, password, and personal image. You create your username, password and personal image at the time of registration. You may change your password, and your personal image when changing your password, as often as you like after successfully logging into the 1FBUSA website or 1FBUSA Mobile App. If your online access is locked, only authorized 1FBUSA personnel can unlock the account after confirming your identity after you request that it be unlocked. This policy is intended to protect you from hackers or other unauthorized individuals attempting to access your 1FBUSA account(s).

We also want you to know that we maintain physical, electronic and procedural safeguards that comply with federal standards to guard your nonpublic personal information. Our security procedures are aimed at preventing unauthorized access to such information and are reviewed and audited periodically for compliance with federal standards.

Protecting Your Privacy

Your privacy is important to 1FBUSA. We have established standards that govern our collection, use, retention, and protection of information about you in connection with your use of the 1FBUSA website and 1FBUSA Mobile App.

1FBUSA is the sole owner of the information collected on the 1FBUSA website and 1FBUSA Mobile App. We will not sell, share, or rent it to others or use it in ways different from what is disclosed in this policy.

1FBUSA collects information from our online customers at several different points on the 1FBUSA website and 1FBUSA Mobile App:

At Registration When you register, we may ask that you provide to us certain nonpublic personal information. We request this information in order to verify compliance with the Registration Terms and applicable federal, state, and local laws and for identification and security purposes.

During Correspondence If you correspond with us via 1FBUSA SecureMail, a mail service within the 1FBUSA website and 1FBUSA Mobile App, we may retain the information from such correspondence (including the content of the correspondence and our response) in a file specific to you.

With Web Cookies We collect information that you provide to us on the 1FBUSA website and 1FBUSA Mobile App. We also use web cookies to collect information about our customers' website usage and browsing activities. We do not use cookies to collect or store nonpublic personal information. A cookie is a small text file that a web browser places on the web-enabled device you are using to visit a website. If your browser privacy setting is not set to accept cookies, you may continue to use the 1FBUSA website, but you cannot access any secured web pages. The information that we collect on the 1FBUSA website allows us to improve our collections, marketing, and promotional efforts; to statistically analyze website usage; to improve our content and product offerings; and to customize the website's content, layout, and services.

In addition to the information described above, we also collect information we receive from you on applications or other forms, such as your address and social security number; information about your transactions with us or others, such as payment history and account balances; and information we receive from third parties such as consumer reporting agencies and including your credit history and employment verification.

Children's Online Privacy Protection Act (COPPA) In accordance with COPPA, no part of the 1FBUSA website or 1FBUSA Mobile App is intended to attract anyone under the age of 13, and the Bank does not intentionally collect information from those we actually know are under 13. Parents can also be proactive and limit website and mobile app access to their children by installing filtering software.

Information Sharing

  • Outside the 1FBUSA Organization We may disclose all of the information we collect about customers and former customers, as described above, to individuals or companies that assist us in providing our products or services. We do not otherwise disclose any nonpublic personal information about our customers and former customers to anyone outside the 1FBUSA organization, except as permitted or required by law.
  • Within the 1FBUSA Organization We may disclose all of the information we collect about our customers and former customers, as described above, to companies within the 1FBUSA organization. These companies do not offer financial services directly but assist us with important risk management, legal, Internet, securitization, and account-acquisition services.

Policies of Linked Sites and Other Third Parties This privacy policy only addresses our use and disclosure of information we collect from you. You should be aware that when you are on the 1FBUSA website or 1FBUSA Mobile App, you could be directed to other websites that are beyond our control. 1FBUSA is not responsible for the privacy practices of third parties or the content of those linked websites. We encourage you to read the posted privacy policy whenever interacting with any website.

Updates to the Privacy Policy 1FBUSA reserves the right to update this privacy policy from time to time. Please visit this page periodically so that you will be apprised of any changes.

Free and Easy Contact

If you have any questions about our security or privacy policies, please contact us, toll free, at 1-844-328-9330, Monday through Friday, 8:00 am - 8:00 pm CT and Saturday 8:00 am - 5:00 pm CT excluding Federal holidays or by mail:

Privacy and Security
1st Financial Bank USA
P.O. Box 7300
North Sioux City, SD 57049

Educating yourself by knowing how criminals operate is the best way to defend yourself. Knowledge is power, which helps keep you safe wherever you go online.

General Online Safety Measures

Accessing Secure Websites Be wary of suspicious emails. Never open attachments, click on links, or respond to emails from suspicious or unknown senders. To access a secure website, you should type in the address into your web browser. Before providing any information, ensure that a secure connection is made when you access a secure website. The beginning of the internet address will change from 'http' to 'https' when a secure connection is made. If you have concerns about your secure connection when accessing our website, contact us, toll free, at 1-844-328-9330, Monday through Friday, 8:00 am - 8:00 pm CT and Saturday 8:00 am - 5:00 pm CT excluding Federal holidays.

Passwords Choose a password that has a minimum of 10 characters and is not easily discovered by intelligent guessing. Include numbers, symbols, upper, and lowercase letters to increase your password strength. Do not use your name or birthday. Do not use the same password for multiple websites. Never write down or record your password or other security information unless it is well disguised. Always take reasonable steps to keep your password and other security information secret at all times - never reveal it to anyone, especially in a text, by mail or over the phone.

Log In and Log Out Do not use an automatic login feature that saves your username and password. Never leave your web-enabled device unattended when logged in to a secure website. Log out properly when you have finished with the secure website.

Shared Web-Enabled Devices View or download documents such as account statements only on a web-enabled device that you know to be safe and secure. Private and sensitive information about your account may easily be accessed by others using the same web-enabled device.

Saved Files and Browser Cache Online bank, merchant and creditor websites may provide account statements in PDF format. When you click on a link that opens up a PDF document, the document you view may be accessible to others using the same web-enabled device. For Mac users: the PDF may be automatically copied to its desktop or to an easily accessible download folder, be sure to delete the file after viewing it and empty the Trash folder. For PC users: the browser may cache that PDF document. Be sure to clear your browser cache (check your browser Help on how to do this).

Protecting Your Email

Phishing Learn to spot a phish email. Phishing email messages take a number of forms. They might appear to come from your bank or financial institution, a company you regularly do business with, such as a popular online shopping site, or from your social networking site. It often includes official-looking logos and may include convincing details about your personal information that scammers found on your social networking pages.

Unsolicited Communication Always be wary of unsolicited emails, text messages or phone calls asking you to disclose any personal details or account numbers. Keep this information secret. We will never contact you to ask you to disclose your password. If you receive suspicious email messages, do not respond or provide any information. Please notify us, toll free, at 1-844-328-9330 of any suspicious activity concerning your 1FBUSA account.

What to Do if You Have Responded to a Phishing Email If you think you may have responded to a phishing email message, it is essential that you contact us immediately, toll free, at 1-844-328-9330 to inform us of when this happened and how you were contacted. This will enable us to investigate and to help protect you and your account.

Protecting Your Web-Enabled Device

  • Use anti-virus software, anti-spyware software, and anti-malware software. Update on a regular basis.
  • Learn how to install and use firewall software on your web-enabled device.
  • Download the latest security updates regularly to keep your web-enabled device operating system and web browser up to date.
  • 1FBUSA requires that online customers use a web browser that supports 128-bit encryption. Examples of browsers supporting 128-bit encryption include the latest versions of Mozilla's Firefox, Apple's Safari, and Microsoft's Internet Explorer.

Protecting Your Mobile Device

  • Enable your mobile device lock function when the device is not in use. This locking mechanism adds an additional layer of protection to personal information stored on your mobile device.
  • Never share your mobile banking password with anyone.
  • Delete any text messages related to banking on a regular basis.
  • If you lose your mobile device or change your mobile device number, promptly update your 1FBUSA Text Banking Profile and "My Personal Information."

Retention of Communication:

Delete files, emails, and text message containing banking or personal information as soon as possible.

Safely Dispose of a Web-Enabled Device

Before you dispose of a computer, get rid of all the personal information it stores. Use a wipe utility program to overwrite the entire hard drive.
Before you dispose of a mobile device, check your owner's manual, the service provider's website, or the device manufacturer's website for information on how to delete information permanently, and how to save or transfer information to a new device. Remove the memory or subscriber identity module (SIM) card from a mobile device. Remove the phone book, lists of calls made and received, voicemails, messages sent and received, organizer folders, web search history, and photos.

Be Wise About Wi-Fi

Before you send personal information over your laptop or smartphone on a public wireless network in a coffee shop, library, airport, hotel, or other public place, see if your information will be protected. If you use an encrypted website, it protects only the information you send to and from that site. If you use a secure wireless network, all the information you send on that network is protected.


The information contained herein is provided as a general resource to our customers and is intended for informational purposes only. It is not intended to be comprehensive or to protect you from identity theft or other fraudulent activity. The information is subject to change without notice but is intended to be updated to include new information or tips when it is appropriate and may be helpful to you. We make no claims, promises or guarantees about the accuracy, completeness, reliability, or adequacy of the information contained in or referenced in this document.

The scale of identity (ID) theft is enormous. Millions of Americans are victims of some type of identity theft or fraud each year, according to the Federal Trade Commission (FTC). Unfortunately, ID theft can be difficult to discover. You may not find out until you review your account transactions - or until you have been contacted by a debt collector. Further, ID thieves are creative. Their methods evolve constantly. So what is the best way to protect yourself? Become well informed about ID scams and account takeovers and how to detect and prevent them.

What Are Identity Theft and Account Takeover Fraud?

Identity theft is any use of your personal information by someone else that you did not authorize. Identity thieves gather information such as your name, social security number, birth date, passwords, or account numbers in order to commit crimes.

Account takeover fraud is a form of identity theft that occurs when someone makes unauthorized transactions, opens new accounts using a third party's personal information and/or conducts other illegal schemes.

Damage From Identity Theft and Account Takeover Fraud

Fraudulent transactions can affect your credit rating and finances if they are not identified and handled immediately. While some victims can resolve their problems quickly, others spend hundreds of dollars and many weeks repairing damage to their good name and credit record.

Victims of identity theft, in particular, may be denied jobs and loans for education, housing, or cars because of negative information on their credit reports. In rare cases, they may even be arrested for crimes they did not commit.

Here are some examples of the damaging actions thieves can take:

  • Open new bank or charge accounts or take out a loan in your name.
  • Rent an apartment and sign up for utility services in your name.
  • Change your credit card billing address so you do not see fraudulent charges on your statement.
  • Get a driver's license or ID card with your name and address and their photograph.

Recognizing Typical ID Theft and Credit Scams

Phishing Pronounced "fishing," this is an attempt to collect personal information by posing as a trusted source. For example, an email, text message, or phone call may appear to be from your bank, a website you have an account with such as eBay, or even a potential employer. They may have partial information, such as your username or account number, and ask you to "confirm" your expiration date, billing address, or password. Links in emails may send you to fake, but convincing websites that collect information that allows someone else to access your accounts. Clicking on links in emails or opening attachments can also install malicious software or spyware on your web-enabled device that can collect your personal information or send email spam in your name.

Dumpster Diving Some identity thieves go through trash or recycling bins looking for receipts and paperwork with your personal information.

Stealing Your Belongings Credit cards, checks, and even personal account information are commonly carried in purses, wallets, backpacks, and laptops-all of which can be easily stolen.

How to Protect Yourself

The best way to handle potential ID theft and account takeover fraud is to learn how to identify it when you see it. Here are some tips to help you prevent the most common types:

Be Wary of Giving Out Your Personal Information An unsolicited email or phone call that asks you to divulge any personal information is suspicious. The safest approach is not to respond: do not open the email or provide personal information over the phone. If you do open an unsolicited email, do not click on any embedded links or open any attachments. To confirm that a communication is legitimate, call the organization's customer service number or log in to your account. If the attempt is fraudulent, report it to the organization's fraud department.

Check Your Financial Records Vigilantly Promptly review your statements and bills, such as credit card, checking account, and other financial statements, and telephone and other utility bills. Keep your receipts to compare them to the charges shown on your statements. Report any discrepancies to the creditor immediately. Contact the creditor if a statement does not arrive on time.

Check Your Credit Reports for Unauthorized Activity The three national credit bureaus are required to provide you with a free copy of your credit report once every 12 months at your request. To order your copies, visit - Opens a modal dialog or call toll-free 1-877-322-8228. If you spot something irregular, like an account you never opened or an address change that is incorrect, let the credit bureau know right away.

Safeguard Your Information Shred any document with personal information on it before you toss it in the trash. Shred expired credit cards before throwing them out. Make sure your outgoing and incoming mail is safe from thieves. Limit what you carry with you. When you go out, take only the identification, credit, and debit cards you need. Keep your Social Security card at home. Keep tabs on backpacks, purses, wallets, and other items you may carry with you, such as a cell phone, PDA, or web-enabled device. If you keep written records of your account information, store them in a locked box or file drawer. Do the same with items like your passport and social security card.

Keep Your Online Transactions Secure Avoid using readily learned information in your passwords, such as your birth date or digits from your phone number or address. Use up-to-date virus and security protection on your web-enabled device. Do not store personal information, passwords, or account numbers on your web-enabled device.

Keep Your Cards and ID Secure Keep an eye on your ID and credit or debit card during transactions and be sure they are returned to you right away. Avoid convenience store ATMs - they may not be as secure as bank ATM machines. Consider using a credit card for online shopping, rather than a debit card. Sign cards as soon as they arrive - and do not write your PIN on the back. Do not carry your PIN with you.

What to Do if ID Theft or Fraud Occurs

Reporting ID Theft If you are a victim of identity theft, you can take action immediately.

  • Step 1 Put a fraud alert on your credit report. Notify one of the three credit agencies: Experian, TransUnion, or Equifax. That agency will in turn notify the other two. All three companies will send you your credit reports, which you should review carefully for any accounts or transactions you did not initiate. Report anything suspicious to the agency. A fraud alert can help prevent an identity thief from opening more accounts in your name.
  • Step 2 Close any affected accounts. Shut down any accounts you think have been tampered with or opened fraudulently. Ask for instructions about how to dispute fraudulent accounts and activity.
  • Step 3 File a police report. It can help you deal with creditors who need proof of the crime. Be sure to get a copy.
  • Step 4 File a complaint with the FTC. By doing so, you will provide important information that can help officials track down and stop identity thieves. They may be able to provide further assistance to you as well. Call the FTC toll-free at 1-877-438-4338.
  • Step 5 Stay vigilant. After you cancel the fraudulent accounts, further damage may occur. For example, a thief may use your social security number to get a driver's license or apply for a job. Monitor your financial records for suspicious activities for several months and your credit reports for two years. Stay alert for signs of identity theft.

Reporting Fraud If your credit, debit, or ATM card is lost or stolen or you suspect fraudulent use of your account, call the provider immediately. Follow up your call with a written report. The company can stop the thief by cancelling your account and issuing you a new account and/or card.

If Your Bank or Creditor Calls You Banks and card providers constantly monitor transactions for fraud. If they suspect your account is at risk, they may put a temporary freeze on the account and contact you. They take these steps for your protection. Be patient and work with the representative to resolve questionable account activities. That said, be sure the person who called you does, in fact, represent your bank or creditor. They should request only limited personal information, such as the last four digits of your social security number or the answer to a security question that you set up (for example, your mother's maiden name). If you are suspicious, hang up, and call the bank or creditor's customer service number, and ask to speak with the fraud department.

Identity Theft and Account Takeover Fraud are not Going Away

Sound precautions and vigilance will go a long way toward protecting your valuable personal information. Of course, all the caution in the world will not completely eliminate the possibility that fraud may impact you. In case it does, be ready to take the immediate steps that will minimize any long-term damage.


The information contained herein is provided as a general resource to our customers and is intended for informational purposes only. It is not intended to be comprehensive or to protect you from identity theft or other fraudulent activity. The information is subject to change without notice but is intended to be updated to include new information or tips when it is appropriate and may be helpful to you. We make no claims, promises or guarantees about the accuracy, completeness, reliability, or adequacy of the information contained in or referenced in this document.

If you suspect that you are a victim of fraud involving a 1FBUSA account, you should contact us immediately, toll free, at 1-844-328-9330, Monday through Friday, 8:00 am - 8:00 pm CT and Saturday 8:00 am - 5:00 pm CT excluding Federal holidays. The sooner you report the incident, the sooner we can investigate and limit the exposure of your account to fraudulent activities.

For 1st Financial Bank USA Account Holders

If you suspect that you are a victim of fraud involving any of your 1FBUSA accounts, contact us, toll free, at 1-844-328-9330, Monday through Friday, 8:00 am - 8:00 pm CT and Saturday 8:00 am - 5:00 pm CT excluding Federal holidays. The sooner you report the incident, the sooner we can investigate it and limit your account's exposure to fraud. Please have your account information and details about suspected fraud activities at hand, as this information helps us analyze your situation. If you are a victim of fraud, we encourage you to take further steps.

For Non-1st Financial Bank USA Account Holders

Fraudulent activities may involve you even if you do not have an account with us. For example:

  • A 1FBUSA account could be opened in your name although you did not apply for the account.
  • A 1FBUSA account could appear on your credit report although you have not applied for an account with us.

It is your responsibility to notify us, should you discover a 1FBUSA account has been opened in your name by a third party, so we can take proper actions. Call us at 1-844-328-9330 to report fraud.