Common use of KEEPING UP SECURITY Clause in Contracts

KEEPING UP SECURITY. We’ll do all we reasonably can to prevent unauthorised access to your account. You must also act reasonably to prevent misuse of your account by keeping your payment devices and security details safe. If you don’t, we may take steps to reduce loss, as described in clause 16 and you may become responsible for the unauthorised payments and use on your account (please see clause 6 below for who is responsible for unauthorised transactions). Security Tips These are tips for preventing misuse of your accounts (this isn’t a complete list) and are for your information: Your liability will be determined under the ePayments Code and not by these tips. However, if you do the things we suggest you don’t do, then you may be liable under the ePayments Code. Don’t 7 allow anyone (other than an authorised signatory or third-party provider) to use any payment device or tell them your security details; or 7 choose security details that can be easily guessed by anyone else such as your date of birth or a recognisable part of your name. This would be extremely careless and may result in you being found responsible for unauthorised access to your account using your security details; or 7 write down or store any security details (such as a password or PIN) in a way that can be understood or retrieved by someone else or keep them with your payment device. Never allow your device or browser to automatically store your banking passwords; or 7 log in, or stay logged in, to an internet or mobile payment device or app if you’re not in full control of it or it’s not in your possession; or 7 tamper with any of the services (for example decompile, reverse-engineer, translate, convert, adapt, alter, modify, enhance, add to, or delete) provided through online banking or mobile banking; or 7 use any services in any unlawful manner or purpose or act fraudulently or maliciously (e.g. inserting a malicious code, virus, or harmful data into the operating system of our online banking or mobile banking software). Do 3 delete or deactivate any stored biometric access to a payment device (such as fingerprint, face or voice ID) or to any device linked to a payment device used by anyone else; and

KEEPING UP SECURITY. We’ll do all we reasonably can to prevent unauthorised access to your account. You must also act reasonably to prevent misuse of your account by keeping your payment devices and security details safe. If you don’t, we may take steps to reduce loss, as described in clause 16 and you may become responsible for the unauthorised payments and use on your account (please see clause 6 below for who is responsible for unauthorised transactions). Security Tips These are tips for preventing misuse of your accounts (this isn’t a complete list) and are for your information: Your liability will be determined under the ePayments Code and not by these tips. However, if you do the things we suggest you don’t do, then you may be liable under the ePayments Code. Don’t 7 allow anyone (other than an authorised signatory or third-party provider) to use any payment device or tell them your security details; or 7 choose security details that can be easily guessed by anyone else such as your date of birth or a recognisable part of your name. This would be extremely careless and may result in you being found responsible for unauthorised access to your account using your security details; or 7 write down or store any security details (such as a password or PIN) in a way that can be understood or retrieved by someone else or keep them with your payment device. Never allow your device or browser to automatically store your banking passwords; or 7 log in, or stay logged in, to an internet or mobile payment device or app if you’re not in full control of it or it’s not in your possession; or 7 tamper with any of the services (for example decompile, reverse-engineer, translate, convert, adapt, alter, modify, enhance, add to, or delete) provided through online banking or mobile banking; or 7 use any services in any unlawful manner or purpose or act fraudulently or maliciously (e.g. inserting a malicious code, virus, or harmful data into the operating system of our online banking or mobile banking software). Do 3 ✓ delete or deactivate any stored biometric access to a payment device (such as fingerprint, face or voice ID) or to any device linked to a payment device used by anyone else; andand ✓ delete cards from a payment device or from any digital wallets accessed from a payment device before you transfer possession of it to someone else (for example if you sell it, give it to someone for repair or throw it away); and ✓ follow all security measures provided by your mobile device manufacturer that apply to your use of the mobile banking app or your mobile device. Never modify the device or its system without the manufacturer’s permission (sometimes referred to as ‘jail-broken’ or ‘rooted’), and always install and update all security and software updates; and ✓ keep your personal online banking account and mobile device secure by using anti-virus and anti-spyware software and a personal firewall; and ✓ make sure you only access the online banking service directly from our website or our official app from the app store. Don’t click on any email links and then enter your personal details. Additional tips for protecting your account and for keeping your payment devices and security details safe are on our website. Please check for any updates we may make over time.

KEEPING UP SECURITY. We’ll do all we reasonably can to prevent unauthorised access to your account. You must also act reasonably to prevent misuse of your account by keeping your payment devices and security details safe. If you don’t, we may take steps to reduce loss, as described in clause 16 (‘Blocking payments, payment devices, services and accounts’) and you may become responsible for the unauthorised payments and use on your account (please account. Please see clause 6 below (‘What should you do if you suspect an incorrect, unauthorised or mistaken electronic payment from your account?’) for who is responsible for unauthorised transactions). Security Tips These are tips for preventing misuse of your accounts (this isn’t a complete list) and are for your information: Your liability will be determined under the ePayments Code and not by these tips. However, if you do the things we suggest you don’t do, then you may be liable under the ePayments Code. Don’t 7 ✗ allow anyone (other than an authorised signatory or third-party provider) to use any payment device or tell them your security details; or 7 ✗ choose security details that can be easily guessed by anyone else such as your date of birth or a recognisable part of your name. This would be extremely careless and may result in you being found responsible for unauthorised access to your account using your security details; or 7 ✗ write down or store any security details (such as a password or PIN) in a way that can be understood or retrieved by someone else or keep them with your payment device. Never allow your device or browser to automatically store your banking passwords; or 7 ✗ log in, or stay logged in, to an internet or mobile payment device or app if you’re not in full control of it or it’s not in your possession; or 7 ✗ tamper with any of the services (for example decompile, reverse-engineer, translate, convert, adapt, alter, modify, enhance, add to, or delete) provided through online banking or mobile banking; or 7 ✗ use any services in any unlawful manner or purpose or act fraudulently or maliciously (e.g. inserting a malicious code, virus, or harmful data into the operating system of our online banking or mobile banking software). Do 3 ✓ delete or deactivate any stored biometric access to a payment device (such as fingerprint, face or voice ID) or to any device linked to a payment device used by anyone else; andand ✓ delete cards from a payment device or from any digital wallets accessed from a payment device before you transfer possession of it to someone else (for example if you sell it, give it to someone for repair or throw it away); and ✓ follow all security measures provided by your mobile device manufacturer that apply to your use of the mobile banking app or your mobile device. Never modify the device or its system without the manufacturer’s permission (sometimes referred to as ‘jail-broken’ or ‘rooted’), and always install and update all security and software updates; and ✓ keep your personal online banking account and mobile device secure by using anti-virus and anti-spyware software and a personal firewall; and ✓ make sure you only access the online banking service directly from our website or our official app from the app store. Don’t click on any email links and then enter your personal details. Additional tips for protecting your account and for keeping your payment devices and security details safe are on our website. Please check for any updates we may make over time.