skip to main content
Privacy & Security

Protecting Your Information FAQs

  • Hide How do I know the information you have on file about me is safe and secure?

    We value your trust and we understand that handling your financial information with care is one of our most important responsibilities. Only those who need to know a customer's financial information—because they provide the accounts and services the customer might need—are authorized to have access to it.

    Bank of America operates under a detailed, rigorous information security policy and program designed to protect the security and confidentiality of our customers’ information. The Bank of America Board of Directors has approved this policy and program, and the Board is kept informed on the overall status of our information security program. The information security program is also subject to ongoing regulatory oversight and examination.

    In addition, we have a strict code of ethics for all associates. This code requires confidential treatment of customer information. All associates with access to customer information must complete information protection training annually. Bank of America also maintains physical, electronic and procedural safeguards to protect against unauthorized access to customer information.

  • Show I know Bank of America uses other companies to serve some of its customers and shares information with certain third parties. How can I be assured that my information is kept safe and secure in such arrangements?

    Bank of America is committed to providing customers with the best financial products and services available. In order to do that, we sometimes use other companies to assist in providing high-quality, efficient and cost-effective service. We also use affinity partners to offer a greater range of financial products that may be tied to organizations of interest to you. We take great care in choosing our suppliers and Affinity Partners.

    Bank of America operates under detailed, rigorous information security policies and programs that go well beyond the requirements of regulatory guidance. A vital element of our information security program requires oversight of third-party suppliers, which applies to international as well as domestic companies. Contracts with our suppliers who have access to our customers’ information require them to substantiate that they meet the strict requirements of our information security program and only use the information for restricted purposes.

  • Show What is email fraud?

    There are many types of email fraud. A recent and increasingly common type of email fraud involves the use of phony emails that ask you to provide sensitive personal, financial or account information. You may be asked to supply the information in a return email, in a separate form attached to the email or by visiting a phony website using a link contained in the email message. The people attempting to get this information may use it to access your accounts directly in order to withdraw money or to open new accounts in your name using your information. Learn more about email fraud

  • Show How do I recognize email fraud?

    Recognizing email fraud is not always easy. The criminals who use email and online fraud to try and get your personal, financial or account information are adopting increasingly sophisticated techniques. You should approach unsolicited email containing urgent appeals for security or personal information with great caution. You should always confirm the validity of email messages that appear to come from trusted sources. Bank of America will never ask you provide your Social Security number, ATM or debit card PIN or any other sensitive information in response to an email. If you receive an email from Bank of America and you're not sure if it's real, don't click on any links in the email. See an example of a fraudulent email

  • Show How do I report a suspicious email?

    Please forward any email that you suspect may be fraudulent to

  • Show What can I do to protect my personal information?

    Here are some tips for protecting your personal information:

    • Be cautious when providing personal data such as your Social Security number and bank account or credit card account information over the telephone, in person or online. Do not give out this information unless you are absolutely sure of the person with whom you are dealing.
    • Carry only necessary identification with you. Do not carry your (or other family members') Social Security card(s). Do not carry passports or birth certificates unless needed that day.
    • Monitor bills and bank statements frequently. Immediately report any suspected fraudulent transactions to the holder of your account.
    • Receive and store as many of your account statements electronically as you can
    • Store cancelled checks, new checks and account statements in a safe place
    • Question suspicious emails. We will never send you an email asking for your Online ID or passcode.
    • Install anti-virus and anti-spyware programs on your home computer. Keep these programs updated.
    • Don't write your personal identification number (PIN), Social Security number, driver's license number or credit card account number on checks or on your ATM, credit card or debit card. Stand directly in front of the ATM when entering your PIN.
    • Keep mail secure. Do not mail bills or sensitive information from your home or from unsecured mailboxes. Retrieve and review your mail promptly.
    • Tear up or shred pre-approved credit offers, receipts (including ATM receipts) and other information that could link your name to your account numbers.
    • Check your credit report periodically and be sure all information is up to date and accurate. Have any fraudulent transaction deleted. For a free annual copy of your credit bureau report contact or call 1.877.322.8228.

    Various security pages on our site, for example Online Banking Security and Credit & Debit Card Security, contain specific information under the What you can do tab on the page. Be sure to review this information.

Report suspicious activity

  • In your email:
    To report a suspicious email that uses Bank of America's name, forward it to us immediately at
  • On your statement:
    To report fraudulent activity on your Bank of America account, call 1.800.432.1000 or visit your nearest banking center.