Security and Privacy
Web security is very important to us, so we take great care to protect you. Please see below for details of how you can also help to guard yourself against online fraud.
Keep yourself safe online
Never reveal your password to anyone or write it down
- Don’t use a password that could be easily guessed by someone else
- Change your password immediately if you suspect someone else could know it
- Log off when you’ve completed your transaction
- Keep your computer updated with current anti-virus software and the latest browser versions
- Don’t send us any confidential account information by email
- Treat emails you receive with caution. Remember that we’ll never ask you to disclose your personal or account information to us by email
- We recommend you regularly visit the Financial Fraud Action website to keep up-to-date with tips to protect yourself from the latest scams
Your Username and Password
On registering a Cashplus Account with us, you’ll have a username and password which must be used in order to access certain restricted parts of the website. Your username and password are used by us to identify you, so they’re very important. You’re responsible for all information posted on the website by anyone using your username and password. Any breach of security of a username and password should be notified to us immediately.
Our system security
- Our systems operate on 128-bit secure encryption. Look for the padlock symbol in your browser status bar
- A team of independent security experts regularly test our website
- Your session will time out if you don’t use your keyboard for more than 15 minutes
- Your Cashplus Account login will be locked out after three failed access attempts. You’ll need to contact us to reset your account
- We’ll verify your identity before disclosing confidential information over the phone or resetting your password
- Despite our best endeavours, we can’t always guarantee the website will be fault free and don’t accept liability for any errors or omissions
All forms and online account pages, i.e. those pages that show your information, use 128-bit encryption. Encryption makes your information unreadable to anyone who might intercept it. In addition, a Secure Sockets Layer (SSL) is used to connect your browser to our secure servers.
The latest versions of browsers support 128-bit encryption.
Secure Socket Layer (SSL)
A “Secure Socket Layer” is a commonly used method of managing the security of messages transmitted across the Internet and is used by us to connect your computer to our secure server. You can tell that SSL is in use if the URL in the search bar starts with https:// and/or a lock icon is displayed within your browser. If you have problems getting to secure mode, install one of the latest browsers and try the website again.
Which browser do I need to view this website?
Our website has been designed to work with a variety of the latest browsers across Mobile, Tablet and Desktop devices.
If you’re using an older browser such as Internet Explorer 10, you may have difficulty viewing webpages and not be able to apply for a card or access your account information. To make an application online, we recommend that you upgrade to the latest versions.
Do you need plug-ins?
“Plug-ins” are additional software programs required by some websites to make them work properly. An example is Flash Player from Adobe. Our website doesn’t need any plug-ins to work effectively, however you’ll need a PDF reader such as Adobe Acrobat Reader to download certain documents, such as Terms and Conditions.
Having difficulty accessing your account from work?
Most organisations have what is known as a ‘firewall” to protect their networks and their computers. A firewall is a secure server through which all communication passes and which protects the organisation’s computers from unauthorised access by filtering the information getting in and out. Depending on how the firewall is set up, access to another secure server may be denied.
If you’re having problems accessing your account from work but can access it from home with no difficulties, check with your IT department to see if a firewall is in place that may be affecting access to our website and how this has been set up.
You also consent to any additional cardholders on your Account having access to relevant statement information including account balance information through the Cashplus Mobile App.
IMPORTANT: Additional Cardholders must have permission from the Primary Cardholder before downloading and using the Cashplus Mobile App.
Using the Cashplus Mobile App
You can use our Cashplus Mobile App to view and access your eligible Cashplus Accounts. Use of the Cashplus Mobile App is in accordance with these conditions and you’ll need to register to use this service.
You’ll be responsible for all instructions given by you or anyone acting with your authority whilst using the Cashplus Mobile App. Please note this includes any errors or instructions sent by someone other than yourself so please don’t leave your device unattended while you’re logged-in to the App.
We don’t charge you for using the Cashplus Mobile App but your mobile operator may charge for some services. You must only use the Cashplus Mobile App for online account servicing and other intended uses. You must not copy, reproduce or attempt to alter it in any way.
Any information you provide in relation to the Cashplus Mobile App is disclosed to our third party agents who act on our behalf. This is for operational reasons in order to provide the Cashplus Mobile App to you. By using the Cashplus Mobile App you consent to the use of your data in this way.
To use the Cashplus Mobile App, small software files similar to Cookies will be stored on your mobile device. These files allow the Cashplus Mobile App to remember choices you make (such as your user name or the region you are in) and provide enhanced, more personal features. In particular these files are used to store your registration information and your acceptance of these terms and conditions. The information these files collect may be anonymised so they can’t track your browsing activity on other websites. The files are essential in order to enable you to move around and use the features of the Cashplus Mobile App.
In addition to the above, non-personal data may be collected by your mobile device or app store provider in accordance with their terms and conditions which apply to the use of your device and app store account.
The Cashplus Store locator uses location based services. We, and/or other third parties, may get data about your location (i.e. GPS signals from your mobile device) or data that can be used to approximate your location and for prevention of fraud and/or money laundering.
Cashplus Mobile App Service
We aim to ensure a complete service at all times, but the speed and availability of service can’t be guaranteed. The service may be interrupted due to our need to update or maintain our systems or those of our third party agents who provide part of the service. In addition, the service may be affected by the network coverage available from your mobile provider or maintenance and upgrades they perform that affect the availability of your mobile network.
The Cashplus Mobile App can be used all over the world but can only be downloaded if you have a UK App Store or Google Play Account. Just make sure you use a secure Wi-Fi connection and check with your network provider to ensure you’re not stung with roaming data charges for using the App abroad.
We reserve the right to withdraw the Cashplus Mobile App at any time.
Use of email
Please note that ordinary email is not secure.
Please don’t send us any confidential information via email. We’ll only use email to send you account information, such as your account balance and transaction information or special offers, if you’ve given your consent. We won’t use e-mail to send other confidential personal information to you. We can’t accept any responsibility for the unauthorised access by a third party and/or the corruption of data being sent by individuals to APS. It’s our policy that if any of our customers are victims of unauthorised access to their accounts, and provided that you’ve not breached our security procedures, acted fraudulently or without reasonable care, we’ll cover any direct financial loss which you may have suffered.
What’s a cookie?
A cookie is a text-only string of data, which often includes a random unique identifier that is sent to your computer or mobile phone browser from a website’s computer and is stored on your device. Each website can send its own cookie to your browser if your browser’s preferences allow it, but (to protect your privacy) your browser only permits a website to access the cookies it has already sent to you, not the cookies sent to you by other websites. Many websites do this whenever a user visits their website in order to track online traffic flows.
If cookies are enabled, during the course of any visit to our websites, the pages you see, along with a cookie, are stored to your device. On a repeat visit the Cashplus website may check to see, and find, any cookie left there on the last visit to enable us to present personalised features. APS might also look at IP addresses to add general information about the country, city or region in which you’re located, along with your domain (e.g. what internet service provider you use)
Cookies cannot be used by themselves to personally identify you. They can be used for marketing purposes, to create a profile of your engagement with Cashplus websites and if you have already given some personal details, to track your activity on our websites.
The exception to this is within Online Servicing and Online Application site - where we have to securely identify you and track your usage to protect your account. However, the cookies themselves don’t contain any personal or identifiable information.
Information supplied by cookies can help us to analyse the profile of our visitors and help us to provide you with a better user experience. For example, if on a previous visit you went to our Payments and Transfers pages, we might find this out from your cookie and highlight general Payments and Transfers information on your second and subsequent visits.
Cashplus also uses a number of independent measurement and research companies. They gather information regarding visitors to Cashplus websites on our behalf using cookies, log file data and code which is embedded on our website. We use this type of information to help improve the services it provides to its users. All third parties are strictly required not to use any information for their own business or other purposes and at no time does the information identify you individually.
We use the following cookies on our websites:
These are temporary cookies that remain in the cookie file of your browser until you close the browser. They enable information to be maintained across pages of our site pursuant to providing you with a better experience.
These cookies can’t personally identify you and they’ll expire when you close down your browser.
These remain in the cookie file of your browser for much longer (though how long will depend on the life time of that specific cookie). These cookies help APS recognise you as a unique visitor (just a randomly generated number) when you return to our website and to allow us to tailor content or advertisements to match your preferred interests or to avoid showing you the same adverts repeatedly.
On some of our sites, as with session cookies, they also enable information to be maintained across pages of our site and avoid you having to re-enter information.
Google Analytics cookies collect and store information on how visitors are interacting with our website. For example, what webpages are visited most often, how long for, and what device you use to visit these pages.
We use these cookies to ensure areas of our website are working correctly and that we are providing users with relevant information. No identifiable information can be stored in or obtained from these cookies.
Learn more about Google Analytics Cookies and Privacy
Google sets a cookie on your browser that anonymously captures your interests allowing their advertising partners to present products and services on their websites that are relevant to you. Google are in full control of these cookies.
You can change your Google Ad-Preferences or find out more about Google Ad-Preferences by visiting: www.google.com/ads/preferences/
Third Party Cookies
Additional authorised Third Parties serve cookies via our sites, under our direct control. These are used for the following purpose:
To compile anonymous, aggregated statistics that allow us to understand how visitors use our site and to help us improve the structure of our website. We can’t identify you personally in this way
Control cookie settings
Most browsers will have a default ‘medium’ cookie setting, allowing 1st party cookies but blocking 3rd party cookies. You can change your cookie settings, and remove specific cookies, via your browser through the following paths:
- Internet Explorer: Tools > Internet Options > Privacy
- Firefox: Tools > Options > Privacy
- Google Chrome: Settings > Privacy > Content Settings
To opt-out of cookies on this website please visit the websites provided in the table above where relevant..
When you apply for a product or service from us (or another party), you’ll be asked for personal information that’s needed to process your application.
If you’re applying for a Credit Card, we may check all personal information given by you with fraud prevention agencies and other organisations, and we may get information about you from credit reference agencies to verify your identity and in some cases assess your creditworthiness. A record of such enquiries may be left on your file.
The information that you provide will only be used for the purposes described at the time of your application and where applicable in the terms and conditions that apply to the relevant product or service.
We’ll also collect, store and process your personal information on the APS computers to; (a) personalise aspects of our overall service to you; or (b) communicate with you; or (c) learn from the way you use and manage your account(s), for example from the transactions you make and from the payments which are made to your account; or (d) We may retain information about you and your account for up to 6 years after your account is closed. We’ll use your personal information to manage your account(s), and provide our services, for assessment and analysis (including credit and/or behaviour scoring, market and product analysis), and to develop and improve our services to you. If you don’t want to receive information about our products and services, please write to Customer Services at PO Box 5525, Manchester, M61 0QS or by emailing us at [email protected]. We won’t disclose any such information outside of APS except:
- To fraud prevention agencies and other organisations who may use the information to prevent fraud and money laundering
- To persons acting as our agents under a strict code of confidentiality
- To anyone to whom we transfer or may transfer our rights and duties under our terms and conditions with you
- As required by law or regulation
- If we suspect that we have been given false or inaccurate information, we may record our suspicion together with any other relevant information
- If false or inaccurate information is provided and fraud is identified, we may pass details to Fraud Prevention Agencies (“FPAs”)
Law enforcement agencies may access and use this information.
We and other organisations may also access and use this information to prevent fraud and money laundering, for example, when:
- Checking details on applications for credit and credit related or other facilities
- Managing credit and credit related accounts or facilities
- Recovering debt
- Checking details on proposals and claims for all types of insurance
- Checking details for job applicants and employees
- Please contact us at: Risk Department, PO BOX 5525, Manchester, M61 0QS if you want to receive details of relevant FPAs
- We and other organisations may access and use the information recorded by FPAs in other countries
If we transfer your information to a service provider or agent in another country outside the European Union, we’ll make sure that the service provider or agent agrees to apply the same levels of protection as we’re required to apply to personal information held in the UK, and to use your information only for the purpose of providing the service to us.